Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/buPhzD7ipdrY2SK9p4jqb0SQuWg.roa
File: buPhzD7ipdrY2SK9p4jqb0SQuWg.roa (raw, json)
Hash identifier: WQ3GW55w8wExZomzCzHJ6uV990x+5tYkij/0VqsoPmg=
Subject key identifier: 6E:E3:E1:CC:3E:E2:A5:DA:D8:D9:22:BD:A7:88:EA:6F:44:90:B9:68
Certificate issuer: /CN=1e65ede3b6aae7475c354b1e9b84d6a7832b077b
Certificate serial: 0185718C3A6FC8BB4616803E6EAFE8D5D03F
Authority key identifier: 1E:65:ED:E3:B6:AA:E7:47:5C:35:4B:1E:9B:84:D6:A7:83:2B:07:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmXt47aq50dcNUsem4TWp4MrB3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/buPhzD7ipdrY2SK9p4jqb0SQuWg.roa
Signing time: Mon 02 Jan 2023 08:14:53 +0000
ROA not before: Mon 02 Jan 2023 08:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207176
IP address blocks: 193.56.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:3a:6f:c8:bb:46:16:80:3e:6e:af:e8:d5:d0:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e65ede3b6aae7475c354b1e9b84d6a7832b077b
Validity
Not Before: Jan 2 08:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ee3e1cc3ee2a5dad8d922bda788ea6f4490b968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3e:18:66:ae:4f:eb:61:1e:a0:52:a1:98:e5:
82:fa:5f:6a:7a:7a:11:ec:c0:ef:b1:35:17:b9:35:
57:02:ae:24:f8:90:bc:96:2f:b6:90:1a:c7:85:e0:
87:cd:b4:24:56:85:3c:10:56:72:9e:30:65:74:b7:
0a:98:64:47:4f:fb:d0:cd:cc:10:1e:a2:b1:9b:57:
a1:7d:58:c0:f8:93:8c:54:9f:95:16:02:e7:9b:a7:
81:5a:5c:61:77:0a:8b:b0:96:4e:43:b9:f5:3d:3d:
61:fb:6f:40:45:5f:80:b5:74:c9:f4:a5:38:15:f5:
cd:64:1f:48:f8:fa:11:d7:09:78:b3:0b:06:ca:f7:
80:f2:96:bd:c2:d4:fd:16:19:6c:d9:3a:51:fa:5c:
8d:55:52:2b:17:d5:c8:39:04:5e:50:a5:9a:28:22:
3b:a9:83:c9:86:a5:6a:e8:4f:7b:f3:e7:60:53:c0:
d8:13:58:34:41:49:1c:82:6b:53:b7:a1:8a:08:78:
9b:35:ed:73:31:9f:f2:89:69:b5:aa:f7:cf:ed:f8:
8f:64:ef:6e:51:b3:af:c0:58:3a:d2:d4:9e:58:13:
39:9f:14:a8:c2:94:b7:f8:11:74:8b:7a:0b:c2:68:
62:8d:28:c2:cf:e2:e5:ab:69:fc:4a:e9:fb:d1:36:
f0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E3:E1:CC:3E:E2:A5:DA:D8:D9:22:BD:A7:88:EA:6F:44:90:B9:68
X509v3 Authority Key Identifier:
keyid:1E:65:ED:E3:B6:AA:E7:47:5C:35:4B:1E:9B:84:D6:A7:83:2B:07:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmXt47aq50dcNUsem4TWp4MrB3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/buPhzD7ipdrY2SK9p4jqb0SQuWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/HmXt47aq50dcNUsem4TWp4MrB3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.14.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:99:e7:28:29:51:a6:b4:af:ac:86:3c:0f:7b:e6:41:32:b1:
7d:fc:51:65:d7:f7:af:5b:9a:36:d8:43:b9:51:7e:f2:57:2f:
c9:73:81:f1:1a:c0:5c:d1:8d:21:e3:f3:6c:18:50:e5:fe:8e:
11:d7:80:71:7e:56:58:70:c4:9b:e0:73:3f:0d:76:a0:35:58:
6c:49:59:3f:99:3c:1b:67:92:79:ed:bb:de:62:d0:41:bf:20:
ce:c5:56:8f:29:aa:68:c3:9b:6e:8b:e3:10:79:fe:9d:e5:e0:
cc:8f:8a:81:6c:8c:72:2d:d4:85:84:bc:8d:98:a0:36:86:4b:
7b:01:e6:b5:6a:04:e7:9d:04:53:e1:98:2a:ff:cd:96:0e:fa:
bb:42:ba:9b:1c:26:42:ac:16:3c:7c:14:64:5f:3c:3b:5a:ed:
1b:c6:38:7e:e5:cf:9d:f8:cc:c0:88:4d:12:fa:a2:65:05:0c:
b6:b1:50:a0:47:06:5b:97:21:0a:a4:ca:13:97:44:bf:e7:4c:
61:d8:77:21:6c:1b:d9:51:f4:f0:b6:31:0c:87:3c:0f:fb:df:
a2:e2:0e:18:65:56:ce:8d:a7:7b:68:b2:2b:67:e1:fe:a8:ff:
84:b1:13:5e:b4:6f:97:5d:95:60:68:ff:47:40:3f:a3:c5:14:
57:bd:b0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:26 2024 by rpki-client on console-fra.rpki-client.org