Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/prHWXqSWBKZ5UE8cE981xfwS030.roa
File: prHWXqSWBKZ5UE8cE981xfwS030.roa (raw, json)
Hash identifier: xgrJHiEcJxu9XruSUzcQSri/9eHtOj3Zi9G3BQGUz1c=
Subject key identifier: A6:B1:D6:5E:A4:96:04:A6:79:50:4F:1C:13:DF:35:C5:FC:12:D3:7D
Certificate issuer: /CN=11e07556c191867add90101580ecf5d5b7429671
Certificate serial: 01856E1D2A2CCD0E82E99B00D9FFB541971B
Authority key identifier: 11:E0:75:56:C1:91:86:7A:DD:90:10:15:80:EC:F5:D5:B7:42:96:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EeB1VsGRhnrdkBAVgOz11bdClnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/prHWXqSWBKZ5UE8cE981xfwS030.roa
Signing time: Sun 01 Jan 2023 16:14:43 +0000
ROA not before: Sun 01 Jan 2023 16:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211384
IP address blocks: 193.3.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:2a:2c:cd:0e:82:e9:9b:00:d9:ff:b5:41:97:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11e07556c191867add90101580ecf5d5b7429671
Validity
Not Before: Jan 1 16:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6b1d65ea49604a679504f1c13df35c5fc12d37d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:63:39:09:9d:b6:47:0a:79:03:40:2e:05:02:
1b:37:ef:8f:78:16:5a:0a:b0:a0:e4:61:24:47:fd:
2f:7d:72:81:9f:16:83:4d:15:0a:31:a1:19:0c:d2:
76:13:1d:5f:fe:4b:b1:85:9d:02:e6:c7:f3:e4:3a:
9c:4b:28:8d:4a:17:78:25:6e:86:f5:1e:1a:69:f2:
cd:c8:ec:c2:04:50:d0:19:df:8a:6b:5e:0d:5e:d8:
4a:9e:de:02:84:2d:b9:40:fe:f4:e3:bc:88:f5:b1:
0f:ba:fe:5f:f1:73:db:3b:02:b6:a2:10:49:38:25:
48:c2:e8:d1:49:65:53:b9:cb:cc:a4:41:82:00:7c:
c7:b0:32:94:c6:84:e4:e7:71:22:13:fa:41:21:ab:
f0:1f:c9:8d:92:81:72:85:a8:35:3b:fd:70:da:09:
8a:c2:75:9b:3d:67:cf:ae:5a:4a:7a:37:29:d5:8a:
4f:ca:3a:e4:0d:41:04:e7:2b:42:08:6b:9f:7e:f0:
b4:32:07:1e:d8:d2:68:8a:37:5c:b7:78:2c:30:f6:
75:71:3a:3f:e5:30:85:dc:37:b7:69:10:d1:ee:38:
b2:95:ea:72:41:fb:6b:2d:5a:c5:eb:f2:d8:5c:62:
0a:b8:30:dd:83:28:45:49:cd:56:f1:a8:d0:92:a2:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B1:D6:5E:A4:96:04:A6:79:50:4F:1C:13:DF:35:C5:FC:12:D3:7D
X509v3 Authority Key Identifier:
keyid:11:E0:75:56:C1:91:86:7A:DD:90:10:15:80:EC:F5:D5:B7:42:96:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeB1VsGRhnrdkBAVgOz11bdClnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/prHWXqSWBKZ5UE8cE981xfwS030.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ae2929-674d-4946-8053-a4368a1b5f63/1/EeB1VsGRhnrdkBAVgOz11bdClnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.32.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:c1:6f:b9:b0:a8:f9:51:4a:2c:55:ff:0d:1e:40:ea:e9:d5:
c9:99:dd:73:9c:ff:f8:c0:e2:fc:c6:dc:ac:6b:4a:98:db:ea:
e2:bf:73:9c:8a:f5:7f:24:9d:97:66:f7:2b:11:14:da:1d:38:
df:1b:21:93:6b:da:f5:82:25:c8:08:08:66:fb:03:63:da:c5:
63:b2:60:b1:bc:6e:8f:c0:91:90:8a:fd:b3:78:85:8b:6a:c0:
e9:c2:c6:4b:d6:25:75:5b:86:15:1f:38:27:ff:21:98:9f:c2:
19:39:77:de:02:f2:22:ba:c8:0f:c6:2b:14:4e:d7:c3:2c:8f:
ad:e3:4b:49:b9:e6:8b:c4:84:a6:ee:43:26:81:46:4c:92:08:
eb:c8:8f:75:43:71:5d:3b:e3:4b:bc:e1:c1:03:95:d1:8c:2b:
72:a8:c7:cd:bc:d0:ea:25:d9:a8:d8:e2:87:9e:73:55:8e:45:
43:7e:64:52:0d:5c:5e:98:10:f2:f4:22:6f:a6:c0:13:12:0f:
5e:cc:46:5c:40:a3:a5:80:06:ef:55:89:96:ba:5a:f7:54:93:
68:98:0c:38:48:4e:6c:11:5f:57:7d:84:31:2a:7b:3b:46:6d:
00:20:e3:ab:95:9e:e7:fe:cb:19:88:6a:f5:a6:2a:c3:d1:c0:
28:5a:28:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:39 2024 by rpki-client on console-fra.rpki-client.org