Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/iOG7mCPzNiqrz9QyKhly6_Tmy5s.roa
File: iOG7mCPzNiqrz9QyKhly6_Tmy5s.roa (raw, json)
Hash identifier: Zv8lw9cN4cgp1aQSN8NN7d+XpkYIGO5ljIZHsViWHZE=
Subject key identifier: 88:E1:BB:98:23:F3:36:2A:AB:CF:D4:32:2A:19:72:EB:F4:E6:CB:9B
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0186654EF1D0C68E61ED0468EF18E63CDFE9
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/iOG7mCPzNiqrz9QyKhly6_Tmy5s.roa
Signing time: Sat 18 Feb 2023 16:15:17 +0000
ROA not before: Sat 18 Feb 2023 16:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400175
IP address blocks: 193.221.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:65:4e:f1:d0:c6:8e:61:ed:04:68:ef:18:e6:3c:df:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Feb 18 16:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88e1bb9823f3362aabcfd4322a1972ebf4e6cb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7a:97:0e:95:ac:4c:28:fc:4f:c7:b0:25:10:
69:15:f2:63:93:47:d6:53:1f:79:16:b4:16:24:9c:
dd:5a:51:34:07:80:1b:1e:4d:92:d8:17:32:89:92:
bc:14:da:f7:2c:da:21:25:38:65:1e:06:f2:57:db:
d8:86:01:b3:d5:15:36:a3:df:94:fd:bc:2e:01:fd:
52:8c:4f:e9:4c:9f:9a:88:34:73:c3:7e:42:ef:ca:
9f:8b:fe:f3:2f:11:9c:8e:08:11:1b:0b:5f:fb:a1:
b6:02:53:f1:90:c9:72:41:f8:46:e5:ea:82:a4:94:
7f:9d:b1:96:74:2f:c8:0c:70:8f:82:14:48:11:41:
25:51:46:24:80:d3:64:28:7f:8f:3a:ed:a5:c7:db:
e9:f6:c8:c5:db:e8:19:4d:8a:6e:3d:00:65:94:7c:
e1:f1:cc:13:9c:87:c3:ec:89:66:3f:1c:f2:b8:d6:
be:2d:71:75:a0:93:5c:36:c4:e7:6e:14:d5:a8:b3:
91:31:26:cc:71:2b:05:a9:6b:e0:92:ad:86:19:2e:
79:2f:53:8a:8b:fe:3e:3e:3c:0b:a7:06:3a:c6:9f:
e0:e7:b5:d8:99:26:5b:b7:09:cb:d4:96:8c:2d:53:
ed:64:6f:76:27:78:e1:73:d7:3c:1f:ce:02:b0:d1:
21:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E1:BB:98:23:F3:36:2A:AB:CF:D4:32:2A:19:72:EB:F4:E6:CB:9B
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/iOG7mCPzNiqrz9QyKhly6_Tmy5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.195.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:82:3f:c6:12:b7:dc:9a:35:36:2e:00:8d:f9:de:ff:ff:9b:
d4:b4:c3:33:0f:88:ed:21:a2:5d:3b:0b:6a:23:45:36:7d:86:
30:8c:1b:fc:e9:6e:6c:48:e9:59:2e:4e:d6:4f:12:1c:01:f8:
4b:b3:d0:38:bd:22:07:63:75:13:ae:f3:85:67:95:40:51:27:
6e:d5:e4:15:51:93:14:e8:0e:75:d4:03:c5:74:7c:78:7b:6f:
6f:6f:5b:97:be:86:eb:6f:c0:45:6a:c9:cb:2c:d1:8a:f3:ae:
34:3a:f4:ad:2c:ea:53:c1:56:9f:a1:95:1f:31:e3:c0:83:7f:
83:99:1b:19:3a:78:69:aa:b8:cd:b1:eb:27:ca:eb:ae:c5:66:
51:ce:cb:ad:1b:cb:8d:cc:5b:06:da:ab:32:26:d9:9f:b3:9b:
99:60:8c:65:cd:7c:ca:ea:40:a7:2a:c7:d8:72:0b:43:9b:7a:
5e:3a:ff:b4:51:79:e5:89:67:69:93:ca:37:4e:d0:99:33:94:
55:12:82:22:0c:91:ee:31:55:5e:e1:37:d6:52:4d:e4:5b:0d:
ea:8a:b1:2d:50:89:1e:8d:3b:b2:d1:f9:4a:d0:72:3d:6f:b2:
eb:88:2c:2c:98:28:d1:31:c6:f0:f6:90:df:78:31:cc:c3:5f:
a3:c7:dd:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:34 2024 by rpki-client on console-ams.rpki-client.org