Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/afHbxiHglfBcNwaAbbzO1AcAHaY.roa
File: afHbxiHglfBcNwaAbbzO1AcAHaY.roa (raw, json)
Hash identifier: zTS5Gb6B39ZqgGZbzDEEwzqCcGZy6eYGnrBC9zo9F/o=
Subject key identifier: 69:F1:DB:C6:21:E0:95:F0:5C:37:06:80:6D:BC:CE:D4:07:00:1D:A6
Certificate issuer: /CN=c089423af1be03027196d1f81df22992978cda6e
Certificate serial: 0186CAE1AD08D160BD9195735EC1821CBC98
Authority key identifier: C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/afHbxiHglfBcNwaAbbzO1AcAHaY.roa
Signing time: Fri 10 Mar 2023 09:37:12 +0000
ROA not before: Fri 10 Mar 2023 09:37:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213220
IP address blocks: 93.177.78.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ca:e1:ad:08:d1:60:bd:91:95:73:5e:c1:82:1c:bc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c089423af1be03027196d1f81df22992978cda6e
Validity
Not Before: Mar 10 09:37:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69f1dbc621e095f05c3706806dbcced407001da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:57:0f:0b:f7:f1:15:59:37:e3:c8:d4:8d:c9:
59:72:a4:76:cf:5b:81:8b:20:84:e0:f2:75:91:f7:
27:7e:7c:f7:ae:cc:78:1d:6b:33:6c:1d:ce:48:5a:
b7:a5:fd:a0:3f:77:3b:3e:f7:43:4e:63:f8:14:36:
b1:0b:fa:a5:46:f3:f4:75:68:7e:e7:d9:4e:be:e8:
aa:31:d3:03:ac:e3:18:83:e8:52:c8:31:e7:b2:24:
3c:56:51:4a:25:83:79:3d:eb:a0:6c:05:af:9b:e7:
21:ab:b1:51:28:4c:1e:4e:0c:5b:5d:6b:0a:a9:4e:
b7:ca:74:54:5a:2f:f6:70:80:a8:70:25:e7:b5:40:
97:82:0b:bc:b9:90:ae:13:39:86:87:e9:2f:c8:12:
f4:0f:fe:e5:cd:cf:91:95:af:41:06:03:7e:af:3b:
f1:f0:ec:b8:1f:81:97:c4:b6:41:14:b3:e3:0c:85:
53:74:db:3f:09:2e:0c:4d:bd:57:06:5b:ce:e7:a2:
4c:ff:a5:15:53:ab:50:ed:0c:00:f0:38:1b:2d:c8:
cf:ab:85:98:ce:b9:5e:a8:c8:10:ab:5e:45:34:d8:
15:e5:fb:00:8c:e8:70:e4:15:e8:c6:79:1f:d1:82:
e7:35:4c:58:7b:df:cd:8f:3b:3b:7a:7c:97:bb:1e:
68:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F1:DB:C6:21:E0:95:F0:5C:37:06:80:6D:BC:CE:D4:07:00:1D:A6
X509v3 Authority Key Identifier:
keyid:C0:89:42:3A:F1:BE:03:02:71:96:D1:F8:1D:F2:29:92:97:8C:DA:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wIlCOvG-AwJxltH4HfIpkpeM2m4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/afHbxiHglfBcNwaAbbzO1AcAHaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc2912-c7b0-4df4-9aa8-65332b47f5eb/1/wIlCOvG-AwJxltH4HfIpkpeM2m4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.177.78.0/23
Signature Algorithm: sha256WithRSAEncryption
92:87:97:2a:38:c8:b4:1c:46:ce:81:34:6c:15:34:c7:d0:de:
1a:66:f3:83:04:b0:80:d3:6b:3b:ae:41:9a:99:5b:2f:42:1d:
45:50:25:74:55:65:57:ae:f5:63:bb:ea:ac:20:9d:10:c3:ed:
af:e9:72:c2:d8:25:c0:cb:e0:0c:dd:61:1d:98:75:12:08:3e:
0b:8d:b0:24:77:bb:53:c1:00:fc:da:8f:7e:c9:a5:6a:9a:88:
96:c0:16:60:bb:0a:6a:98:22:74:be:0e:31:90:9c:4d:82:79:
a3:86:c7:66:ee:36:0b:86:ca:d4:20:34:0c:51:64:10:50:97:
9b:d7:35:6d:1d:05:b1:1f:e4:d2:7a:7f:e5:e9:35:39:82:da:
67:94:2c:bb:37:e2:77:ba:f1:c3:4c:3e:83:c7:5b:a8:4c:3c:
c1:7a:0c:fc:d1:b1:65:53:db:da:74:fa:fa:08:0a:03:21:f8:
33:7b:b0:37:85:7f:1e:98:19:93:5a:81:63:9d:37:b7:b3:7f:
77:54:8e:a8:39:51:56:24:67:b5:25:bf:f6:37:10:34:eb:47:
7a:dd:d9:ed:09:2b:b9:f5:1c:92:5c:db:99:18:ec:af:70:bf:
d0:f6:3f:08:b2:6d:4d:b2:c1:42:6c:db:1d:0c:9b:7a:97:6d:
1c:e3:d5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:32 2023 by rpki-client on console-fra.rpki-client.org