Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/dd61e3-f8cc-4f83-a8c4-de9d0401a6f6/1/IzZuII5mFQuSNmotkdtQJz87muk.roa
File: IzZuII5mFQuSNmotkdtQJz87muk.roa (raw, json)
Hash identifier: vt1LWGZyb+APZBk2oqooYJKR+kYgTxPPWcz123Q8Obc=
Subject key identifier: 23:36:6E:20:8E:66:15:0B:92:36:6A:2D:91:DB:50:27:3F:3B:9A:E9
Certificate issuer: /CN=7d00ef4f3bf65b87cfa02ef7b4a6589ba2de4ff7
Certificate serial: 018573313360207330F75329E7EA41309294
Authority key identifier: 7D:00:EF:4F:3B:F6:5B:87:CF:A0:2E:F7:B4:A6:58:9B:A2:DE:4F:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQDvTzv2W4fPoC73tKZYm6LeT_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/dd61e3-f8cc-4f83-a8c4-de9d0401a6f6/1/IzZuII5mFQuSNmotkdtQJz87muk.roa
Signing time: Mon 02 Jan 2023 15:54:42 +0000
ROA not before: Mon 02 Jan 2023 15:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196972
IP address blocks: 193.105.192.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:33:60:20:73:30:f7:53:29:e7:ea:41:30:92:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d00ef4f3bf65b87cfa02ef7b4a6589ba2de4ff7
Validity
Not Before: Jan 2 15:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23366e208e66150b92366a2d91db50273f3b9ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0a:d8:51:2f:4d:d2:86:ea:c8:01:ef:a4:ec:
6e:ca:68:0e:68:c3:5f:b5:f8:02:e8:5d:0e:14:19:
66:5b:cd:9a:d2:bf:51:25:06:80:4b:6d:86:cc:78:
96:df:d4:0c:5a:14:ab:20:a4:85:55:57:11:99:df:
74:87:12:91:5c:4b:0f:f7:10:f5:5f:7e:6b:f9:9b:
fd:2e:30:57:e1:fb:fa:5e:18:14:3f:d7:b8:f0:ee:
59:3a:18:5f:81:a7:17:c8:a2:7b:2c:a9:82:e9:24:
78:9a:8f:0b:3c:da:8b:fb:ab:dc:3f:8f:7d:86:1d:
fb:02:5a:1d:14:70:b4:c3:c0:22:79:22:00:90:d4:
e8:59:26:0d:ed:af:62:97:67:ee:0d:0a:a8:6c:c4:
14:62:58:1f:4f:da:e3:bf:fb:b3:4b:e3:ea:99:04:
b9:65:75:c4:50:09:97:c3:a4:ea:09:67:4a:32:1d:
5a:4a:fb:f7:a4:a4:93:64:70:07:9e:ed:79:1a:ba:
c4:cc:3b:e7:b9:e0:df:14:57:02:15:84:ba:e5:8c:
e4:7e:80:57:fb:9b:e9:09:f8:70:97:51:0f:e3:58:
76:fe:17:c4:25:ce:89:63:29:c9:a6:92:ea:3a:81:
cf:d5:82:b8:84:ba:9d:6d:bd:28:b8:47:24:40:f6:
aa:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:36:6E:20:8E:66:15:0B:92:36:6A:2D:91:DB:50:27:3F:3B:9A:E9
X509v3 Authority Key Identifier:
keyid:7D:00:EF:4F:3B:F6:5B:87:CF:A0:2E:F7:B4:A6:58:9B:A2:DE:4F:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQDvTzv2W4fPoC73tKZYm6LeT_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/dd61e3-f8cc-4f83-a8c4-de9d0401a6f6/1/IzZuII5mFQuSNmotkdtQJz87muk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/dd61e3-f8cc-4f83-a8c4-de9d0401a6f6/1/fQDvTzv2W4fPoC73tKZYm6LeT_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.192.0/24
Signature Algorithm: sha256WithRSAEncryption
82:1f:47:2a:68:19:c7:24:3d:00:47:a6:ab:d0:5e:29:d3:3c:
de:d6:cb:37:c4:99:0c:ef:2d:4d:70:2b:22:dc:ba:a1:ce:89:
09:58:95:94:53:aa:9d:5e:28:b5:15:ca:8f:b5:bd:be:1f:b3:
fd:d1:83:72:41:51:6e:91:de:1c:f5:32:21:05:52:0b:a8:84:
3f:67:9a:f2:e1:84:4b:60:30:8a:60:d7:f3:08:47:57:6c:6f:
d3:17:51:14:79:86:5a:6e:94:2c:2d:bc:f6:fb:6a:42:14:58:
d2:be:e5:bd:29:07:86:d0:ac:04:ce:58:86:ad:aa:07:cb:1b:
3b:0e:6e:24:34:8d:c1:56:0e:33:18:c4:09:96:a2:4c:f4:6e:
a3:39:15:12:e5:5f:00:88:95:5f:fc:d7:1c:c5:75:cc:2f:c0:
45:bc:c5:e5:70:99:33:8d:13:4d:7d:67:a4:de:b9:17:37:27:
5e:fe:37:cf:dd:38:ec:91:6d:4d:46:b9:12:a7:90:85:18:48:
5e:29:5a:c2:41:1c:e3:67:fe:1d:1b:80:22:72:99:bd:cc:bc:
25:bc:75:8e:23:59:cd:5c:83:7f:0a:82:9c:7a:b5:09:b6:90:
cf:2b:f6:4b:3d:58:68:55:04:a9:61:5a:a4:80:85:c4:0d:fa:
7d:92:83:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:38 2024 by rpki-client on console-ams.rpki-client.org