Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/gk9OPDFnyjrvHeFO_wyFbN9x5pY.roa
File: gk9OPDFnyjrvHeFO_wyFbN9x5pY.roa (raw, json)
Hash identifier: D4PiUyRtLV1gWoIJUeEWoEp/j/xRWKW/ZPStoqwRQVo=
Subject key identifier: 82:4F:4E:3C:31:67:CA:3A:EF:1D:E1:4E:FF:0C:85:6C:DF:71:E6:96
Certificate issuer: /CN=218da7ff576e78dc234eb74cbf073076c1f7ebc9
Certificate serial: 01857270F05A27C7B9BA077B084B1533BB68
Authority key identifier: 21:8D:A7:FF:57:6E:78:DC:23:4E:B7:4C:BF:07:30:76:C1:F7:EB:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2n_1dueNwjTrdMvwcwdsH368k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/gk9OPDFnyjrvHeFO_wyFbN9x5pY.roa
Signing time: Mon 02 Jan 2023 12:24:42 +0000
ROA not before: Mon 02 Jan 2023 12:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197608
IP address blocks: 193.150.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:f0:5a:27:c7:b9:ba:07:7b:08:4b:15:33:bb:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218da7ff576e78dc234eb74cbf073076c1f7ebc9
Validity
Not Before: Jan 2 12:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=824f4e3c3167ca3aef1de14eff0c856cdf71e696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:c0:16:23:6d:96:96:bf:91:79:50:70:66:
89:65:fe:c4:60:c9:87:d1:51:33:4e:9c:04:38:0e:
5d:e3:fa:c6:23:08:38:f6:f7:8d:9b:f6:81:36:f4:
72:bb:0b:57:3e:ce:06:01:04:38:7b:71:33:df:ea:
87:5e:a2:d3:c7:bd:df:e1:eb:9a:bc:33:79:03:fb:
00:17:f5:2e:70:04:9d:7f:cf:41:62:e6:bb:8a:2c:
23:7b:1b:51:fc:a5:b4:b0:ee:50:a8:04:66:84:b3:
7c:d6:81:34:93:b4:71:f9:cc:65:4f:a7:41:19:52:
8d:8a:b8:23:5d:20:23:b2:65:17:7d:f5:83:e9:2a:
88:01:2c:28:61:09:05:8f:e7:20:b3:08:2a:6e:12:
8d:e3:ea:75:e1:75:21:0e:7c:d2:83:ea:7a:bc:15:
97:be:60:a4:72:b4:a6:ef:37:3f:95:0a:ee:bb:c8:
4a:03:e3:1a:48:c0:5c:92:8f:3e:67:a6:37:f5:0b:
03:50:87:b7:30:3b:df:c3:3c:f0:10:0c:97:cf:92:
17:06:16:b9:36:1b:82:3e:1c:95:b3:03:0d:75:d3:
11:6f:9c:c9:fb:4a:1d:40:5d:92:be:ed:8a:bf:0a:
fd:61:52:96:02:60:f1:a0:81:bd:a2:ba:b9:f4:d4:
65:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:4F:4E:3C:31:67:CA:3A:EF:1D:E1:4E:FF:0C:85:6C:DF:71:E6:96
X509v3 Authority Key Identifier:
keyid:21:8D:A7:FF:57:6E:78:DC:23:4E:B7:4C:BF:07:30:76:C1:F7:EB:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2n_1dueNwjTrdMvwcwdsH368k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/gk9OPDFnyjrvHeFO_wyFbN9x5pY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/92b381-e514-438c-b8f9-f8aed30d54c3/1/IY2n_1dueNwjTrdMvwcwdsH368k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.41.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:5c:77:93:0f:d7:c7:65:61:8d:7a:5e:30:d7:6c:90:b4:5d:
8d:5c:a1:a2:e7:51:73:4c:98:24:69:1c:c7:ea:2a:33:2b:37:
20:99:c2:eb:b0:8e:96:78:0a:c7:ce:74:6c:4c:0b:9e:a3:6d:
73:00:42:98:66:7d:29:df:ba:06:b1:57:ac:c9:83:45:64:52:
14:58:fb:7f:c6:76:0d:da:b5:0d:f0:f7:15:7a:f0:e3:8d:d2:
c5:88:7d:52:31:f8:2f:bb:fc:06:39:8d:6f:eb:98:06:0d:dc:
46:d9:dd:ca:90:34:4e:ca:70:b5:83:f3:4c:bc:b8:e9:5b:09:
1c:a8:70:84:53:c3:d3:a9:b3:be:91:62:9c:f0:61:99:03:20:
b4:e1:b3:36:65:df:71:2f:8b:dc:50:67:6a:78:77:00:48:55:
72:82:5d:1c:4d:43:9f:67:31:7f:51:70:d6:12:d1:7c:23:d2:
9e:51:f0:ca:0c:c6:9e:08:91:47:cd:33:1c:24:4a:e1:e3:0a:
28:32:fd:08:4a:88:fc:1a:ee:21:5e:84:54:06:b7:55:81:da:
2a:fd:98:bf:3b:47:66:8b:43:99:c2:19:8d:25:8b:96:b7:09:
1d:9c:54:45:4e:19:f2:72:f1:02:cd:16:e4:eb:3b:c0:de:ce:
6c:cc:ab:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:17 2024 by rpki-client on console-fra.rpki-client.org