Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/sDUnSwjNojEHueKH0oAJEdr65Ko.roa
File: sDUnSwjNojEHueKH0oAJEdr65Ko.roa (raw, json)
Hash identifier: J63I8UlQ8kqPIvceW1fewGiQfBmzNQaNSbYXlGUHdCU=
Subject key identifier: B0:35:27:4B:08:CD:A2:31:07:B9:E2:87:D2:80:09:11:DA:FA:E4:AA
Certificate issuer: /CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Certificate serial: 01856DD402BFD7AD68649AE0D9AD819AF2F6
Authority key identifier: C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/sDUnSwjNojEHueKH0oAJEdr65Ko.roa
Signing time: Sun 01 Jan 2023 14:54:48 +0000
ROA not before: Sun 01 Jan 2023 14:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29553
IP address blocks: 217.76.112.0/20 maxlen: 20
188.246.128.0/19 maxlen: 19
188.246.131.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:02:bf:d7:ad:68:64:9a:e0:d9:ad:81:9a:f2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Validity
Not Before: Jan 1 14:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b035274b08cda23107b9e287d2800911dafae4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cf:84:79:0f:af:73:de:15:42:77:b1:6b:77:
69:12:d2:87:87:a1:79:a5:5b:fa:e0:a9:58:75:51:
4c:98:3b:c0:b4:99:50:a0:fa:c1:d2:41:b6:ca:23:
60:51:7a:39:cb:25:75:65:2a:b5:74:2c:49:03:3d:
14:a4:c9:73:b6:b0:7f:81:0c:b7:47:55:b0:36:0c:
87:9b:e1:a3:17:26:65:60:c9:ae:48:83:69:72:2a:
3c:34:dd:73:7b:96:8a:4a:5d:21:b5:d2:b9:16:0e:
50:47:05:9d:ed:f1:df:86:94:70:f0:f4:69:37:66:
72:19:74:72:3b:6d:68:cd:a8:d6:05:22:db:3f:8c:
7b:8e:aa:4e:72:82:61:21:ab:48:81:23:a2:48:fb:
36:7e:3e:c9:2e:c7:ed:1a:5c:bb:f0:2b:32:f9:d2:
19:da:e1:0c:7e:4c:98:35:e2:3e:ab:09:cb:18:cc:
46:25:e3:4f:cc:2d:ae:06:f0:d8:f5:c1:93:2a:9d:
83:07:f1:b1:d9:92:78:4b:98:1e:13:7f:04:92:9c:
cd:14:c2:a0:de:cf:85:9a:9f:5e:9f:0a:6e:3f:dc:
b8:47:ff:d0:90:6b:7f:ae:4a:95:ac:f7:4c:b2:08:
7e:e6:d1:22:dd:dd:1c:ff:de:4f:e3:f0:88:a9:e9:
f4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:35:27:4B:08:CD:A2:31:07:B9:E2:87:D2:80:09:11:DA:FA:E4:AA
X509v3 Authority Key Identifier:
keyid:C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/sDUnSwjNojEHueKH0oAJEdr65Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.246.128.0/19
217.76.112.0/20
Signature Algorithm: sha256WithRSAEncryption
22:3d:7e:96:66:76:7b:37:4d:27:1e:96:b6:cb:de:34:fd:e7:
8d:22:dd:62:e4:fa:8a:b2:d4:15:0a:af:1c:64:d5:0e:ae:9d:
27:2d:ac:5c:ee:9b:fb:96:8b:ad:06:b6:6c:d4:1e:05:f3:b2:
b5:e4:bb:56:3f:71:04:68:d4:6a:93:48:d9:b7:0c:54:fa:45:
b9:a3:5b:69:aa:a8:1f:cc:f4:47:0f:88:f1:36:49:a7:93:cf:
54:09:c7:dc:a2:c2:28:76:6c:5c:ba:f5:41:f5:54:97:11:46:
99:b4:da:bf:43:6f:bd:7e:03:06:d2:db:8c:7d:ec:15:b8:5e:
30:ed:23:b5:34:50:71:17:ba:d2:56:df:8c:28:d1:79:d5:3e:
01:8f:f8:23:4b:f5:8d:0b:69:e0:e4:a8:da:64:19:11:df:0b:
01:98:fe:37:72:35:64:51:19:ed:15:78:1a:64:04:64:32:73:
4c:17:72:9d:4a:29:c4:63:ae:49:6d:2d:35:0b:a1:8a:f0:94:
b9:76:41:41:00:84:d3:0b:14:f2:3f:3e:1c:27:d6:81:8f:05:
1e:46:07:e2:2e:fb:67:47:80:70:c8:83:a0:55:40:d3:02:d5:
20:76:9b:bb:8a:db:58:72:fa:e4:d1:86:5f:85:40:d5:41:67:
3c:c6:8d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:32 2024 by rpki-client on console-fra.rpki-client.org