Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/a66c25-2711-4659-b162-35b483bb4c84/1/tKQz1lue-O7xb2UGKR1V-M914_M.roa
File: tKQz1lue-O7xb2UGKR1V-M914_M.roa (raw, json)
Hash identifier: FS+JnMDJHTuCsLhr0+JDlS66z7RycB0R3XLeJaWtEKw=
Subject key identifier: B4:A4:33:D6:5B:9E:F8:EE:F1:6F:65:06:29:1D:55:F8:CF:75:E3:F3
Certificate issuer: /CN=f26144c824959711b652d78c18702bf432f2195c
Certificate serial: 01889F13C2717D3310CDE050F4797110D7C0
Authority key identifier: F2:61:44:C8:24:95:97:11:B6:52:D7:8C:18:70:2B:F4:32:F2:19:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mFEyCSVlxG2UteMGHAr9DLyGVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/a66c25-2711-4659-b162-35b483bb4c84/1/tKQz1lue-O7xb2UGKR1V-M914_M.roa
Signing time: Fri 09 Jun 2023 07:34:12 +0000
ROA not before: Fri 09 Jun 2023 07:34:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25151
IP address blocks: 193.33.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9f:13:c2:71:7d:33:10:cd:e0:50:f4:79:71:10:d7:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f26144c824959711b652d78c18702bf432f2195c
Validity
Not Before: Jun 9 07:34:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a433d65b9ef8eef16f6506291d55f8cf75e3f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:aa:f7:46:3c:96:d1:c1:3a:05:8b:bc:cd:6b:
35:9f:5d:b9:d3:5b:cf:91:ec:5c:21:f9:b2:37:ed:
83:b7:2e:ba:8f:8b:1c:f7:ac:c5:82:e6:26:c7:87:
dc:e7:e9:6f:a0:9d:ba:c5:b7:8f:0d:63:f0:2f:80:
7b:ba:4f:0d:21:f0:42:ea:e9:42:9d:44:3a:ec:86:
f7:3b:9d:82:7b:35:60:00:d6:e5:3d:88:d8:f8:82:
36:98:19:32:50:7f:7b:55:d9:82:71:a6:14:20:e7:
02:0e:78:8f:5e:b6:ea:df:d3:cb:5a:b1:d9:95:21:
0a:70:e5:1a:eb:be:f1:71:3f:1b:76:e4:af:46:8d:
0f:af:e2:23:07:c7:e6:8a:18:cc:ef:9d:8e:a7:1d:
a1:6e:e7:a4:54:79:cc:7d:d0:86:fc:2b:6c:4b:d2:
c4:d3:37:e9:61:2a:18:93:92:a9:ff:09:cb:48:bf:
a4:b9:77:15:39:e6:20:8d:26:2c:20:3c:d0:c1:08:
01:6a:f4:1b:1d:8f:3e:cf:52:02:ef:91:aa:ec:a3:
9f:28:ac:d9:fe:b1:f6:d2:7f:98:f7:73:50:37:2a:
50:9e:f3:ca:22:09:54:ed:1c:e1:11:2b:5a:08:49:
92:b7:e0:08:85:1e:7c:ec:fd:69:60:38:51:ed:ad:
ae:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A4:33:D6:5B:9E:F8:EE:F1:6F:65:06:29:1D:55:F8:CF:75:E3:F3
X509v3 Authority Key Identifier:
keyid:F2:61:44:C8:24:95:97:11:B6:52:D7:8C:18:70:2B:F4:32:F2:19:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mFEyCSVlxG2UteMGHAr9DLyGVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a66c25-2711-4659-b162-35b483bb4c84/1/tKQz1lue-O7xb2UGKR1V-M914_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a66c25-2711-4659-b162-35b483bb4c84/1/8mFEyCSVlxG2UteMGHAr9DLyGVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.220.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:e9:55:65:ff:07:d8:e9:a3:fd:8a:4c:64:c6:bb:d1:cb:ee:
00:c1:3b:46:60:87:70:61:0b:ca:fa:c3:ef:1b:b4:6c:fc:e9:
8d:fc:a6:2c:93:27:e2:e7:8e:0d:a4:6a:33:85:bc:dc:ac:a1:
23:bb:65:12:40:29:cb:f3:1d:44:b3:5f:70:a3:f4:71:51:6e:
34:3b:53:20:8e:ab:3b:8c:54:c4:a3:e2:75:a5:82:a3:df:8b:
f1:0f:cd:e4:67:98:71:6b:ec:f6:4f:8b:db:12:4d:78:38:3e:
9d:14:e2:f3:d4:f2:18:47:a6:db:37:f8:8d:1f:07:b8:b3:76:
82:9c:ea:f8:e7:35:d8:44:21:fb:46:58:6c:6d:9a:9f:79:e6:
73:dc:98:7d:b1:25:52:dc:73:37:5e:4e:ee:3c:bf:45:99:a7:
70:5d:f7:95:a4:4c:cc:e7:e0:82:ce:e4:3c:89:9e:1a:da:57:
cb:d8:cd:bf:ee:18:ac:e0:e9:6c:ef:c2:47:f6:3d:26:89:09:
2b:45:68:a2:06:e9:fb:99:1c:89:4a:ee:80:a9:1d:1c:c9:e3:
a8:ed:7c:2d:8e:24:ed:cb:83:b4:d2:51:41:8b:45:e7:78:87:
12:6b:22:87:6f:a8:7a:6c:62:1e:74:68:64:a3:30:82:28:58:
98:7d:78:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:26 2024 by rpki-client on console-fra.rpki-client.org