Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/zUwN6QS4Imk-F8LbBhOvPSWKbjs.roa
File: zUwN6QS4Imk-F8LbBhOvPSWKbjs.roa (raw, json)
Hash identifier: QLidkA4yH9uuEE0CdOGdDPPtmuPwmLqBUtwt4wnMUsY=
Subject key identifier: CD:4C:0D:E9:04:B8:22:69:3E:17:C2:DB:06:13:AF:3D:25:8A:6E:3B
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 018967A27B90EF39C314AFC8437FAAB4416B
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/zUwN6QS4Imk-F8LbBhOvPSWKbjs.roa
Signing time: Tue 18 Jul 2023 06:14:08 +0000
ROA not before: Tue 18 Jul 2023 06:14:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199143
IP address blocks: 84.232.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:67:a2:7b:90:ef:39:c3:14:af:c8:43:7f:aa:b4:41:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jul 18 06:14:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd4c0de904b822693e17c2db0613af3d258a6e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:32:7f:54:cd:95:ee:77:2c:e0:ef:9a:ca:26:
fb:e7:f1:ca:c7:d6:15:3e:ab:77:ed:25:22:50:fe:
4c:7e:81:38:63:bd:9a:b5:b6:ed:21:5f:e0:c3:8b:
e6:f3:35:69:79:bf:f4:12:3a:4f:e0:bc:7a:2b:c4:
ae:75:96:d8:8c:d8:0c:ad:dd:7f:a1:01:23:5c:98:
81:5e:ce:92:76:9f:1d:16:6f:bd:04:81:bc:17:b2:
9a:8f:f1:d5:58:5b:e6:d6:54:6a:7c:34:71:97:a2:
af:ad:ad:7e:49:f2:86:5d:f4:7c:82:fb:97:b7:11:
53:11:a9:bc:cf:3c:b1:96:13:0d:bc:fb:d7:46:be:
02:6d:d2:6b:c2:f9:be:a7:c4:79:de:c3:13:a7:e4:
d7:53:78:6c:50:5e:00:67:f7:0f:18:85:a4:27:93:
33:ab:f8:18:23:32:38:dd:89:16:a2:41:9b:02:0a:
0b:54:f4:4f:5e:ea:d3:b1:d8:1b:ec:c0:56:e7:0a:
29:e8:be:5f:f4:a0:51:cb:07:5d:c9:f2:90:bc:9f:
e0:b8:a1:a3:79:2e:28:77:a8:bf:f7:2f:34:15:77:
28:d2:23:0b:30:bd:86:a8:c9:48:d7:bc:22:e1:eb:
41:95:73:61:ce:c7:9b:77:27:fa:99:01:86:12:40:
04:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4C:0D:E9:04:B8:22:69:3E:17:C2:DB:06:13:AF:3D:25:8A:6E:3B
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/zUwN6QS4Imk-F8LbBhOvPSWKbjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.232.16.0/24
Signature Algorithm: sha256WithRSAEncryption
07:33:45:a8:04:20:19:ce:16:73:bd:bb:a9:62:26:1e:88:b9:
a0:ee:3c:4a:81:93:7f:a1:28:b9:f5:f9:5a:20:f8:12:6a:e3:
a7:0e:9e:cc:7d:a9:04:ae:67:81:e1:a7:19:08:73:82:cc:01:
4f:c5:bf:3e:62:2b:bc:ee:ce:9e:25:1f:09:d0:61:c3:18:3f:
02:38:2e:8c:21:ea:e9:2b:9b:dd:27:f2:80:8c:ed:25:65:86:
bc:b3:ca:64:f0:34:e9:08:0e:26:1b:a0:b3:cd:cc:1e:55:96:
d5:da:e2:d8:2e:b7:9b:6b:cc:ff:7d:7e:31:2f:1b:31:71:8b:
cd:96:e3:48:bb:5e:80:a0:b3:d3:77:0e:a8:e1:7e:96:98:91:
f6:ea:b2:be:27:97:f0:b9:cf:a7:84:c3:ae:a1:d4:8b:38:32:
83:99:3a:61:35:92:8e:f8:c2:8a:aa:ac:18:1e:6a:3d:c2:da:
6e:85:5a:00:1a:93:27:a2:5a:3d:2c:14:5e:9d:b3:f9:bd:dd:
d4:0e:cf:e7:99:8d:45:3a:51:af:3c:7b:56:86:05:9b:9a:dc:
e7:65:37:21:92:a6:18:95:4f:6d:be:c3:bb:02:22:86:a3:46:
3e:6d:75:b8:a1:01:55:ca:92:38:f1:b0:95:bd:85:4e:42:1f:
8a:a3:b7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:37 2024 by rpki-client on console-fra.rpki-client.org