Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/6919ad-33a5-43c0-8ca2-9d4a66ab3ff2/1/2_HA7U3w5PvuB7YGSydhv7w7sNI.roa
File: 2_HA7U3w5PvuB7YGSydhv7w7sNI.roa (raw, json)
Hash identifier: ynRy7Qd04GMsh5q5K+2QjMbsU+NJlZtbVj323GdcklY=
Subject key identifier: DB:F1:C0:ED:4D:F0:E4:FB:EE:07:B6:06:4B:27:61:BF:BC:3B:B0:D2
Certificate issuer: /CN=eda26c408fc67b752734cc997f3630dbaf6f606f
Certificate serial: 01856E0B0C012CA13B38526AC9FCF1645465
Authority key identifier: ED:A2:6C:40:8F:C6:7B:75:27:34:CC:99:7F:36:30:DB:AF:6F:60:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7aJsQI_Ge3UnNMyZfzYw269vYG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/6919ad-33a5-43c0-8ca2-9d4a66ab3ff2/1/2_HA7U3w5PvuB7YGSydhv7w7sNI.roa
Signing time: Sun 01 Jan 2023 15:54:55 +0000
ROA not before: Sun 01 Jan 2023 15:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25166
IP address blocks: 193.201.172.0/24 maxlen: 24
2001:67c:16b8::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:0c:01:2c:a1:3b:38:52:6a:c9:fc:f1:64:54:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eda26c408fc67b752734cc997f3630dbaf6f606f
Validity
Not Before: Jan 1 15:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbf1c0ed4df0e4fbee07b6064b2761bfbc3bb0d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:64:e1:ff:10:0b:46:65:66:8f:38:96:b9:b7:
8c:9c:15:84:60:b5:b9:be:f6:28:86:7c:c3:8b:dd:
b5:f9:5d:c1:39:04:c0:7d:23:b5:35:2e:59:5c:bf:
26:14:f1:1d:3b:9d:29:4e:73:ea:32:5b:a7:9b:26:
71:84:9a:39:65:ae:be:1a:af:f5:91:47:36:df:45:
58:ff:ec:f0:72:14:b6:c1:23:4f:f0:08:81:32:fb:
c5:09:38:d0:c8:a8:b5:bc:a5:7c:f4:04:5c:f0:80:
d8:22:84:5f:61:14:83:38:66:a1:12:af:d5:65:ea:
c8:fb:16:e3:cd:ab:93:d7:bd:0b:77:6a:94:57:40:
1f:04:d9:26:46:c1:f8:d4:a5:14:9a:58:8e:f2:dc:
b3:98:73:a9:34:0f:dd:44:de:d2:df:5e:8b:80:9d:
8f:64:f3:88:f7:a3:1a:5e:db:26:74:7a:6e:6e:48:
a2:e0:ff:ba:83:6a:b9:18:7c:7e:78:4d:b6:93:63:
cd:6b:7b:60:cd:03:04:01:f0:08:d0:f8:c5:c9:1b:
98:06:fb:21:d1:fc:4b:bc:fa:9a:ec:53:19:0b:ee:
f4:e4:50:57:ac:a7:ef:04:0c:1e:0b:34:a8:98:bf:
fb:e4:15:de:b8:55:8e:11:e9:7e:3a:45:85:fb:46:
73:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F1:C0:ED:4D:F0:E4:FB:EE:07:B6:06:4B:27:61:BF:BC:3B:B0:D2
X509v3 Authority Key Identifier:
keyid:ED:A2:6C:40:8F:C6:7B:75:27:34:CC:99:7F:36:30:DB:AF:6F:60:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7aJsQI_Ge3UnNMyZfzYw269vYG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/6919ad-33a5-43c0-8ca2-9d4a66ab3ff2/1/2_HA7U3w5PvuB7YGSydhv7w7sNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/6919ad-33a5-43c0-8ca2-9d4a66ab3ff2/1/7aJsQI_Ge3UnNMyZfzYw269vYG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.172.0/24
IPv6:
2001:67c:16b8::/48
Signature Algorithm: sha256WithRSAEncryption
d0:9f:15:86:a4:d4:87:ab:c4:52:da:ba:48:04:91:61:03:a2:
27:d9:31:db:73:dc:2d:3a:a3:09:24:20:10:5f:41:fd:f4:73:
f5:cf:1d:0a:65:e7:5e:80:b2:e2:e3:29:f7:31:cd:87:ba:d3:
fc:20:8f:f1:5f:36:25:33:0a:13:39:b0:0b:74:da:3a:ad:d3:
51:d4:25:b6:af:fe:3d:29:26:1d:9e:0c:7a:da:81:f9:25:ab:
89:b1:3c:f3:4f:59:d9:e6:5d:ed:5c:73:ce:0d:fb:ea:fc:ad:
11:57:8b:b3:a3:7c:e0:ca:29:8c:8d:a5:61:84:84:86:49:ab:
1e:19:52:b3:09:33:69:fb:15:65:19:ee:53:2f:8c:5d:c6:72:
5d:da:fe:36:68:af:e0:1e:70:cd:91:12:7f:54:98:2b:33:64:
0e:06:e4:5d:d1:0f:02:39:9f:72:81:9c:5b:1d:53:88:f7:7d:
eb:ce:2c:3e:1d:9e:3c:7f:3d:c7:0f:d3:1a:46:7f:b3:ad:fa:
01:fd:74:6e:c6:c9:bb:70:bc:c2:12:0d:0b:16:32:f5:8c:76:
b4:06:1f:bf:bc:e0:8c:7a:2c:91:cd:97:f0:65:f8:54:6d:b8:
cc:d3:f1:e3:ae:a2:ef:01:23:3a:54:c3:a3:f7:64:da:29:9a:
53:14:04:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:57 2024 by rpki-client on console-ams.rpki-client.org