Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hkBqcAEZg4_ZZUNUtPFCbOc1hG4.roa
File: hkBqcAEZg4_ZZUNUtPFCbOc1hG4.roa (raw, json)
Hash identifier: 2ZG0VlMz54NtSp9CXxbwklTN9TREdcE6IEyQ3OhYaTg=
Subject key identifier: 86:40:6A:70:01:19:83:8F:D9:65:43:54:B4:F1:42:6C:E7:35:84:6E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D8212EAD4698B44AB731B4BEC3F6EBE
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hkBqcAEZg4_ZZUNUtPFCbOc1hG4.roa
Signing time: Sun 01 Jan 2023 13:25:19 +0000
ROA not before: Sun 01 Jan 2023 13:25:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210773
IP address blocks: 193.222.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:82:12:ea:d4:69:8b:44:ab:73:1b:4b:ec:3f:6e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86406a700119838fd9654354b4f1426ce735846e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a2:a3:f9:2c:82:e1:1d:26:ad:49:a0:6c:49:
1d:f5:50:7e:e1:06:cd:09:fc:d6:90:61:34:68:7b:
77:18:90:b4:9f:8e:aa:7b:0d:4d:cc:b3:c5:68:c3:
cf:d3:7b:59:52:d5:25:05:a1:19:b0:1b:8e:2a:c0:
e1:45:5b:22:a5:b0:4a:34:5d:ca:96:fd:d0:55:ba:
70:ea:47:6a:4e:80:a7:67:c6:74:13:fb:a8:16:29:
0a:de:16:1c:9f:b0:37:24:04:10:50:c1:81:d3:be:
2a:27:61:50:31:be:6a:02:59:27:bc:02:f0:a0:0e:
7b:9b:2a:6d:2a:56:34:df:dd:98:63:23:1b:3d:3d:
2c:3e:ee:da:6b:9b:b3:c9:98:c1:38:44:c3:53:c9:
ed:99:9b:cd:46:fe:0c:64:8f:e3:28:02:21:5b:b2:
61:82:c4:4e:5b:24:73:0e:4a:1f:cd:df:3d:98:f0:
90:90:28:47:2c:89:d0:95:9e:a8:b9:17:fb:9f:72:
0d:a0:dc:67:d2:3b:65:6a:55:a2:b8:d2:dc:59:b6:
5f:03:ab:e0:c5:8a:ee:a9:0f:29:f0:16:64:5b:2b:
7c:c6:06:d2:74:68:b3:5c:43:c1:48:f7:39:27:e2:
b5:9e:30:91:d6:95:93:34:8e:2a:4c:78:bd:b8:91:
2d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:40:6A:70:01:19:83:8F:D9:65:43:54:B4:F1:42:6C:E7:35:84:6E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hkBqcAEZg4_ZZUNUtPFCbOc1hG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.96.0/24
Signature Algorithm: sha256WithRSAEncryption
28:dc:07:39:fb:a0:65:aa:96:c3:ed:66:2c:7c:8c:9a:53:5a:
6a:f5:18:78:a0:93:d7:07:a1:0d:aa:f4:f5:30:2b:2c:0c:53:
3e:f4:59:7b:64:fc:be:2d:77:ca:99:a0:28:45:f8:1b:9f:2b:
9a:6c:55:4d:53:0b:60:8a:47:8c:62:6b:a4:d3:38:f8:f3:ce:
8c:4b:59:65:35:a3:05:94:99:09:a9:b8:57:21:1b:25:17:a5:
0b:d8:bb:27:17:08:8e:97:5c:a5:b3:8e:7b:50:84:b8:58:5c:
36:86:97:f1:61:a3:49:02:3f:49:75:ee:4d:6f:fd:a4:58:3b:
3d:e1:fb:ef:5a:67:1d:b8:b3:57:60:88:32:da:82:b9:2f:46:
e8:60:54:23:a4:b6:37:d1:4a:80:ec:8e:28:9e:5e:62:4e:67:
bf:fc:d1:c7:90:a5:ab:dd:f4:88:c2:0e:7d:94:51:a1:07:6e:
0e:df:fb:3e:27:b2:94:a5:ae:fa:94:b2:95:86:26:66:c6:df:
67:e3:e8:eb:7e:5b:45:4c:33:0a:dd:80:31:72:a2:59:66:5e:
14:74:54:40:e0:45:c0:e3:59:58:8e:b0:9b:37:11:6b:8e:e2:
fa:9a:ee:19:3b:58:dc:95:ba:d0:05:6c:e2:01:11:36:78:71:
1a:b8:f2:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 10:42:41 2023 by rpki-client on console-fra.rpki-client.org