Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/gONUgtmnqHMa7Nt5R27ifVArROo.roa
File: gONUgtmnqHMa7Nt5R27ifVArROo.roa (raw, json)
Hash identifier: HMasPP56Et98bixWgKuqemOuJ+HztTEb7meucDkq67E=
Subject key identifier: 80:E3:54:82:D9:A7:A8:73:1A:EC:DB:79:47:6E:E2:7D:50:2B:44:EA
Certificate issuer: /CN=0958b54bfee9896c4ada7dc18b3b7f9719da046b
Certificate serial: 01856CB84E54144FB0A7EC4A266E4DBE91ED
Authority key identifier: 09:58:B5:4B:FE:E9:89:6C:4A:DA:7D:C1:8B:3B:7F:97:19:DA:04:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVi1S_7piWxK2n3Bizt_lxnaBGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/gONUgtmnqHMa7Nt5R27ifVArROo.roa
Signing time: Sun 01 Jan 2023 09:44:56 +0000
ROA not before: Sun 01 Jan 2023 09:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.0.237.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:4e:54:14:4f:b0:a7:ec:4a:26:6e:4d:be:91:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0958b54bfee9896c4ada7dc18b3b7f9719da046b
Validity
Not Before: Jan 1 09:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80e35482d9a7a8731aecdb79476ee27d502b44ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5c:eb:29:eb:10:b0:13:68:d1:c6:86:bf:7a:
73:7a:cb:64:bf:2f:3d:d4:98:7b:9f:ec:00:a9:4c:
2b:c5:31:b7:90:44:63:5f:d0:38:5d:6a:6a:74:9e:
31:26:7f:88:b3:4d:f2:1f:a6:33:a0:3d:c5:58:57:
b1:53:bb:e0:95:3e:b8:0c:52:f7:0d:58:11:36:59:
d3:26:01:41:8e:a9:28:2c:33:06:de:3e:ad:24:26:
04:ef:de:16:c7:2a:8f:00:58:e4:e8:ce:62:7a:f8:
ed:2d:2d:33:3a:02:a6:7b:5a:c2:6e:6c:02:97:b4:
17:12:7a:8c:83:02:06:29:61:0f:57:ea:f3:aa:83:
eb:3d:60:11:37:67:08:20:f6:c1:57:6a:49:ba:ec:
b8:f0:f1:e9:b9:9b:91:d5:5f:b6:65:9d:f2:e6:16:
a7:80:4b:5b:1a:af:54:5b:51:c3:78:b7:7e:59:d4:
d3:7b:8e:d1:1a:e0:40:48:ed:45:0f:c9:f2:f0:57:
6e:e1:de:99:c9:61:92:09:08:e2:cd:78:0d:60:c0:
79:6e:fb:b6:67:ff:b7:91:b2:d1:4d:6d:cf:28:7d:
82:01:87:2a:2c:fa:40:f7:09:06:02:30:1e:46:72:
44:4d:0c:8d:fc:03:78:f2:76:f0:31:a7:81:cd:d8:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E3:54:82:D9:A7:A8:73:1A:EC:DB:79:47:6E:E2:7D:50:2B:44:EA
X509v3 Authority Key Identifier:
keyid:09:58:B5:4B:FE:E9:89:6C:4A:DA:7D:C1:8B:3B:7F:97:19:DA:04:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVi1S_7piWxK2n3Bizt_lxnaBGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/gONUgtmnqHMa7Nt5R27ifVArROo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/a60f86-8b94-410a-bfd1-ff4c7183024f/1/CVi1S_7piWxK2n3Bizt_lxnaBGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.237.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:6b:5f:6e:b1:38:a5:ec:6b:66:dd:7e:31:f0:e9:65:00:c4:
f8:d9:83:2b:3a:72:e4:7e:c1:6e:40:52:c5:c2:74:9b:e3:af:
01:ff:c7:2a:c4:6d:f4:46:1b:8d:04:54:f2:39:4d:1d:ff:16:
d8:4c:8b:9f:78:08:62:4d:e9:8d:d4:ef:d6:b1:23:47:81:ab:
63:e3:84:47:8e:54:b5:42:1b:ad:7d:27:0d:7a:34:cc:f0:d0:
1e:e2:ae:b3:29:80:49:42:b1:e5:46:6b:63:d1:ba:c5:eb:0c:
4e:34:31:24:1d:1e:ee:66:b3:23:f6:9b:88:6b:6a:b5:75:58:
67:ae:b0:1d:c3:71:67:ad:75:f6:a8:f7:0b:cb:f6:cd:9e:c4:
55:b3:06:fa:c0:3e:d2:6e:a0:62:25:e5:0a:0e:41:32:17:38:
1b:3d:61:f5:df:d9:09:91:a6:b1:0c:3f:3c:45:74:4b:a0:19:
2a:f6:43:36:e3:ad:08:c7:d4:e2:bf:2d:a2:12:69:84:4b:58:
44:a4:79:16:cf:70:e6:f0:bf:c8:c3:62:45:c0:5a:5d:bf:20:
fd:05:c9:41:05:d9:62:0f:c9:8f:84:91:7d:0f:87:8c:4e:0b:
8c:a5:b7:cb:ca:49:3d:99:ab:95:4a:0e:c7:86:48:06:58:3f:
e7:76:f7:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:09 2024 by rpki-client on console-fra.rpki-client.org