Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/_PfKg4QyiakSeYWtsGDHKkMuQZc.roa
File: _PfKg4QyiakSeYWtsGDHKkMuQZc.roa (raw, json)
Hash identifier: 2vaV1Mq6Lcd/PK1fzpprpfQCRHhblhQykkQrksTxnHQ=
Subject key identifier: FC:F7:CA:83:84:32:89:A9:12:79:85:AD:B0:60:C7:2A:43:2E:41:97
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 0188285E7B0CEEF40F00621CE34CA77D8666
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/_PfKg4QyiakSeYWtsGDHKkMuQZc.roa
Signing time: Wed 17 May 2023 06:21:00 +0000
ROA not before: Wed 17 May 2023 06:21:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62453
IP address blocks: 82.193.95.0/24 maxlen: 24
82.193.94.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:28:5e:7b:0c:ee:f4:0f:00:62:1c:e3:4c:a7:7d:86:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: May 17 06:21:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcf7ca83843289a9127985adb060c72a432e4197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:88:d2:1f:58:0d:49:5f:31:8b:28:c9:39:b9:
5e:d3:3c:9c:6c:88:e1:02:5a:09:07:8f:05:d8:66:
d1:95:12:e5:23:43:6d:7b:db:c3:06:65:73:f1:bc:
1e:2b:17:e3:eb:98:53:0f:90:4b:2e:8f:82:48:f8:
72:5f:b4:50:bb:13:73:1a:e6:81:39:4b:a4:a3:ce:
61:5e:60:ac:4b:6a:40:7a:d2:5d:b6:ec:02:35:74:
82:43:55:a9:00:ba:15:56:f4:1e:76:2a:32:8e:82:
de:a8:7a:98:0e:b8:a7:4a:b4:f9:b0:86:8d:2f:a9:
de:2e:64:eb:bc:64:ec:eb:41:40:3b:31:f7:4e:07:
e4:55:46:71:9f:11:09:e8:b4:56:a4:42:dd:d5:c6:
99:12:ae:60:ef:93:ae:f5:73:06:32:10:b2:c9:52:
a2:c2:c3:10:b3:0c:95:9f:11:f3:df:e3:d9:72:a9:
dd:12:01:f9:33:f6:df:af:8d:bf:8e:1a:01:56:69:
c9:70:7e:08:0a:a4:88:99:a3:be:92:31:42:7d:e4:
fd:59:d5:b6:61:89:30:d8:46:f2:d0:f9:24:f1:2f:
0e:a0:f3:c5:76:45:6e:53:11:42:d7:d6:a1:19:4a:
fc:f8:63:d0:4c:0a:d0:19:2b:f7:61:df:e4:9c:13:
a6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F7:CA:83:84:32:89:A9:12:79:85:AD:B0:60:C7:2A:43:2E:41:97
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/_PfKg4QyiakSeYWtsGDHKkMuQZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.193.94.0/23
Signature Algorithm: sha256WithRSAEncryption
32:3e:35:aa:81:a8:5a:e4:10:da:a5:a3:b3:69:13:a7:df:f9:
9d:f6:4f:04:87:7d:6b:9e:f9:6e:30:5e:95:57:aa:ad:92:da:
22:24:4e:62:0e:fc:ed:11:1c:d7:d5:38:90:d5:9c:d1:74:ba:
2c:81:6a:70:8d:ce:1f:0c:44:b6:a3:ff:28:94:e3:d0:64:87:
5e:41:3f:81:58:5b:10:92:9a:c4:91:3f:43:56:f1:3b:21:08:
9b:08:8e:ab:c4:a7:77:ac:5d:53:f9:2d:63:e2:05:d8:29:32:
43:71:01:60:6e:c7:31:a5:e7:8c:ed:c5:69:ac:41:5f:3c:4b:
ba:93:c1:47:51:4a:d5:71:3c:fa:03:95:d6:85:89:e9:27:3f:
96:c3:ca:76:c7:f0:3d:86:e0:8e:3d:59:ee:28:41:f6:11:12:
26:2e:26:02:63:e2:c0:09:e2:48:53:c2:0a:10:3e:36:24:44:
4a:eb:48:c7:95:19:0e:3c:a8:f8:06:55:7b:80:b0:b7:ac:f0:
e3:73:f0:84:82:a3:ab:ec:9a:66:57:a9:b3:16:3a:be:fa:55:
a8:d4:6d:9c:e1:45:07:73:82:ab:ce:20:62:c0:5e:40:83:69:
6b:2d:c6:b0:5e:c4:6a:f7:e6:4f:5e:11:95:f0:d3:c2:88:34:
a7:5c:4c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:26:52 2024 by rpki-client on console-fra.rpki-client.org