Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/XOfLVDBtLnTEp2XAaeHceRreO-Q.roa
File: XOfLVDBtLnTEp2XAaeHceRreO-Q.roa (raw, json)
Hash identifier: 5+GeODXk6n/IixuaU+kSehzCgHvqgHa47MBU2EbJ+yg=
Subject key identifier: 5C:E7:CB:54:30:6D:2E:74:C4:A7:65:C0:69:E1:DC:79:1A:DE:3B:E4
Certificate issuer: /CN=0abd7ddce4fd703bc3fbcafc1b5d577e1a757575
Certificate serial: 0185718311C1026E49E2B76EEAE36790672B
Authority key identifier: 0A:BD:7D:DC:E4:FD:70:3B:C3:FB:CA:FC:1B:5D:57:7E:1A:75:75:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cr193OT9cDvD-8r8G11Xfhp1dXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/XOfLVDBtLnTEp2XAaeHceRreO-Q.roa
Signing time: Mon 02 Jan 2023 08:04:53 +0000
ROA not before: Mon 02 Jan 2023 08:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34428
IP address blocks: 193.41.57.0/24 maxlen: 24
2a06:7d40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:11:c1:02:6e:49:e2:b7:6e:ea:e3:67:90:67:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0abd7ddce4fd703bc3fbcafc1b5d577e1a757575
Validity
Not Before: Jan 2 08:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ce7cb54306d2e74c4a765c069e1dc791ade3be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b2:c3:5a:12:3b:e1:ff:ea:e4:65:3e:d0:e6:
23:aa:ca:31:4d:da:01:5a:40:fd:2f:63:04:a5:2b:
22:75:83:57:7d:56:af:b1:9d:76:cf:59:5b:13:41:
f9:6c:07:94:2c:e6:30:2e:33:3f:f9:c3:c3:fc:7b:
b9:6e:82:9a:ee:8d:dc:25:6c:f1:ad:ef:56:fc:e7:
61:55:6b:77:7e:5f:f7:27:2f:20:70:5c:35:a5:b8:
18:81:95:f5:03:29:3a:22:b4:85:90:57:46:ff:c5:
f9:20:59:93:ea:b3:c6:2c:b4:81:38:d7:7a:96:79:
a9:b3:36:0e:9d:ce:1e:c5:f3:73:9e:40:70:29:7a:
06:14:c0:c9:5f:41:70:ab:26:9b:ed:f0:d6:4e:f2:
92:5d:75:a7:9b:c2:c5:66:a8:55:5b:b2:16:bc:94:
22:1b:fa:b5:49:da:7f:0e:10:d0:b9:2a:dd:e5:e7:
f5:67:5c:0c:a0:3d:e4:a2:f4:3e:87:75:a3:49:8f:
d8:68:fd:1e:c3:12:c3:66:16:63:3e:19:29:89:7b:
45:1d:fc:30:15:2c:77:5c:71:a8:94:46:40:16:c1:
45:cc:77:88:47:f3:0e:f1:2e:d8:93:6e:2f:5d:d6:
9b:49:51:46:c8:13:58:51:16:aa:e9:6d:23:19:c6:
b0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E7:CB:54:30:6D:2E:74:C4:A7:65:C0:69:E1:DC:79:1A:DE:3B:E4
X509v3 Authority Key Identifier:
keyid:0A:BD:7D:DC:E4:FD:70:3B:C3:FB:CA:FC:1B:5D:57:7E:1A:75:75:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cr193OT9cDvD-8r8G11Xfhp1dXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/XOfLVDBtLnTEp2XAaeHceRreO-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d6680c-2ff3-4db5-9702-7d348cca1d20/1/Cr193OT9cDvD-8r8G11Xfhp1dXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.57.0/24
IPv6:
2a06:7d40::/29
Signature Algorithm: sha256WithRSAEncryption
64:fc:58:a7:a6:9b:18:a2:eb:66:51:ba:e3:48:76:9b:4c:a2:
72:63:36:f3:fe:90:7e:7e:fa:fa:15:13:1b:0b:3b:14:91:c8:
8e:31:92:6f:c2:bf:6f:f4:5f:51:9b:47:97:0e:fe:51:c6:e1:
c0:b1:78:32:98:67:7e:e7:78:b1:1a:73:9f:81:6c:93:39:2a:
a6:52:e1:d2:5c:2c:36:0f:e1:97:8f:2a:ee:c8:2b:ec:c7:80:
db:ee:62:bd:01:f8:76:17:bf:1f:d5:7c:6e:25:ac:09:de:b5:
09:88:18:ed:c0:05:c8:bc:67:f9:a6:0e:57:e2:d8:2c:d1:f9:
39:f8:9d:fe:34:d1:d5:34:d7:14:41:e0:e8:f5:eb:09:f9:32:
b5:82:4e:1e:16:e4:fe:2a:c7:77:6a:d0:4a:00:84:97:51:0c:
36:a4:c9:5e:e4:02:7d:46:e9:42:7c:f7:85:cc:01:d0:59:93:
e0:de:2e:7a:bd:53:e0:35:92:df:55:a3:40:44:59:09:37:33:
51:33:70:b1:e2:f9:c7:8d:6d:08:d2:fa:54:8d:fa:bf:f2:11:
3c:40:b4:37:41:92:ae:a1:df:20:48:61:7f:a3:09:5e:e8:b4:
f8:4e:0e:dd:0e:4e:a0:4e:ee:c2:fc:f1:10:92:1c:99:95:93:
64:4f:cf:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:15:55 2024 by rpki-client on console-ams.rpki-client.org