Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/D71RJO7jVrrxBAqqwtSDGNUNpkk.roa
File: D71RJO7jVrrxBAqqwtSDGNUNpkk.roa (raw, json)
Hash identifier: OkvKoyoo1mJGTHMh+KaR6Puh8UVEWOvNGLXtCiMnqc4=
Subject key identifier: 0F:BD:51:24:EE:E3:56:BA:F1:04:0A:AA:C2:D4:83:18:D5:0D:A6:49
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018A33126A148561A34CA0A0CDCD425B1C98
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/D71RJO7jVrrxBAqqwtSDGNUNpkk.roa
Signing time: Sat 26 Aug 2023 18:19:19 +0000
ROA not before: Sat 26 Aug 2023 18:19:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 194.15.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:33:12:6a:14:85:61:a3:4c:a0:a0:cd:cd:42:5b:1c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 26 18:19:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fbd5124eee356baf1040aaac2d48318d50da649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:78:be:ce:e5:81:bd:0a:2c:97:07:f9:42:cb:
17:18:6f:b4:ef:8f:61:69:5f:9b:c8:b3:8b:7d:1e:
5f:94:cc:1f:1e:51:01:59:7f:de:4c:20:c4:75:ef:
0b:be:14:dc:cb:d5:a2:fd:2c:5e:4b:a9:87:95:15:
dd:7b:d7:46:42:89:f4:52:91:19:8e:f6:3d:de:14:
b2:f2:14:ba:17:93:84:ab:ba:03:0b:c6:63:9c:b5:
c3:62:7c:ee:38:e3:c3:8b:70:48:1b:7b:a7:ca:63:
0e:a7:a9:d9:ac:39:04:4c:d1:14:94:a1:5c:7a:7e:
6e:dc:dd:19:3f:3d:33:ee:ed:e0:a0:b8:94:a2:88:
b2:73:27:8a:99:7e:3d:01:6c:de:1b:0e:66:68:fd:
8b:40:4a:e0:31:87:8e:ee:d0:7c:cd:35:e1:79:21:
a5:5e:6b:ba:7e:ff:cc:c6:4c:48:46:69:4d:af:b8:
db:7f:cc:b2:cc:89:70:28:33:a9:27:c0:cc:a4:d4:
65:88:07:c9:8f:30:cf:48:13:6c:fe:ca:8f:52:d3:
90:3f:5d:e4:f1:25:39:53:75:4e:4f:4e:02:39:a8:
fa:a1:a1:e3:e9:39:4e:1d:1d:78:e4:11:27:dd:be:
aa:23:a9:ff:ca:75:5e:17:3d:79:2c:e2:8d:59:75:
1c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BD:51:24:EE:E3:56:BA:F1:04:0A:AA:C2:D4:83:18:D5:0D:A6:49
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/D71RJO7jVrrxBAqqwtSDGNUNpkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.98.0/24
Signature Algorithm: sha256WithRSAEncryption
69:df:c2:1a:55:37:5c:03:ab:a7:07:67:27:a9:9b:e7:16:6c:
14:f0:8d:0a:e4:31:1f:d8:b8:d1:b8:1e:79:6b:02:89:fe:10:
7a:ee:9a:db:18:2d:ad:e5:0b:94:22:c8:4d:fd:1f:53:47:78:
61:9a:77:1a:d2:8a:37:e8:29:c0:da:03:71:17:24:e0:78:51:
ae:f6:44:62:ad:7d:92:bc:48:30:8e:04:57:f9:dd:04:a6:1e:
ce:eb:55:13:9d:50:ba:9f:69:83:53:b3:11:d6:d8:fa:d3:a2:
91:0e:02:a2:a2:70:22:0e:65:97:3a:42:ee:da:30:96:64:4f:
ed:65:ee:01:e8:85:52:7d:23:07:d3:0c:f0:71:49:14:f3:32:
6d:d3:11:54:40:ef:60:86:2f:8c:d3:51:e9:00:40:2f:53:e4:
47:7f:77:ef:fb:23:d7:26:a0:55:8b:8e:1c:bf:c6:a2:48:2d:
14:46:ec:ee:92:ec:d7:27:62:c7:4f:3c:4f:e9:4d:eb:7c:96:
4b:18:71:2d:7a:ff:0d:c9:01:82:c8:0e:e1:f9:e3:4c:2b:f5:
e8:20:a0:27:70:35:c5:b1:6d:bd:50:8c:4a:f7:c8:71:3a:3f:
7e:8d:d8:50:88:a2:30:10:7f:f9:88:a9:73:5e:9f:8c:7e:79:
27:3e:87:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 5 02:56:59 2023 by rpki-client on console-fra.rpki-client.org