Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/Z65gwaqZDrEtzIIqpYsa2JPNSQg.roa
File: Z65gwaqZDrEtzIIqpYsa2JPNSQg.roa (raw, json)
Hash identifier: bi3+IJZH+oyEWhKwlcUACiuL5kX+6vOiXuLzaMKnOPk=
Subject key identifier: 67:AE:60:C1:AA:99:0E:B1:2D:CC:82:2A:A5:8B:1A:D8:93:CD:49:08
Certificate issuer: /CN=608011ea51a9fbcf8bae0df1ed499a3407d63053
Certificate serial: 01856D41AA6BB4949F60974ACF7053B2A9A6
Authority key identifier: 60:80:11:EA:51:A9:FB:CF:8B:AE:0D:F1:ED:49:9A:34:07:D6:30:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIAR6lGp-8-Lrg3x7UmaNAfWMFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/Z65gwaqZDrEtzIIqpYsa2JPNSQg.roa
Signing time: Sun 01 Jan 2023 12:14:58 +0000
ROA not before: Sun 01 Jan 2023 12:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24953
IP address blocks: 193.47.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:aa:6b:b4:94:9f:60:97:4a:cf:70:53:b2:a9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=608011ea51a9fbcf8bae0df1ed499a3407d63053
Validity
Not Before: Jan 1 12:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67ae60c1aa990eb12dcc822aa58b1ad893cd4908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0c:12:86:f9:71:5d:03:6e:79:b2:69:c2:3a:
43:3d:ad:01:3a:10:f4:91:f7:18:6b:27:86:51:62:
01:21:72:6d:07:5e:f2:04:6a:b3:8a:1b:33:b7:5c:
74:6c:e8:3d:b1:29:20:c7:95:a6:6f:84:9c:54:cd:
74:bb:57:b1:c7:c4:44:c6:fa:4c:ae:e1:50:71:f2:
7f:79:97:51:8b:4f:a3:2e:9d:ee:a5:66:ae:98:2b:
d6:95:9f:41:03:a6:ca:8c:02:37:cf:cc:e8:7e:ce:
45:12:c2:86:96:0f:5a:6a:ed:db:08:15:28:fa:b0:
fe:69:d3:da:f1:06:0c:e6:23:ac:97:e8:6b:54:74:
2b:e6:83:20:de:67:d0:35:38:b0:14:e7:a8:50:14:
d8:dd:e4:df:99:cc:76:64:67:23:e1:d0:56:6d:46:
d2:60:cc:53:97:a1:29:77:ba:d6:a5:80:76:b2:5e:
03:5f:c6:da:a0:be:5f:18:c2:ee:2a:c9:c0:68:27:
63:99:4b:32:e7:0f:3a:ed:2b:b8:15:36:c4:22:d4:
99:0a:ea:ee:82:1a:24:55:a8:8a:67:98:ec:d2:26:
07:d1:ef:5c:35:7e:f2:a3:3b:28:90:67:6f:a2:53:
74:81:0d:50:92:72:e8:ab:5e:d5:58:f1:2f:ea:f1:
f5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:AE:60:C1:AA:99:0E:B1:2D:CC:82:2A:A5:8B:1A:D8:93:CD:49:08
X509v3 Authority Key Identifier:
keyid:60:80:11:EA:51:A9:FB:CF:8B:AE:0D:F1:ED:49:9A:34:07:D6:30:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIAR6lGp-8-Lrg3x7UmaNAfWMFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/Z65gwaqZDrEtzIIqpYsa2JPNSQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4f0ec5-54d2-40fb-9498-742f8691beaa/1/YIAR6lGp-8-Lrg3x7UmaNAfWMFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.79.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:1e:86:ab:9f:dd:66:93:6f:eb:a3:40:59:b4:5e:16:05:92:
f0:35:de:11:dc:17:b3:eb:53:77:bf:80:a5:87:12:b2:51:17:
ac:58:36:fa:cb:96:96:be:a9:48:f1:b4:fe:ab:41:43:24:64:
ef:06:d5:39:40:02:4d:70:ae:37:f0:0f:ce:41:3e:32:64:f3:
71:76:78:43:05:a3:36:bf:64:b2:18:f5:6b:44:55:58:65:c7:
10:9a:16:05:0f:f3:77:17:ba:5f:1a:2c:5d:29:d3:e6:4d:9b:
56:74:15:4b:59:05:0d:1f:f7:9d:f5:55:c6:be:63:08:56:35:
2f:f2:03:c2:c9:f1:bf:77:80:6c:ba:1c:ea:c6:df:ce:ec:4f:
b3:0e:07:94:97:a1:b0:48:e3:d8:cf:e8:42:40:91:f3:91:7e:
83:e5:2b:21:e1:08:4e:44:9f:03:ef:8e:f8:d6:9c:41:38:0f:
9a:f0:53:c3:da:e5:a7:aa:8d:26:fe:b9:47:6f:67:f5:61:b9:
59:6c:c1:30:f6:a8:b7:81:ad:c3:a9:ee:8e:b2:ec:49:ed:54:
43:e7:0d:10:02:47:79:56:a9:1b:8a:15:98:9f:fb:ff:6f:39:
d2:b9:62:85:0e:70:ea:4e:df:80:58:4b:5a:ed:b1:0c:90:fa:
19:72:2a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:27 2024 by rpki-client on console-ams.rpki-client.org