Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/DT4xaPo4yOaJnv0HOo2V9aXFBTI.roa
File: DT4xaPo4yOaJnv0HOo2V9aXFBTI.roa (raw, json)
Hash identifier: 2TeLNqLo3uouE9e1IUJRfPPb37kTVEzl0gpnuee20ZA=
Subject key identifier: 0D:3E:31:68:FA:38:C8:E6:89:9E:FD:07:3A:8D:95:F5:A5:C5:05:32
Certificate issuer: /CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c
Certificate serial: 01874EA80EBF179E3B304748F86AFBCD3DA2
Authority key identifier: 1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/DT4xaPo4yOaJnv0HOo2V9aXFBTI.roa
Signing time: Tue 04 Apr 2023 23:44:09 +0000
ROA not before: Tue 04 Apr 2023 23:44:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 132.66.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4e:a8:0e:bf:17:9e:3b:30:47:48:f8:6a:fb:cd:3d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c
Validity
Not Before: Apr 4 23:44:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d3e3168fa38c8e6899efd073a8d95f5a5c50532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:01:e2:f4:99:75:5c:69:18:9e:54:57:7c:4a:
14:51:48:93:8b:3a:1c:eb:4b:01:b8:6d:0d:3e:da:
38:8a:d5:cc:44:40:30:de:cd:63:6b:2c:32:5f:41:
f0:db:c4:45:50:4e:af:ba:91:4a:e2:ab:b4:07:5b:
a5:fc:62:a0:02:e0:1c:da:dd:3f:8d:70:6b:09:29:
cc:61:fd:08:bf:1e:56:47:e4:2b:fd:d1:31:cb:d4:
c9:80:71:0b:a3:d0:b0:8b:8b:62:a5:05:f9:62:f3:
d7:56:c2:2d:4c:48:05:7d:5b:cd:74:ea:de:ba:f9:
4f:53:db:2f:3e:f7:4a:73:ff:aa:06:e8:17:74:99:
94:fa:8e:10:9c:12:be:58:76:05:8f:f8:10:8b:f9:
e7:4c:83:49:6d:45:4a:86:eb:ff:db:53:1a:aa:67:
af:8d:02:dd:24:8b:25:36:d1:38:89:a0:fa:32:8a:
77:88:52:1b:6a:67:5c:72:e9:03:30:8c:ca:8d:41:
c3:28:b6:c3:e0:d9:6d:46:fc:0d:d4:f7:b8:24:ed:
93:49:82:b2:b8:87:47:69:8b:50:e5:d8:00:35:8d:
35:b1:2f:fd:6a:ef:c1:01:90:6a:3f:a6:3b:3c:13:
aa:6b:62:34:96:5a:38:00:10:03:7f:40:d1:26:9e:
9b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:3E:31:68:FA:38:C8:E6:89:9E:FD:07:3A:8D:95:F5:A5:C5:05:32
X509v3 Authority Key Identifier:
keyid:1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/DT4xaPo4yOaJnv0HOo2V9aXFBTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/HSzcucdvXgzgw4XX4O8VVy0VpUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.66.251.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:25:88:95:9d:0a:a4:94:87:b5:7a:7e:4e:ac:da:10:49:75:
58:8e:39:08:8b:2c:b0:74:60:9a:fa:78:56:37:9b:43:cd:a2:
5a:c0:68:a8:33:6a:cb:ee:a5:3d:9d:e4:ca:50:69:aa:3e:66:
8d:d5:50:a7:43:69:85:e4:c8:1c:0b:08:f9:82:4c:27:74:c8:
60:5c:4a:ac:6d:db:ff:06:f5:e6:77:d9:95:cf:10:9b:a7:da:
a6:86:32:41:c5:7a:ee:ef:9c:0b:cc:95:9e:32:d2:19:94:aa:
ad:14:e9:6f:9b:d6:45:06:03:ba:4d:0b:2c:09:b3:34:c1:51:
82:5e:c3:b6:0f:21:f0:63:29:3d:d8:0c:21:6c:ca:63:89:b9:
36:0d:a0:d8:13:57:07:38:d6:3e:57:4b:f5:e5:c8:92:a7:22:
4d:6c:0d:16:b4:69:7d:be:ec:5d:c1:73:bf:2f:4c:d2:71:71:
23:be:5b:8c:28:ef:b1:5a:9c:a4:5e:68:ba:2f:4a:7b:4b:35:
dd:fd:e0:fb:38:08:8e:13:e2:82:5e:fb:1a:63:33:7f:90:f6:
03:55:96:70:84:4c:59:34:b1:38:98:12:41:86:a8:8a:6e:87:
b2:09:90:23:98:b0:fb:af:ea:b3:0b:97:f1:ca:71:96:e8:be:
2a:87:0f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:49 2023 by rpki-client on console-fra.rpki-client.org