Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/4QTmrXTa3TJ6pmrnVgp1B4nWjVY.roa
File: 4QTmrXTa3TJ6pmrnVgp1B4nWjVY.roa (raw, json)
Hash identifier: 3SCPzEmPMAxSUNRhVcQ2uLJeMSXIMPPp8/cheEl3fZQ=
Subject key identifier: E1:04:E6:AD:74:DA:DD:32:7A:A6:6A:E7:56:0A:75:07:89:D6:8D:56
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F150EB420F49F61340DD2FBCD11272C
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/4QTmrXTa3TJ6pmrnVgp1B4nWjVY.roa
Signing time: Sun 01 Jan 2023 20:45:28 +0000
ROA not before: Sun 01 Jan 2023 20:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205859
IP address blocks: 193.231.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:0e:b4:20:f4:9f:61:34:0d:d2:fb:cd:11:27:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e104e6ad74dadd327aa66ae7560a750789d68d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ef:b2:d6:58:43:1d:19:15:31:48:6f:6d:29:
5e:c1:74:be:ce:68:16:65:b6:51:05:0a:02:a5:e6:
dc:dd:22:36:74:64:93:f3:31:d9:c3:a6:67:7a:c8:
42:ff:08:42:a6:0b:20:83:cc:66:b4:fe:a0:11:ec:
79:94:a5:2c:ce:f2:b0:54:a9:00:c7:2d:27:bd:73:
d0:ac:24:77:0a:30:2f:e6:70:f8:7f:16:8e:fc:c4:
03:01:5c:5e:56:61:0a:8f:4d:f0:54:5b:ef:2d:63:
af:39:d2:53:44:dd:b4:d3:36:2d:ce:05:04:0c:71:
f2:74:e6:18:dc:f2:90:71:fd:4c:83:56:4e:f3:29:
b3:f9:0d:03:65:36:39:7e:19:5d:f7:71:4d:f2:9a:
6f:89:20:9f:17:25:72:b5:1b:27:aa:bd:07:07:50:
ca:db:f7:54:0f:63:5e:a9:76:99:7e:06:e4:37:4d:
97:f9:11:f9:3a:80:d6:9d:74:a9:0b:96:42:83:d3:
75:dc:a9:e0:eb:34:46:7c:de:52:3d:fc:ad:b7:11:
66:6f:ed:d2:8c:ff:84:b4:de:eb:f2:a5:41:75:9a:
7f:54:67:34:2c:d2:c6:26:cf:c8:0a:a5:aa:d6:62:
94:0d:cf:0d:dd:dd:6d:35:f4:92:35:e8:75:55:26:
f9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:04:E6:AD:74:DA:DD:32:7A:A6:6A:E7:56:0A:75:07:89:D6:8D:56
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/4QTmrXTa3TJ6pmrnVgp1B4nWjVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.231.161.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:a4:be:01:c1:61:2a:59:ba:ff:78:5b:cd:5f:69:01:40:df:
29:48:b1:84:87:bb:ec:54:fc:0a:59:29:31:60:d7:b3:7d:f9:
72:28:d8:d5:d8:8e:5d:e1:cb:91:65:dc:bc:f3:28:60:be:ca:
a7:72:e4:03:81:da:41:19:c0:ca:f8:a0:f2:71:ef:5e:35:14:
34:86:27:d0:bf:a6:e3:6f:7b:5d:91:f4:11:d5:d3:e1:22:ef:
71:c7:60:2e:cd:ac:dd:d9:68:86:ad:61:09:61:06:42:26:1a:
64:24:84:e9:04:de:da:cf:bc:98:80:3b:7f:a2:b1:07:a9:76:
32:6d:54:9f:07:f7:2c:87:b4:ed:26:6b:f4:85:34:d5:89:86:
82:d8:d5:1b:2c:05:7d:f0:2c:f8:65:f4:a9:6c:91:7a:40:84:
00:db:b5:3e:15:ec:9d:20:ca:cf:b7:8a:ba:c8:83:60:fd:88:
fb:ee:ea:3c:22:ca:92:93:95:b2:77:6d:1b:6f:12:92:53:11:
1e:1f:7b:60:9f:13:15:b7:d0:42:16:30:72:17:be:69:3a:ee:
5b:94:a1:95:fc:be:13:68:aa:d3:96:ae:bc:f2:4e:4a:14:ad:
03:d9:b6:3a:20:2b:13:4f:a6:6f:c0:11:b2:bb:da:10:e1:76:
bc:6b:20:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:06 2024 by rpki-client on console-fra.rpki-client.org