Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/teD5Ga14ZrMH4RqxTo2TwMi5FmA.roa
File: teD5Ga14ZrMH4RqxTo2TwMi5FmA.roa (raw, json)
Hash identifier: gB8pxTAV3c14NLtuZUZdHYN7HIVXDaTCOI57JVAwED8=
Subject key identifier: B5:E0:F9:19:AD:78:66:B3:07:E1:1A:B1:4E:8D:93:C0:C8:B9:16:60
Certificate issuer: /CN=dfc2603437ef74117fa12272ec42c2527da800c7
Certificate serial: 018572836F6D43BF1FFE6D277E24413483F4
Authority key identifier: DF:C2:60:34:37:EF:74:11:7F:A1:22:72:EC:42:C2:52:7D:A8:00:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/38JgNDfvdBF_oSJy7ELCUn2oAMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/teD5Ga14ZrMH4RqxTo2TwMi5FmA.roa
Signing time: Mon 02 Jan 2023 12:44:54 +0000
ROA not before: Mon 02 Jan 2023 12:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198175
IP address blocks: 193.134.8.0/21 maxlen: 21
2a10:8240::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:6f:6d:43:bf:1f:fe:6d:27:7e:24:41:34:83:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfc2603437ef74117fa12272ec42c2527da800c7
Validity
Not Before: Jan 2 12:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5e0f919ad7866b307e11ab14e8d93c0c8b91660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:40:3d:81:f0:5b:72:d1:e6:23:2b:8a:73:f0:
ad:6e:3f:53:ea:85:0e:8f:73:8d:ae:98:f8:a9:13:
e2:ae:0f:2b:88:53:6d:5e:25:6a:22:f7:23:49:d6:
bc:67:49:6c:61:6b:57:f5:b0:44:96:ca:ce:8b:ed:
48:85:d9:82:71:74:d4:df:5a:d8:be:89:3a:64:e5:
b2:37:60:97:fb:d4:4e:ba:60:93:d6:56:80:0c:d9:
c4:b7:ae:37:4d:15:43:65:47:85:60:d9:27:7a:0f:
79:c6:e8:c7:c6:ee:9f:dc:80:5a:1b:ac:30:0d:39:
08:0d:93:63:b0:0a:22:df:6f:4a:c1:8a:19:16:1b:
1d:2d:0d:ab:e1:22:c9:ae:b1:4f:a7:18:bb:24:18:
ce:ea:95:29:ee:3d:6f:4c:eb:5a:16:19:89:0a:69:
68:7a:1c:24:ce:28:02:b6:b8:b2:b0:14:be:5d:5f:
28:3b:e6:cf:20:38:54:4f:08:21:89:49:e2:8d:1d:
a1:aa:bf:01:1b:2f:eb:0b:c7:21:a5:62:ef:d9:ba:
bd:78:70:89:f6:7d:ca:1d:18:ce:e2:f1:2c:9e:7b:
6a:9f:24:78:eb:45:7d:60:df:dc:80:85:24:5e:36:
1f:db:b7:fb:73:ea:29:f6:36:d9:d8:69:1d:5b:82:
31:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E0:F9:19:AD:78:66:B3:07:E1:1A:B1:4E:8D:93:C0:C8:B9:16:60
X509v3 Authority Key Identifier:
keyid:DF:C2:60:34:37:EF:74:11:7F:A1:22:72:EC:42:C2:52:7D:A8:00:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/38JgNDfvdBF_oSJy7ELCUn2oAMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/teD5Ga14ZrMH4RqxTo2TwMi5FmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b55e40-d8be-48d9-bd55-c83007327449/1/38JgNDfvdBF_oSJy7ELCUn2oAMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.8.0/21
IPv6:
2a10:8240::/32
Signature Algorithm: sha256WithRSAEncryption
96:62:6b:06:12:67:26:6a:18:ea:d2:f2:30:0a:02:5b:92:9c:
37:ed:b2:47:e7:c9:18:b5:59:01:b1:5e:2d:0a:ea:f5:4d:a8:
9b:e0:d1:2b:40:ae:e0:22:ab:23:dd:b5:d4:79:85:88:9f:f2:
ac:75:d6:49:e7:3f:87:85:7e:e1:b4:75:82:6e:9b:7e:1b:92:
ad:d5:ac:ee:ef:4d:c9:5a:6a:ec:7e:12:08:f5:21:0c:fb:b2:
27:e5:2f:ed:dc:cd:b1:16:3c:c0:d2:0f:4b:47:ec:33:86:4e:
65:18:11:35:08:3f:f7:05:63:68:09:48:34:76:d2:3d:5a:b8:
23:64:54:91:05:84:8f:43:2e:20:91:72:56:04:22:c1:27:e9:
61:75:c7:ed:f7:9f:cc:86:06:84:f8:24:38:92:45:3b:09:1d:
02:36:47:c3:22:d7:19:20:d5:85:3b:6e:c3:4a:9a:84:f0:41:
2c:d3:bb:f3:81:16:b7:c6:d2:79:58:85:b7:73:1d:92:7f:03:
00:7e:95:02:b7:0b:c0:21:52:ad:48:34:5e:34:8e:57:2e:b6:
d8:24:ab:26:c0:29:4c:75:d8:e4:dc:76:58:b1:d6:db:53:c8:
c6:92:3c:71:d7:ff:67:b0:87:72:63:e0:23:a2:82:a6:61:e7:
26:8c:da:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:43 2024 by rpki-client on console-fra.rpki-client.org