Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/hF_p8YcjZQ160a4FHcEBfvNXOaI.roa
File: hF_p8YcjZQ160a4FHcEBfvNXOaI.roa (raw, json)
Hash identifier: wLsevt2um23tJWMbQLrhwM33ITxd7XQJw7aHIFxvf6U=
Subject key identifier: 84:5F:E9:F1:87:23:65:0D:7A:D1:AE:05:1D:C1:01:7E:F3:57:39:A2
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018BC99A25BED2AC00CECA5DA140389EA04F
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/hF_p8YcjZQ160a4FHcEBfvNXOaI.roa
Signing time: Mon 13 Nov 2023 16:53:24 +0000
ROA not before: Mon 13 Nov 2023 16:53:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400039
IP address blocks: 188.93.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:9a:25:be:d2:ac:00:ce:ca:5d:a1:40:38:9e:a0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Nov 13 16:53:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=845fe9f18723650d7ad1ae051dc1017ef35739a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e8:c9:a3:f8:2c:13:ee:35:63:63:9f:d4:05:
79:13:ac:58:4d:b4:85:09:03:ef:00:71:fb:da:ce:
66:55:f6:f2:c7:85:7b:83:37:89:86:a6:fc:52:d6:
10:5f:80:e2:bd:a4:8d:97:04:37:54:ef:82:8e:5a:
d0:b2:0b:cd:0b:97:32:9d:ab:a4:4c:fb:e6:ef:db:
e0:44:aa:55:c1:9c:29:3a:6f:fa:5d:79:f4:0d:f8:
e7:a0:d1:83:b0:df:8b:cd:89:fb:21:4e:27:65:35:
6b:a8:34:f4:a1:2c:d7:e0:ea:f7:bd:f7:29:b7:25:
d9:6f:a5:4e:6a:c9:79:4d:b7:d2:3f:0f:e9:7e:68:
9f:b8:8e:fe:be:53:f6:f1:95:bb:e7:8a:fe:55:9d:
d7:97:64:9a:5b:b2:36:94:d6:8d:39:1c:1e:c6:1f:
68:e2:d9:18:86:37:09:24:8f:14:b3:03:12:f2:3a:
fc:49:df:27:5d:de:58:82:d4:87:c1:b7:0e:28:3a:
78:b9:e2:3e:99:09:86:e7:28:a2:3a:38:ae:8c:5d:
a8:6e:4f:71:42:55:d8:cc:22:40:67:25:88:9c:71:
63:4c:8e:63:be:71:ee:81:97:ac:c0:ac:e6:29:d2:
a2:78:1f:35:2b:fd:b7:fa:51:06:29:90:71:3f:22:
59:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5F:E9:F1:87:23:65:0D:7A:D1:AE:05:1D:C1:01:7E:F3:57:39:A2
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/hF_p8YcjZQ160a4FHcEBfvNXOaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.137.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:49:10:d9:cc:a6:4e:26:58:24:c2:58:8f:88:cd:4f:6c:7e:
e1:b2:81:d0:42:3d:a4:fa:a2:cf:68:7e:fc:f3:01:25:2c:59:
73:1a:4b:e9:02:d1:33:61:9f:bb:c2:0a:0f:24:87:e8:92:32:
ba:67:9e:64:30:84:9a:0d:e3:20:cc:18:26:d3:6a:a6:b7:30:
99:1b:df:4f:06:95:50:3b:e5:d9:a0:65:23:c7:e6:88:54:e6:
ad:8d:31:c5:f4:7c:ce:de:ed:40:cc:19:9f:a1:fb:f1:ed:57:
2a:f6:a4:17:6f:bd:31:37:dd:f2:20:41:84:a9:71:6d:51:b4:
cf:48:9c:6b:03:bf:52:d6:e6:37:b3:77:c0:2d:ae:81:0d:0b:
d4:97:66:a8:17:de:9b:88:ce:13:f2:fe:6f:e3:03:c1:8e:71:
3a:25:d3:2b:67:55:87:09:c5:6b:fa:86:a2:90:d0:64:1c:ec:
42:c4:6a:3e:d0:3d:52:79:07:9a:90:be:30:98:7d:d5:f9:76:
37:db:01:f1:86:4a:e5:c0:4c:32:eb:e4:68:9a:bb:08:5b:45:
57:f7:ae:f3:ea:9f:ed:fd:55:ac:b0:74:ef:04:87:c6:55:a0:
e2:85:c2:b5:9c:0d:3f:63:b8:f6:f1:ca:12:ec:fc:c0:4b:d4:
62:be:56:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 23 20:13:38 2023 by rpki-client on console-fra.rpki-client.org