Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/wT73vAX3JwJkbHoJRp6GphKgd6s.roa
File: wT73vAX3JwJkbHoJRp6GphKgd6s.roa (raw, json)
Hash identifier: iChLjovwjEr0Dxz437sli2qqacx82B0DuIjF/2K5h7M=
Subject key identifier: C1:3E:F7:BC:05:F7:27:02:64:6C:7A:09:46:9E:86:A6:12:A0:77:AB
Certificate issuer: /CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Certificate serial: 018C53727B0608B553A336610552A07D829F
Authority key identifier: 85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/wT73vAX3JwJkbHoJRp6GphKgd6s.roa
Signing time: Sun 10 Dec 2023 11:17:40 +0000
ROA not before: Sun 10 Dec 2023 11:17:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25091
IP address blocks: 193.135.156.0/24 maxlen: 24
185.247.196.0/22 maxlen: 24
2a0d:cb80::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:53:72:7b:06:08:b5:53:a3:36:61:05:52:a0:7d:82:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Validity
Not Before: Dec 10 11:17:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c13ef7bc05f72702646c7a09469e86a612a077ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:27:de:31:ca:82:94:90:1a:8b:83:2d:7e:26:
1c:0b:29:28:6f:14:5d:c4:9a:15:8e:84:3c:7d:1c:
15:74:27:06:1b:e5:05:ab:a3:00:68:94:b1:d6:98:
62:24:69:b9:b9:47:b0:06:16:b7:58:f1:b5:6d:84:
85:ff:af:1b:76:3a:b3:56:3e:bf:6c:1c:5c:72:c5:
5f:1a:03:29:9a:6e:78:1f:f9:9c:95:cb:af:29:aa:
9e:75:5c:b5:37:54:ac:fd:33:93:00:c4:36:86:ef:
25:33:b5:7b:2c:b3:c0:ad:6c:51:e9:d9:c7:a2:3d:
f8:04:8a:91:a7:88:33:9f:4a:6a:7e:22:ed:47:c8:
fe:cd:ac:af:14:88:cd:a6:7c:79:f8:62:24:b4:a4:
dd:fe:9a:db:bc:c7:ff:38:6a:c7:c7:76:5e:09:bb:
7b:b1:2c:e2:4c:17:1e:33:c4:00:b6:b9:d2:90:8c:
22:34:7f:77:9d:fb:86:4d:40:ae:40:c2:8b:6d:b0:
87:90:02:2a:7b:4e:b9:cf:5b:99:58:d2:8a:83:f6:
49:16:b8:15:4b:c1:d8:c7:60:4c:ab:c4:19:5d:86:
c7:72:f5:68:51:4a:ee:da:6a:66:7a:ff:f9:ac:61:
cd:fb:0f:4e:50:1a:49:22:00:a1:09:49:74:d5:a5:
46:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3E:F7:BC:05:F7:27:02:64:6C:7A:09:46:9E:86:A6:12:A0:77:AB
X509v3 Authority Key Identifier:
keyid:85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/wT73vAX3JwJkbHoJRp6GphKgd6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.196.0/22
193.135.156.0/24
IPv6:
2a0d:cb80::/29
Signature Algorithm: sha256WithRSAEncryption
57:69:b4:20:3f:4b:6f:f4:00:e7:7b:14:4e:6d:33:2a:24:f1:
4d:0e:22:ac:35:9b:dd:7b:b4:af:c9:ab:8f:c1:ab:d5:84:c6:
fd:ab:0e:f9:6e:91:bd:57:58:3e:91:70:41:c1:0e:96:c4:f7:
1f:7f:1d:5a:51:c4:50:6b:02:db:ac:6b:db:2f:fd:b8:a6:b0:
f1:cc:6f:c8:43:b6:92:5f:45:23:15:db:8d:82:b8:0f:f7:dd:
16:f3:0b:e3:de:12:e4:e6:24:b2:4f:3b:05:21:c0:bc:6a:27:
43:15:ef:d8:4a:c5:8f:1f:3f:15:b7:6c:e9:80:65:19:f3:7c:
a1:a1:3d:62:b5:c7:e8:06:c8:5d:7d:85:08:c5:7e:5f:18:1d:
b1:fe:5c:b5:05:2c:b2:b5:a3:1d:19:e9:19:24:a5:46:02:af:
7c:23:59:69:b0:f8:5c:23:b8:4e:cc:02:b3:4a:8f:1c:92:d9:
74:b6:36:6d:55:ea:75:40:c1:2f:3f:32:0b:dd:31:a1:e1:93:
bb:94:08:ac:ce:98:61:51:8d:65:b3:30:9e:2e:df:2b:28:a8:
d8:12:06:1a:8f:2e:bc:17:30:a7:76:3f:98:c0:03:0c:ee:7b:
8b:65:4d:6e:44:e8:65:f3:3a:35:62:5c:0c:74:93:38:09:12:
4c:22:a6:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:25 2024 by rpki-client on console-fra.rpki-client.org