Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/dJl8Lpd4Sto3-y9ip7aDII9Pvh0.roa
File: dJl8Lpd4Sto3-y9ip7aDII9Pvh0.roa (raw, json)
Hash identifier: StGkrzEsFHGtfiL4qSgiUps3BYsqUadkC8QKCrWJBcw=
Subject key identifier: 74:99:7C:2E:97:78:4A:DA:37:FB:2F:62:A7:B6:83:20:8F:4F:BE:1D
Certificate issuer: /CN=6764b9eeca258ae78c4d51321a8bdfef9a2b6a3c
Certificate serial: 01856CCABA1AFD79EF7A56F5B248314BCF69
Authority key identifier: 67:64:B9:EE:CA:25:8A:E7:8C:4D:51:32:1A:8B:DF:EF:9A:2B:6A:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2S57soliueMTVEyGovf75orajw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/dJl8Lpd4Sto3-y9ip7aDII9Pvh0.roa
Signing time: Sun 01 Jan 2023 10:05:03 +0000
ROA not before: Sun 01 Jan 2023 10:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20912
IP address blocks: 193.36.109.0/24 maxlen: 24
193.36.108.0/24 maxlen: 24
193.36.108.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:ba:1a:fd:79:ef:7a:56:f5:b2:48:31:4b:cf:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6764b9eeca258ae78c4d51321a8bdfef9a2b6a3c
Validity
Not Before: Jan 1 10:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74997c2e97784ada37fb2f62a7b683208f4fbe1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6d:f2:63:3e:47:6d:ca:46:b0:c3:58:fe:d5:
4a:b0:75:b4:ea:6f:3f:84:ca:82:84:5a:5e:9f:f8:
ca:15:54:f0:d8:c8:1d:30:bb:b6:c0:bc:1e:fc:fe:
30:44:20:5f:1b:09:cd:87:d7:e6:40:4a:92:bb:ac:
18:17:35:de:f0:6b:24:3d:3b:f4:f2:56:f8:b7:de:
c0:15:10:69:dc:27:e4:aa:10:3c:a2:be:f8:06:bf:
54:07:9e:4c:ec:ae:9d:9a:ec:7b:a1:5d:0b:43:24:
e3:59:20:1e:43:78:c9:11:1f:54:15:4b:9a:63:91:
5b:6a:07:bf:d1:ba:24:aa:5e:9e:d6:1b:f6:ee:b3:
7e:a1:db:61:90:00:ed:f7:73:3a:23:e4:77:65:08:
76:2d:95:67:fb:40:ee:31:75:c9:2f:43:09:3c:ba:
6b:75:f1:18:ea:23:9a:0e:ee:38:36:d9:67:a8:70:
4e:ec:7a:c4:d8:7e:ac:5b:8f:c4:d5:a1:f7:5c:b2:
43:61:bd:cf:7d:a4:51:ff:d1:2d:0e:c1:ba:76:e0:
75:fe:37:c2:4e:15:b0:59:0b:49:9a:8f:4b:b2:43:
b4:63:ab:02:44:37:e3:e5:b3:05:31:a4:8a:11:64:
0b:39:d2:ef:12:94:89:6c:8b:73:ca:5b:a3:54:ec:
ad:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:99:7C:2E:97:78:4A:DA:37:FB:2F:62:A7:B6:83:20:8F:4F:BE:1D
X509v3 Authority Key Identifier:
keyid:67:64:B9:EE:CA:25:8A:E7:8C:4D:51:32:1A:8B:DF:EF:9A:2B:6A:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2S57soliueMTVEyGovf75orajw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/dJl8Lpd4Sto3-y9ip7aDII9Pvh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/Z2S57soliueMTVEyGovf75orajw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.108.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:32:33:de:49:6c:08:26:d9:8e:ed:e5:59:b8:ce:6e:14:0a:
7b:9c:ec:a8:fc:f3:90:07:16:54:e7:ea:94:71:c9:da:fe:9c:
15:d6:d9:73:0a:fb:8a:a7:78:94:a7:36:77:78:45:c7:54:e5:
c0:e5:74:c3:2c:54:4c:3f:2e:fe:f1:f7:14:70:15:58:d8:c1:
2d:d5:6f:91:a1:84:5f:94:a0:16:53:4b:2d:61:00:51:e2:6b:
9e:b6:54:b7:2a:96:cc:ae:bb:78:8f:7a:ec:33:1d:13:0f:19:
f8:2e:e5:58:77:6e:57:aa:a7:90:cd:de:e5:8b:be:f7:62:d9:
f9:65:80:91:1b:94:f4:95:77:75:72:fe:f7:eb:ad:54:3f:cd:
24:06:cb:f4:1d:5e:ad:0a:72:0d:1c:53:81:d5:3f:31:81:3d:
a1:c5:a9:47:c9:c9:8f:10:20:db:a7:97:76:c9:e9:9a:47:b2:
3b:0f:64:fc:0a:a5:e3:54:21:51:76:d2:f2:31:24:25:60:3d:
7b:c1:1a:7c:1c:15:fb:69:d0:72:c0:d3:ee:66:16:02:61:83:
f3:ae:ed:4f:83:48:00:f6:5d:5e:2d:f6:c2:3b:81:76:d8:01:
20:2c:88:99:c5:37:55:db:c0:3c:3e:16:5f:82:50:26:1b:60:
75:2d:e0:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:23 2024 by rpki-client on console-ams.rpki-client.org