Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/O66SGgg_Nld8toI9gh2VEtPBiyM.roa
File: O66SGgg_Nld8toI9gh2VEtPBiyM.roa (raw, json)
Hash identifier: akZpumENv9EZQa2fajvJ5yYu43CCGOVAVKq7uvy387U=
Subject key identifier: 3B:AE:92:1A:08:3F:36:57:7C:B6:82:3D:82:1D:95:12:D3:C1:8B:23
Certificate issuer: /CN=a2c891100e500fb5c64f30f1603fe545dab49016
Certificate serial: 018595C82C649B710E74CDB074F41D21CC92
Authority key identifier: A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/O66SGgg_Nld8toI9gh2VEtPBiyM.roa
Signing time: Mon 09 Jan 2023 09:06:41 +0000
ROA not before: Mon 09 Jan 2023 09:06:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49850
IP address blocks: 193.202.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:c8:2c:64:9b:71:0e:74:cd:b0:74:f4:1d:21:cc:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c891100e500fb5c64f30f1603fe545dab49016
Validity
Not Before: Jan 9 09:06:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bae921a083f36577cb6823d821d9512d3c18b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:23:00:aa:19:62:2a:c0:cd:06:61:06:d5:46:
0c:ff:05:0c:43:4d:70:fa:bc:2d:c7:dd:67:9a:85:
b8:d9:84:02:99:ae:d0:d7:8b:aa:23:fd:0f:df:03:
87:d8:68:ba:87:a2:4f:d6:9f:84:d6:bd:29:78:d1:
6b:7f:96:53:fb:fb:cc:cf:50:36:3a:24:8c:49:82:
4c:a3:94:ff:8d:47:2f:5b:ad:5f:70:f1:3b:ce:2a:
49:a4:6a:e0:2f:ae:d9:a9:9e:87:e4:9f:d3:9d:56:
10:d6:95:05:cb:62:e2:c2:f1:48:2d:0f:31:d0:92:
68:24:97:cf:01:96:4f:f9:03:fa:03:23:c3:14:a1:
60:d7:56:2a:0a:99:3b:9a:32:ad:8c:a0:db:f6:04:
24:b6:9d:38:9e:67:bc:11:54:18:27:9b:67:dc:08:
5e:12:19:83:23:6c:b5:94:98:ea:56:91:0a:29:4b:
b4:48:56:a0:27:c7:ae:b6:37:fa:5a:23:71:e9:04:
24:c0:5c:0f:73:5c:36:45:97:88:b9:4b:b5:1c:9b:
19:c7:c2:da:3c:3b:65:a4:27:12:2d:77:0c:5d:14:
08:8b:33:58:8f:8f:26:22:cd:12:71:ec:bd:8e:72:
5c:2e:25:99:10:97:e4:ad:b7:c0:04:22:c3:a7:e3:
a4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AE:92:1A:08:3F:36:57:7C:B6:82:3D:82:1D:95:12:D3:C1:8B:23
X509v3 Authority Key Identifier:
keyid:A2:C8:91:10:0E:50:0F:B5:C6:4F:30:F1:60:3F:E5:45:DA:B4:90:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osiREA5QD7XGTzDxYD_lRdq0kBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/O66SGgg_Nld8toI9gh2VEtPBiyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/28b56c-6aac-48d7-aba2-8ca0c90f577e/1/osiREA5QD7XGTzDxYD_lRdq0kBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.108.0/24
Signature Algorithm: sha256WithRSAEncryption
41:4b:ed:a6:0b:35:76:a3:57:44:c1:80:45:51:b6:5f:5e:6e:
e7:04:7f:a1:59:eb:de:96:95:85:64:54:6e:72:9b:80:61:47:
91:fc:b4:0c:a5:60:cf:09:25:fa:b5:8e:10:66:32:98:7d:5a:
3a:31:dc:ca:ae:f7:d2:f0:d2:78:33:51:4c:5d:8c:ce:bf:e1:
0b:eb:af:50:58:ab:99:b6:d8:86:c4:b0:83:d3:d3:02:b1:09:
c0:3a:86:7f:b5:26:43:65:5a:1b:a6:37:da:53:fc:ca:e7:ec:
49:a9:38:1e:2e:62:cf:f6:a7:5f:5f:89:3b:9d:d1:30:4e:c9:
f8:93:f1:e9:f7:c9:29:7e:dd:c2:40:32:39:30:dc:73:12:65:
6f:0f:08:fe:17:28:9e:50:89:8c:25:63:6d:bf:79:20:e4:18:
e3:0a:c0:35:58:04:24:28:b2:02:10:b3:57:eb:6a:6e:2e:5a:
7e:22:1b:de:06:a5:24:4f:8d:81:97:a4:f5:70:c7:e0:5e:fe:
d3:00:bd:f5:49:18:de:bd:8e:dd:0d:7a:3a:75:f1:b9:1e:7e:
67:52:66:83:b9:9f:3e:67:2b:ed:fc:8b:c7:e1:17:33:0a:54:
ea:33:e8:b8:bd:9b:81:6f:e8:ac:14:80:88:de:12:6b:77:c7:
34:88:f4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:13 2024 by rpki-client on console-fra.rpki-client.org