Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/40c2db-05d7-4c43-95c6-03a8eaaf8433/1/vrF5Yk0Rki2aW2jPn6xKkpbJTaI.roa
File: vrF5Yk0Rki2aW2jPn6xKkpbJTaI.roa (raw, json)
Hash identifier: KT5P7B1Adh02iSkz3Vs6omA961PxSjWGtqIDNUbCR9s=
Subject key identifier: BE:B1:79:62:4D:11:92:2D:9A:5B:68:CF:9F:AC:4A:92:96:C9:4D:A2
Certificate issuer: /CN=d9b594f3057dfb6243f69c0046e23bfff91217ee
Certificate serial: 01856F66EF5142B55665A058F6F40A7F3104
Authority key identifier: D9:B5:94:F3:05:7D:FB:62:43:F6:9C:00:46:E2:3B:FF:F9:12:17:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2bWU8wV9-2JD9pwARuI7__kSF-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/40c2db-05d7-4c43-95c6-03a8eaaf8433/1/vrF5Yk0Rki2aW2jPn6xKkpbJTaI.roa
Signing time: Sun 01 Jan 2023 22:14:54 +0000
ROA not before: Sun 01 Jan 2023 22:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 193.163.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ef:51:42:b5:56:65:a0:58:f6:f4:0a:7f:31:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9b594f3057dfb6243f69c0046e23bfff91217ee
Validity
Not Before: Jan 1 22:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=beb179624d11922d9a5b68cf9fac4a9296c94da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:87:a9:6e:24:e1:ce:d3:08:a4:cc:9e:46:9c:
73:a3:93:b6:1e:57:f3:a9:60:e2:fe:85:c9:67:c9:
53:f5:43:4b:ad:23:e9:f7:1f:30:1a:bf:16:f9:86:
1f:23:77:5d:c2:c2:45:92:9a:24:09:f5:a6:8e:a7:
3e:0b:0f:d1:44:0d:ec:c5:89:5a:68:c5:4e:73:72:
6d:d0:50:25:82:4d:5c:0a:9d:77:1c:e1:d6:f1:b4:
44:b2:f4:24:b2:2e:41:0f:7a:0b:01:7f:da:bd:de:
5a:25:6f:ae:c7:2d:eb:1f:a3:a0:3e:c0:96:02:f9:
92:d6:f2:b8:bc:40:54:5e:ab:fd:66:5f:6f:db:b7:
44:b5:7d:78:84:fe:6e:b8:13:cc:96:77:2c:fe:43:
1a:02:0d:eb:4e:36:34:07:8f:6d:c1:6b:da:95:9b:
14:69:33:a9:47:7d:e4:75:79:c6:e1:fa:3e:b9:8e:
66:be:48:f8:02:77:f6:a6:a5:de:64:0f:12:d3:9f:
a5:d7:4c:80:a7:7f:8a:df:98:46:86:b6:9e:58:60:
d7:c2:b4:2d:59:18:97:4f:d3:6d:da:3e:3b:19:8e:
cd:c1:60:8d:11:c0:b5:d8:b7:37:48:56:a0:fc:09:
d2:34:55:0b:97:80:81:9a:2c:dc:9f:65:9f:f7:da:
92:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B1:79:62:4D:11:92:2D:9A:5B:68:CF:9F:AC:4A:92:96:C9:4D:A2
X509v3 Authority Key Identifier:
keyid:D9:B5:94:F3:05:7D:FB:62:43:F6:9C:00:46:E2:3B:FF:F9:12:17:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2bWU8wV9-2JD9pwARuI7__kSF-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/40c2db-05d7-4c43-95c6-03a8eaaf8433/1/vrF5Yk0Rki2aW2jPn6xKkpbJTaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/40c2db-05d7-4c43-95c6-03a8eaaf8433/1/2bWU8wV9-2JD9pwARuI7__kSF-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.23.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:83:d2:4d:b1:af:3c:0e:8b:2d:a9:09:f1:89:8e:7d:14:62:
57:9f:69:69:7b:5c:18:ee:41:24:13:bd:25:34:07:f6:e6:b1:
2d:ba:ee:a5:ca:1a:c0:b6:1a:48:29:2f:7f:4b:24:69:e3:fa:
88:b8:5b:c9:79:47:d7:4f:b1:c3:7b:7d:e2:07:7b:b4:27:37:
94:38:44:be:51:dc:05:58:fb:e3:2b:c4:57:ef:67:9c:78:7d:
de:9e:ac:05:9b:3d:e0:1a:80:a2:d7:30:55:f9:62:1c:4c:b1:
16:c0:3b:61:50:73:fd:06:dd:68:c6:45:f9:b8:dc:8c:62:a9:
77:e9:7f:66:38:dd:3f:c2:1d:06:6f:e2:34:a0:45:3d:e0:f5:
7e:54:2b:15:7c:96:45:93:41:ab:9f:7a:ce:48:1a:b9:53:a4:
e1:a2:c8:ea:df:a0:09:1d:d5:2d:32:b9:3b:d1:fc:17:fa:74:
b5:ba:ad:50:23:ee:6e:6f:6f:11:72:e7:e1:ee:ac:a1:ab:c3:
65:2b:1f:d5:11:56:9e:63:af:e2:f8:95:2c:ad:82:82:72:3c:
da:77:8d:f1:0a:6e:45:50:cd:78:b3:0d:25:32:74:df:00:10:
c8:6a:9c:2b:5b:16:7a:93:eb:49:42:8e:20:95:28:67:62:76:
b5:b6:23:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:52 2023 by rpki-client on console-fra.rpki-client.org