Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/xMN5dJeBjiZDgvWuoMvfHbo2JV0.roa
File: xMN5dJeBjiZDgvWuoMvfHbo2JV0.roa (raw, json)
Hash identifier: fHuQhQII1I0+qR+7t9HYkwgm2+u/VsBeIw/Bpx8w454=
Subject key identifier: C4:C3:79:74:97:81:8E:26:43:82:F5:AE:A0:CB:DF:1D:BA:36:25:5D
Certificate issuer: /CN=0146b429f8c49611fcfea1efa1a51b9c0eddb6e7
Certificate serial: 01894AB65968DCB028CB85E2C4F2A436612C
Authority key identifier: 01:46:B4:29:F8:C4:96:11:FC:FE:A1:EF:A1:A5:1B:9C:0E:DD:B6:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUa0KfjElhH8_qHvoaUbnA7dtuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/xMN5dJeBjiZDgvWuoMvfHbo2JV0.roa
Signing time: Wed 12 Jul 2023 15:26:51 +0000
ROA not before: Wed 12 Jul 2023 15:26:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 193.105.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4a:b6:59:68:dc:b0:28:cb:85:e2:c4:f2:a4:36:61:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0146b429f8c49611fcfea1efa1a51b9c0eddb6e7
Validity
Not Before: Jul 12 15:26:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4c3797497818e264382f5aea0cbdf1dba36255d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:92:46:94:9b:77:66:bc:18:d2:a9:07:66:05:
20:ad:30:10:8b:04:c8:b4:83:51:c5:3a:8c:a9:b5:
cb:30:c0:1e:44:c8:52:31:df:25:52:b5:7a:f6:c6:
4b:1d:b7:26:19:d1:41:fb:c4:7d:3a:41:a6:b1:b9:
d5:13:cb:33:0d:87:f3:83:4d:3c:f8:bb:f5:95:28:
03:f8:c8:d9:51:eb:0e:c9:20:83:e2:f4:e8:45:6e:
78:20:de:6f:d4:57:78:dd:64:08:f0:3c:a1:66:d1:
29:ac:f3:1b:3e:c4:5a:5e:ee:10:9e:f7:59:be:b8:
5b:a6:b6:e0:fb:c2:16:e7:1e:dd:70:7a:dc:98:81:
b6:58:d4:62:62:ce:a5:b0:9f:1b:15:c4:52:09:35:
28:44:52:a4:62:2a:94:b1:9f:58:56:81:ec:c4:ca:
29:13:d4:27:60:28:ee:3e:a1:98:0b:b0:d0:f8:5d:
54:59:3e:3e:13:04:b4:40:75:98:0c:80:15:8e:a7:
15:3a:c5:85:88:24:98:27:6f:c8:cb:a5:ec:c2:18:
58:03:bb:68:8d:69:2c:85:d0:b0:35:01:0f:21:d4:
a1:d1:29:4c:4c:f2:3f:e1:cb:fc:bd:4f:74:75:ae:
82:2e:27:7a:fa:80:3e:09:f8:98:f6:64:e1:e3:f7:
34:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C3:79:74:97:81:8E:26:43:82:F5:AE:A0:CB:DF:1D:BA:36:25:5D
X509v3 Authority Key Identifier:
keyid:01:46:B4:29:F8:C4:96:11:FC:FE:A1:EF:A1:A5:1B:9C:0E:DD:B6:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUa0KfjElhH8_qHvoaUbnA7dtuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/xMN5dJeBjiZDgvWuoMvfHbo2JV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/e5e379-656d-4622-a7bc-ea26e746a0ad/1/AUa0KfjElhH8_qHvoaUbnA7dtuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.71.0/24
Signature Algorithm: sha256WithRSAEncryption
70:29:35:99:11:77:ac:02:32:d8:b4:60:3d:96:0e:35:22:9d:
31:ad:db:de:6d:d5:03:23:dd:8f:a1:fd:d6:12:9c:42:87:e5:
24:8c:31:fe:09:e2:4d:52:12:6e:b3:13:43:1e:ca:cd:26:7f:
d0:6f:ae:66:31:79:32:83:20:6b:54:3c:83:5c:70:b8:82:8e:
ce:cd:ee:d1:74:84:cf:fd:d8:8e:b1:a4:02:45:eb:70:91:a9:
8d:98:c6:42:be:7b:4d:e8:60:29:8e:19:31:02:59:09:67:f8:
63:0b:e5:cd:de:aa:cd:8e:4a:d0:5f:2a:32:19:b7:58:de:83:
0c:47:17:8a:d7:85:54:34:92:3b:0a:3c:f7:20:1b:21:02:4c:
bd:6b:96:89:65:17:95:f3:1e:02:36:b9:59:57:19:ea:2c:8e:
a9:a5:01:86:eb:dc:39:11:34:a9:fa:b4:f0:84:6d:eb:ae:93:
c0:ba:0d:bf:f2:56:aa:cd:b8:97:12:fc:25:ff:da:c3:4d:d2:
0a:17:07:99:63:4e:4a:4a:2c:5f:30:e2:41:1f:6d:83:9c:d6:
c2:7a:fb:e2:c0:dc:fc:5e:d6:6d:84:90:cf:4d:f7:5f:55:f0:
97:f6:29:43:5e:fb:e2:81:9c:47:0d:7b:4e:44:6a:58:4e:c8:
22:81:02:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:35:55 2024 by rpki-client on console-fra.rpki-client.org