Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7fb7a0-2eb8-47c6-86e4-9ea286bd55fb/1/rCSWc3ndUUeuRpYI1w7tu2f8HyE.roa
File: rCSWc3ndUUeuRpYI1w7tu2f8HyE.roa (raw, json)
Hash identifier: LR6SYWSqb6oUDuJJMFNT7UvELHcIMwVLEJm/DlMLIe8=
Subject key identifier: AC:24:96:73:79:DD:51:47:AE:46:96:08:D7:0E:ED:BB:67:FC:1F:21
Certificate issuer: /CN=268d10d109dd91255c84dd62307641002374fc3a
Certificate serial: 01856C781FA918D9200B118A4714E423EDAF
Authority key identifier: 26:8D:10:D1:09:DD:91:25:5C:84:DD:62:30:76:41:00:23:74:FC:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jo0Q0QndkSVchN1iMHZBACN0_Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7fb7a0-2eb8-47c6-86e4-9ea286bd55fb/1/rCSWc3ndUUeuRpYI1w7tu2f8HyE.roa
Signing time: Sun 01 Jan 2023 08:34:49 +0000
ROA not before: Sun 01 Jan 2023 08:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.219.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:1f:a9:18:d9:20:0b:11:8a:47:14:e4:23:ed:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=268d10d109dd91255c84dd62307641002374fc3a
Validity
Not Before: Jan 1 08:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac24967379dd5147ae469608d70eedbb67fc1f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7c:ed:8e:35:04:b4:f6:37:48:e6:1d:ef:a7:
09:84:01:ea:40:31:82:d0:df:31:d7:ec:c5:5f:0c:
bd:d7:af:23:74:ae:84:b8:e2:69:15:29:2a:d0:f8:
4d:75:7a:7c:7f:0f:3e:71:81:29:41:db:57:fe:ce:
40:e3:ee:64:39:4f:66:fc:9e:02:50:6c:66:92:30:
a0:29:55:17:00:96:de:d4:61:3b:d4:c9:80:03:6c:
a5:5d:71:ea:1b:9e:b9:07:36:05:21:7c:f9:57:aa:
f8:01:72:a6:e4:22:55:6f:7a:0c:23:a8:2a:21:6c:
b4:df:75:ec:3e:43:2c:46:37:1a:b3:47:a8:e3:9c:
77:de:78:e2:52:06:42:de:2b:eb:8a:43:23:09:65:
51:d9:fc:db:88:e8:03:e1:b8:51:c6:b3:45:47:fd:
93:b6:3f:03:f6:67:76:e8:e1:00:7c:87:87:eb:23:
6c:0e:4b:f4:f0:75:97:2a:e9:d5:2d:ec:a8:d9:2b:
d2:42:03:1d:ad:a3:2c:eb:ba:db:c9:ef:2a:f4:0e:
f2:d6:9a:b1:8d:95:04:cb:8e:de:5f:9c:40:f5:d3:
ae:04:db:20:c8:cf:4f:a2:f2:60:54:d3:00:cf:46:
1b:91:2b:7a:d2:4d:37:dc:db:e1:34:96:f9:a2:25:
95:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:24:96:73:79:DD:51:47:AE:46:96:08:D7:0E:ED:BB:67:FC:1F:21
X509v3 Authority Key Identifier:
keyid:26:8D:10:D1:09:DD:91:25:5C:84:DD:62:30:76:41:00:23:74:FC:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jo0Q0QndkSVchN1iMHZBACN0_Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7fb7a0-2eb8-47c6-86e4-9ea286bd55fb/1/rCSWc3ndUUeuRpYI1w7tu2f8HyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7fb7a0-2eb8-47c6-86e4-9ea286bd55fb/1/Jo0Q0QndkSVchN1iMHZBACN0_Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.98.0/24
Signature Algorithm: sha256WithRSAEncryption
81:9a:7a:ef:e6:68:33:49:d0:67:60:b5:10:d4:f3:c6:5c:9a:
af:6b:26:ef:53:58:c0:d0:38:a7:3e:af:2a:5e:38:a5:51:43:
02:65:e1:75:9b:3f:81:6b:4a:19:b1:b2:be:cd:e2:ad:f9:ab:
b0:88:ff:e1:4f:0f:eb:aa:b2:da:37:26:91:03:7d:cc:26:5b:
c2:f0:1a:a5:87:47:75:5e:d3:57:58:5f:fe:94:0d:73:63:24:
0b:bb:d9:2b:d0:54:52:cd:fb:48:9f:73:33:a7:37:53:7b:b8:
cd:a9:7d:99:47:0d:78:07:c7:29:65:4f:cf:4c:d9:f5:3f:0b:
54:20:0c:9a:d9:26:50:8e:f2:87:2c:c7:d6:4b:46:5c:fb:74:
5c:dd:b0:a8:54:ca:ea:bb:9b:a2:21:8c:ed:b8:84:ae:ae:38:
bf:0b:fc:2f:da:c0:1b:2f:d8:78:5c:17:f9:f4:c3:dd:f0:a6:
6b:0d:0a:54:bd:04:c8:58:ea:52:d2:5f:cc:a7:5e:e5:c0:a6:
c8:82:65:c4:e5:4d:3a:c2:c8:96:02:63:74:b1:0c:10:49:ab:
e1:3e:47:3b:2c:f8:d4:dd:c9:d6:6e:4f:bf:13:9d:c1:5d:8b:
76:bc:05:22:3b:4c:32:cd:0c:9f:97:41:64:c5:e6:b4:0d:e5:
28:6c:1f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:07 2023 by rpki-client on console-fra.rpki-client.org