Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s3kqY7gxU6gLi8tY4UAgtHnRC5o.roa
File: s3kqY7gxU6gLi8tY4UAgtHnRC5o.roa (raw, json)
Hash identifier: qjqZYUgMPdXseedXRmpoQz3PvXNukN93aTqKINZ1Ts8=
Subject key identifier: B3:79:2A:63:B8:31:53:A8:0B:8B:CB:58:E1:40:20:B4:79:D1:0B:9A
Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Certificate serial: 018BD8953FD0D6876713FEEA9AA626EAF216
Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s3kqY7gxU6gLi8tY4UAgtHnRC5o.roa
Signing time: Thu 16 Nov 2023 14:42:21 +0000
ROA not before: Thu 16 Nov 2023 14:42:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201917
IP address blocks: 195.232.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:95:3f:d0:d6:87:67:13:fe:ea:9a:a6:26:ea:f2:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2
Validity
Not Before: Nov 16 14:42:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3792a63b83153a80b8bcb58e14020b479d10b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fa:26:fe:cd:ac:69:df:7a:52:1c:65:1a:33:
9f:21:6c:b4:d5:f3:14:85:1b:01:2c:b9:43:a7:aa:
8b:6e:d4:c9:d6:41:54:46:4b:b2:ef:a1:55:88:e0:
3d:da:7c:47:0f:41:e9:54:13:dc:65:62:74:76:57:
31:f4:57:1c:c0:3a:5d:7c:58:6e:57:1e:77:87:ac:
58:4b:74:eb:23:03:65:02:b6:00:f3:21:35:02:8f:
84:6f:f0:a4:29:f1:5d:3e:a7:ea:e1:22:2d:d0:ea:
26:25:36:2b:9c:93:5e:ef:7a:2b:db:6d:f4:ff:d3:
d4:0f:e3:43:da:2d:eb:7d:4a:c6:19:17:62:de:5c:
75:1f:91:c8:de:08:8a:c3:81:6c:45:5b:c7:00:34:
02:e9:3d:8c:be:2c:2c:d1:a9:e6:69:04:75:b8:e3:
4f:68:cc:fb:3f:94:42:8c:48:3a:55:39:41:76:98:
28:69:37:a3:04:b5:67:b5:03:32:fa:cd:d4:42:ea:
39:d8:54:d3:0c:50:f6:e2:d9:5c:66:d6:67:15:83:
df:19:ed:5c:77:c8:93:13:a0:d6:7c:4f:d1:bb:6a:
ff:a9:fc:05:d9:89:87:fc:41:63:c7:06:2b:f2:e8:
cb:a0:32:97:75:52:b5:ff:6e:b3:e2:e9:38:d3:1e:
92:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:79:2A:63:B8:31:53:A8:0B:8B:CB:58:E1:40:20:B4:79:D1:0B:9A
X509v3 Authority Key Identifier:
keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s3kqY7gxU6gLi8tY4UAgtHnRC5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.232.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2b:39:76:05:a8:23:e4:54:7c:49:08:cf:dd:91:ba:62:71:5d:
de:0e:ed:da:02:58:a8:f7:a2:5e:6b:fa:3a:55:0e:4e:ed:21:
e2:e3:1f:03:0c:b0:b6:86:01:19:ee:b8:55:6a:0d:4a:4a:3b:
62:a3:c7:ff:88:82:1f:74:e0:cc:84:3f:f1:e1:e1:a2:b5:af:
6e:8a:58:c1:de:71:4e:ec:f4:be:99:cd:b2:b8:44:b6:d2:62:
07:67:e1:8d:ab:2c:3e:93:2b:63:30:5b:95:ba:ba:7e:14:cb:
14:f9:9a:05:38:74:b1:31:63:0d:cf:01:dd:ad:57:95:80:3f:
3b:d5:ba:4f:c5:fc:56:10:72:b3:c7:a6:02:ec:e0:0e:f5:de:
29:51:51:0e:03:c9:38:20:46:b5:a9:25:88:f1:9a:c6:76:90:
69:23:ca:76:30:73:6d:a5:a9:45:c7:7e:92:8c:10:8f:22:58:
67:15:8f:0d:e3:73:a3:01:b3:c4:cf:de:66:2f:45:b3:70:e7:
0f:16:cd:68:7f:79:33:d6:0a:2e:37:b0:4e:3b:14:74:50:68:
94:ae:a5:b0:ef:d9:30:31:ec:eb:f3:53:ab:e7:fc:d7:1c:35:
48:8c:5e:fd:35:bc:b7:ee:8b:9e:84:6b:b3:7c:13:68:db:93:
02:7d:a2:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 16 15:49:05 2023 by rpki-client on console-fra.rpki-client.org