Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/aHUJQwuXb53DoddS1xWodrSJDcY.roa
File: aHUJQwuXb53DoddS1xWodrSJDcY.roa (raw, json)
Hash identifier: UL8qO71F8SRl1d/0Vjx4w35C2q6mY7ttC0+Stoic5/U=
Subject key identifier: 68:75:09:43:0B:97:6F:9D:C3:A1:D7:52:D7:15:A8:76:B4:89:0D:C6
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 0186E63BD9A204936CF97C70514ED134DB1F
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/aHUJQwuXb53DoddS1xWodrSJDcY.roa
Signing time: Wed 15 Mar 2023 17:05:27 +0000
ROA not before: Wed 15 Mar 2023 17:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 193.242.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e6:3b:d9:a2:04:93:6c:f9:7c:70:51:4e:d1:34:db:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Mar 15 17:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=687509430b976f9dc3a1d752d715a876b4890dc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b9:38:48:51:c1:1d:23:c9:71:bd:c5:ef:60:
b1:8f:45:18:c9:26:76:e2:82:c0:c2:b4:c0:a7:88:
f6:dd:1d:9c:69:dc:8e:e8:47:ca:ae:ad:e7:07:cc:
e2:bb:85:36:f3:b5:9a:3f:08:fd:8a:e0:ce:9e:20:
03:96:3b:64:f9:ea:ec:04:14:13:19:77:5b:ad:1d:
d3:87:0e:a8:0e:b2:fe:99:a4:d6:c5:f6:58:5c:23:
d2:22:72:00:74:bb:26:e9:2a:02:39:3f:f5:16:ba:
44:fb:e1:fa:47:35:7c:a8:de:aa:a7:b5:95:ef:d1:
3a:68:89:fb:4e:80:23:60:7c:b5:9d:8d:52:9b:a2:
23:4b:a6:0c:c9:08:e1:f4:79:1c:86:f4:51:68:97:
52:3b:f0:4e:a6:09:fd:de:45:6c:01:ef:e3:b0:ee:
00:f7:c0:80:91:1e:fd:c8:3b:ff:99:11:25:40:52:
78:de:99:5d:93:f0:06:7b:82:dc:9c:50:fa:4e:ae:
a2:66:dc:45:a3:47:09:02:fc:85:54:0e:3c:d6:16:
9e:72:fc:07:8d:4a:62:96:35:9a:49:f9:98:10:4a:
0c:2a:3e:61:36:2e:9f:a0:b3:1d:aa:c2:a1:ad:43:
e3:a4:d7:ea:c7:19:7a:30:ee:6e:a1:9b:74:22:de:
d4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:75:09:43:0B:97:6F:9D:C3:A1:D7:52:D7:15:A8:76:B4:89:0D:C6
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/aHUJQwuXb53DoddS1xWodrSJDcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.117.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ff:5b:f9:54:ca:69:8e:e1:46:d3:ff:ca:f0:97:23:d5:f3:
8d:23:1b:63:09:7c:f0:55:8c:eb:5e:ec:5e:b8:0d:95:a1:ef:
33:24:6d:a5:79:70:28:1e:c8:de:e4:9b:ac:ac:61:f2:22:94:
16:22:22:6b:92:c3:d4:72:65:e1:2d:50:9a:33:ff:bc:0c:92:
2e:0b:0f:e1:8f:91:45:04:cb:82:28:90:6a:7b:f9:24:bb:56:
88:38:eb:ac:0f:79:3b:c6:58:91:9e:e3:66:29:e6:e3:05:13:
7d:b2:f7:57:6b:3d:86:36:54:8f:f8:d6:d7:b3:f7:19:65:d9:
8b:28:3f:bd:c4:8b:54:a6:fa:a2:3f:08:22:ae:f6:f2:5e:1e:
c2:80:84:b7:58:1b:97:91:01:7d:97:4d:60:d7:e1:ba:77:4d:
39:01:64:2a:e7:6e:3b:f8:6a:cf:98:da:00:6a:05:fa:cb:3b:
2d:db:84:82:cc:3c:74:32:6e:a0:81:44:05:c8:c7:c7:4c:e8:
2d:62:d1:e9:66:e4:c9:8e:1f:d3:25:39:04:ad:93:50:14:b9:
26:b3:85:31:17:e5:7d:8e:ef:e9:19:bd:2e:2b:11:60:0b:61:
56:cb:67:0b:4c:19:7b:71:31:5c:33:d6:94:41:d2:d6:38:b2:
d4:eb:0f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 22 12:40:43 2023 by rpki-client on console-fra.rpki-client.org