Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/U1bUteQwGigCgqE4cDM5-z3pGGw.roa
File: U1bUteQwGigCgqE4cDM5-z3pGGw.roa (raw, json)
Hash identifier: jZIvbeA4vaMS1kzf3dQVb1YcjN7CTcwEeFRC2JixnX0=
Subject key identifier: 53:56:D4:B5:E4:30:1A:28:02:82:A1:38:70:33:39:FB:3D:E9:18:6C
Certificate issuer: /CN=db9af91e9eb15b676a96f0af654cc03288154a1a
Certificate serial: 018572033D454459E156DE6559F9B4844CD8
Authority key identifier: DB:9A:F9:1E:9E:B1:5B:67:6A:96:F0:AF:65:4C:C0:32:88:15:4A:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25r5Hp6xW2dqlvCvZUzAMogVSho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/U1bUteQwGigCgqE4cDM5-z3pGGw.roa
Signing time: Mon 02 Jan 2023 10:24:52 +0000
ROA not before: Mon 02 Jan 2023 10:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198917
IP address blocks: 193.242.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:3d:45:44:59:e1:56:de:65:59:f9:b4:84:4c:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9af91e9eb15b676a96f0af654cc03288154a1a
Validity
Not Before: Jan 2 10:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5356d4b5e4301a280282a138703339fb3de9186c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:09:40:d2:85:87:a2:6f:57:7a:4e:a6:80:c3:
2e:0f:fb:25:18:21:2b:fc:2e:ea:b0:f8:9b:3d:10:
fa:a3:70:ee:aa:32:b8:42:5b:7a:bd:af:70:8c:51:
36:6b:a2:d1:df:86:7e:e3:83:d1:4f:15:2a:07:6a:
26:ef:bf:30:d8:9d:f5:e5:81:2d:19:6f:06:5b:e4:
37:4a:46:c2:30:43:2f:8e:5e:10:f3:7e:ee:66:17:
43:7d:a0:3c:6b:bf:c7:8c:b2:d1:12:62:60:ae:85:
c1:7d:43:ac:6a:14:e2:61:e4:8a:a8:64:20:d9:92:
84:e6:2d:47:08:59:ba:5c:e6:3d:8f:21:bc:32:c7:
41:cb:08:c4:c3:45:12:50:4d:44:2f:97:91:8d:43:
38:27:a7:e2:b4:c5:2b:4d:f9:a4:9b:e3:3e:29:c9:
0c:e5:42:07:4c:98:a6:09:0b:e7:b3:43:29:1c:14:
d7:93:40:45:a2:fb:6f:c8:53:ac:5e:40:ae:40:ba:
a6:b9:a8:2a:22:67:5c:0c:e0:d1:f4:09:90:43:65:
0f:56:0e:1f:ac:89:97:44:73:9a:5e:05:82:c3:bd:
d4:72:78:18:40:fc:ea:fb:a7:59:8d:8b:89:67:b0:
eb:fe:c2:32:e5:ca:ec:27:38:e4:b0:07:6e:ff:24:
8c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:56:D4:B5:E4:30:1A:28:02:82:A1:38:70:33:39:FB:3D:E9:18:6C
X509v3 Authority Key Identifier:
keyid:DB:9A:F9:1E:9E:B1:5B:67:6A:96:F0:AF:65:4C:C0:32:88:15:4A:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25r5Hp6xW2dqlvCvZUzAMogVSho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/U1bUteQwGigCgqE4cDM5-z3pGGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cdbfeb-7ac1-4da1-8d40-f935fc0f20d5/1/25r5Hp6xW2dqlvCvZUzAMogVSho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.134.0/24
Signature Algorithm: sha256WithRSAEncryption
40:35:de:c7:26:dc:b1:ef:fe:05:54:e7:b3:c1:2b:ab:95:76:
01:87:f6:25:96:47:3f:be:c3:d4:56:2d:80:58:ae:05:31:5e:
28:e8:ac:9f:b9:18:ff:0f:7b:cb:24:d5:39:ef:cf:0f:1c:26:
3f:d4:a4:d0:db:a7:9a:a9:98:12:c4:5e:69:82:3a:a1:dd:c8:
29:14:e1:b4:6f:24:4e:61:a7:2f:ea:36:69:a8:92:0e:3e:d0:
8b:78:35:18:4e:b6:31:ff:04:d7:19:64:bc:b5:bd:af:dd:90:
f3:0b:22:cb:8d:5d:bb:2c:8d:61:37:08:68:ff:dc:f5:11:84:
c2:be:07:c8:a3:c0:84:22:19:a1:83:7d:d3:0c:13:4b:fe:83:
97:d1:db:5b:9b:06:2f:aa:a3:e9:36:f2:a1:55:1f:12:f5:a7:
1f:6b:76:92:5e:3f:a2:e7:84:be:0f:23:38:5b:a1:f0:fa:11:
b1:b2:ff:37:00:03:1c:93:1d:1b:e9:a1:1f:57:1e:c9:c9:e5:
60:6f:b4:e8:01:43:62:10:5e:88:7d:75:31:63:5d:dd:d0:da:
30:6f:bc:a7:a7:55:86:b4:04:d6:fa:cc:85:d1:2f:86:8a:c6:
6c:33:99:c2:4f:a3:36:8f:51:9e:b6:6f:28:60:ce:4e:1f:2e:
2b:2d:77:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:31 2024 by rpki-client on console-ams.rpki-client.org