Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/OpB1cX4CkZqw9ZEK3HcvWc47WT4.roa
File: OpB1cX4CkZqw9ZEK3HcvWc47WT4.roa (raw, json)
Hash identifier: GkgeMoIJx0Kh1EfR3Ac5TLb71Xl/Yh/VCO8mQ09INQc=
Subject key identifier: 3A:90:75:71:7E:02:91:9A:B0:F5:91:0A:DC:77:2F:59:CE:3B:59:3E
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 0189CF7329060E034827DE50054E5E4E6A41
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/OpB1cX4CkZqw9ZEK3HcvWc47WT4.roa
Signing time: Mon 07 Aug 2023 10:02:58 +0000
ROA not before: Mon 07 Aug 2023 10:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.30.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cf:73:29:06:0e:03:48:27:de:50:05:4e:5e:4e:6a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: Aug 7 10:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a9075717e02919ab0f5910adc772f59ce3b593e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e9:5b:ac:b1:ac:99:47:97:1e:ff:2f:b5:c6:
8a:32:ca:9c:46:df:b2:8a:48:5c:a7:fb:4e:b9:da:
ec:68:ea:75:e7:18:cb:22:08:dd:3f:28:e4:a6:41:
0f:a2:e1:8d:94:d1:27:2b:60:1d:2a:5b:ad:3c:73:
6b:58:1c:cb:23:86:36:b1:12:08:15:6b:dd:2f:b5:
fc:8d:28:0f:d8:8b:2f:85:4f:21:7c:35:8f:81:96:
9c:4b:0d:ff:5a:02:14:f2:79:83:11:fa:2c:69:dc:
c5:bc:5b:30:3a:4f:d1:8a:c6:45:0d:7e:be:70:61:
15:28:15:20:cb:4b:12:ae:57:46:8a:bd:e7:28:ef:
0a:55:94:38:c6:74:b3:32:f4:17:46:da:49:93:f0:
18:cf:96:ac:5a:da:f7:30:f9:17:11:38:d7:f6:f5:
e7:a0:e2:3b:0a:96:c1:4d:35:5b:3c:c6:cb:52:34:
eb:0e:db:ac:bf:16:fd:79:d0:bf:9a:57:83:0f:7d:
ca:09:f4:63:e0:80:3c:60:a9:29:f4:8b:da:b5:fa:
f4:40:72:21:5c:f1:21:4b:0d:c3:59:03:bc:e7:01:
71:95:5e:bc:98:9e:b8:c9:98:5d:4c:c3:e5:55:91:
67:3b:47:01:81:44:73:f0:29:8e:a2:33:cc:5f:4a:
cb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:90:75:71:7E:02:91:9A:B0:F5:91:0A:DC:77:2F:59:CE:3B:59:3E
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/OpB1cX4CkZqw9ZEK3HcvWc47WT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.101.0/24
Signature Algorithm: sha256WithRSAEncryption
13:10:aa:81:12:8e:a0:77:aa:f3:a0:65:90:c5:18:b4:47:87:
ac:99:3a:a4:c4:41:1d:b5:d4:50:da:4f:93:a9:ed:4f:40:08:
c0:c7:f4:cd:da:8f:47:05:c3:22:69:78:9d:d0:7a:8b:cf:f7:
c6:53:38:26:0a:96:ca:66:5c:d7:74:3e:80:e1:ec:34:97:b7:
60:13:38:01:3b:54:60:d8:3f:4b:5a:0f:b1:e9:a3:f0:39:6e:
55:72:ce:60:99:1f:1d:27:ec:cf:e5:2a:80:f6:70:40:23:2b:
97:bd:d4:1a:3e:13:d3:17:a9:f9:e8:f1:06:aa:a4:30:7a:97:
22:ee:c7:ae:b3:b1:9c:af:e0:ca:e1:90:d7:c6:9f:04:35:61:
3b:f6:14:1d:c3:3a:51:fe:8a:64:5e:48:0c:0b:0b:98:d7:51:
a7:7c:89:02:d4:12:ff:7c:fd:8a:a6:2f:e0:0f:e1:ea:d1:27:
23:43:57:f3:ed:39:17:61:3f:46:6f:5b:d4:45:9d:80:64:e1:
24:61:af:a7:74:a6:33:89:c0:43:ba:db:28:fb:c0:af:2f:e6:
2b:4d:23:a3:31:78:3f:71:1f:e9:49:d6:e7:55:d7:5d:c4:16:
8e:3f:63:17:10:8a:d1:ca:b6:e6:0d:b3:c4:35:e9:8d:b2:aa:
e3:73:e4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:23 2024 by rpki-client on console-ams.rpki-client.org