Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/IPog5nTZ1Z1bsfBLAMLxRkZ3ppY.roa
File: IPog5nTZ1Z1bsfBLAMLxRkZ3ppY.roa (raw, json)
Hash identifier: lj4lmP6+8sYNYVfZA6Pu+qDXOku3YxJw/i55EZaKCmI=
Subject key identifier: 20:FA:20:E6:74:D9:D5:9D:5B:B1:F0:4B:00:C2:F1:46:46:77:A6:96
Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Certificate serial: 0185703040CCA204EB7761968E2EC8AD45C0
Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/IPog5nTZ1Z1bsfBLAMLxRkZ3ppY.roa
Signing time: Mon 02 Jan 2023 01:54:48 +0000
ROA not before: Mon 02 Jan 2023 01:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213173
IP address blocks: 193.176.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:40:cc:a2:04:eb:77:61:96:8e:2e:c8:ad:45:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Validity
Not Before: Jan 2 01:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20fa20e674d9d59d5bb1f04b00c2f1464677a696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cc:ca:f9:e1:d3:de:3b:08:dd:19:58:71:df:
68:d8:52:4b:5b:e7:ba:14:75:7a:ca:f8:1b:a1:92:
69:8c:5b:0d:37:93:09:fa:f9:8a:d9:31:98:cd:1d:
c1:27:bf:53:42:1b:0f:4a:a5:48:cf:00:ab:c1:c1:
ef:ce:3a:a4:76:d1:c7:b8:bc:9a:6e:92:ba:0c:a7:
fd:6e:5d:5d:62:f1:57:2b:0d:ac:f9:50:49:87:87:
1b:af:2a:3e:3f:42:43:06:bd:ce:ca:56:71:f8:16:
49:3b:98:0b:82:dd:b7:b1:21:56:0d:25:ab:fb:41:
61:5c:9d:38:ad:5f:74:75:00:8b:0a:bd:78:91:f1:
12:c7:15:e1:b6:35:71:22:7e:88:a5:f3:48:e7:59:
d0:3f:c8:da:83:a5:e2:25:9d:a9:11:d1:c1:8e:a1:
24:ca:90:18:80:c3:1a:9f:30:c8:9a:5e:32:da:09:
cf:0e:28:7d:2f:d6:fe:af:fd:d4:c8:b8:a6:3e:6c:
96:c3:94:9a:3b:84:48:23:18:32:7e:71:1c:bf:b4:
f6:1b:5f:12:59:b2:b4:6c:47:96:de:02:da:d5:05:
19:7f:b2:d3:7a:9f:1a:82:7d:14:f7:3c:a3:83:ae:
3b:9d:37:9f:b3:8e:55:f2:4d:49:2b:6b:40:ac:d6:
e9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FA:20:E6:74:D9:D5:9D:5B:B1:F0:4B:00:C2:F1:46:46:77:A6:96
X509v3 Authority Key Identifier:
keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/IPog5nTZ1Z1bsfBLAMLxRkZ3ppY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.239.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:e0:ea:3f:72:bc:af:3b:e1:b9:4f:00:2d:9e:ff:1e:24:2a:
88:8f:73:9e:ac:b2:37:cd:c5:ed:6b:e8:90:43:43:aa:df:66:
bd:62:34:5c:35:84:06:d1:12:bf:7b:ef:a5:91:28:37:5e:7f:
c4:23:a2:53:57:81:69:03:14:a4:35:e0:41:55:83:be:51:4d:
d6:d8:81:15:e2:df:71:e0:10:33:bc:f7:20:de:c5:f1:2c:eb:
81:c7:1d:e1:32:d0:6c:05:ca:b3:48:21:42:ca:91:af:fe:55:
e4:9a:90:63:4b:0a:e2:ef:53:f1:df:82:c6:1d:70:e1:c0:69:
c5:15:23:7a:e1:fd:aa:bd:15:6a:b2:1e:d4:1f:98:a9:88:e5:
59:15:d5:40:b9:79:a9:de:e8:c7:a8:d0:5f:f8:c1:bc:da:6c:
c9:b2:be:b2:1e:fe:aa:09:54:18:33:d8:34:ba:00:0a:2d:cb:
b4:a4:34:6b:e6:b0:2a:7f:d9:de:13:8a:1d:f8:0b:86:65:a3:
22:93:c7:d3:1d:15:00:20:64:d4:fe:0f:65:cc:f1:c3:b7:f5:
53:ac:27:bf:ca:13:d5:c6:b4:58:36:63:8c:80:b1:ce:3b:85:
a9:0e:de:7c:5d:fb:1e:35:8c:21:f9:4e:2c:18:55:64:13:c5:
60:29:fb:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:33 2024 by rpki-client on console-ams.rpki-client.org