Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1b78cd-d005-492c-9167-1bf868a03538/1/R8HVatixy4XdD36qo5jlCXYL_jM.roa
File: R8HVatixy4XdD36qo5jlCXYL_jM.roa (raw, json)
Hash identifier: 7ghWtYJtF+9IsZJUfFfVp1tXExoFkQ+6oRiUoxO6Dqo=
Subject key identifier: 47:C1:D5:6A:D8:B1:CB:85:DD:0F:7E:AA:A3:98:E5:09:76:0B:FE:33
Certificate issuer: /CN=0148d2ca8a2b43b6cad25b22265354fe303911a0
Certificate serial: 01856F94C24DCBB7CD0744B4FBE6A5BF6B57
Authority key identifier: 01:48:D2:CA:8A:2B:43:B6:CA:D2:5B:22:26:53:54:FE:30:39:11:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUjSyoorQ7bK0lsiJlNU_jA5EaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1b78cd-d005-492c-9167-1bf868a03538/1/R8HVatixy4XdD36qo5jlCXYL_jM.roa
Signing time: Sun 01 Jan 2023 23:04:58 +0000
ROA not before: Sun 01 Jan 2023 23:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28924
IP address blocks: 193.178.119.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:c2:4d:cb:b7:cd:07:44:b4:fb:e6:a5:bf:6b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0148d2ca8a2b43b6cad25b22265354fe303911a0
Validity
Not Before: Jan 1 23:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47c1d56ad8b1cb85dd0f7eaaa398e509760bfe33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0e:81:eb:71:91:6b:60:97:3b:bd:61:45:29:
d0:f8:61:f9:ec:85:f4:78:f2:ad:e5:bb:3a:53:3d:
fb:00:8f:28:fb:3b:c9:04:7e:46:80:8b:b4:46:2c:
65:6a:71:77:c9:ec:98:48:9c:9f:e7:b5:b1:09:be:
00:9f:88:98:d2:14:a2:98:b6:b2:3d:16:12:bd:c8:
13:14:9d:c9:1a:f6:98:ef:40:cd:d8:ab:48:c0:e0:
f3:6e:52:14:9c:c6:ed:46:31:6e:cb:a8:1d:d8:e1:
ae:4b:13:d4:e6:7b:84:5a:cb:4a:b0:ac:bb:e8:e9:
70:00:a1:07:a3:aa:b0:bd:3c:b6:16:96:dd:5c:f3:
39:b8:3d:3c:7e:a8:90:83:69:de:96:13:a0:e1:0f:
e7:ef:88:a5:b7:06:67:c0:c1:1b:de:f8:01:39:9b:
2a:a3:ed:7f:a6:84:c5:21:75:f1:49:e5:54:1e:40:
7a:fc:41:32:ef:98:46:47:8d:06:15:8a:7b:70:8d:
2b:15:a7:28:19:97:2b:85:53:fa:a8:1b:70:78:a7:
fa:41:53:1c:7b:eb:47:d0:b6:d1:26:35:dd:dd:38:
c7:a7:13:8a:09:3c:3a:fb:5f:23:d8:0b:24:0f:37:
5c:4f:b2:1a:82:15:cc:7d:c1:77:f5:42:d9:b1:87:
40:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C1:D5:6A:D8:B1:CB:85:DD:0F:7E:AA:A3:98:E5:09:76:0B:FE:33
X509v3 Authority Key Identifier:
keyid:01:48:D2:CA:8A:2B:43:B6:CA:D2:5B:22:26:53:54:FE:30:39:11:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUjSyoorQ7bK0lsiJlNU_jA5EaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1b78cd-d005-492c-9167-1bf868a03538/1/R8HVatixy4XdD36qo5jlCXYL_jM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1b78cd-d005-492c-9167-1bf868a03538/1/AUjSyoorQ7bK0lsiJlNU_jA5EaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.119.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:ad:ea:f4:43:cc:4d:b2:3e:81:ce:ee:61:ed:93:2b:0e:58:
10:ae:df:18:c3:d4:3d:e2:f2:b2:f0:a2:ee:6b:41:67:9f:83:
6d:9b:7f:18:b9:4e:86:4d:89:01:0b:4b:b9:27:5d:7b:c2:32:
c2:5b:b4:75:0e:c0:d2:eb:2f:8e:58:ed:38:a0:60:5d:c1:21:
36:9e:4d:30:ba:90:c7:04:64:29:cf:4f:6f:b3:be:f5:98:98:
5d:90:94:3a:80:b8:82:ca:33:b6:04:23:f7:3e:d9:79:a8:a3:
74:99:fd:cb:3b:c3:5d:61:6f:18:47:a1:25:8b:2b:b9:40:f7:
29:1b:8c:c0:ba:ab:49:eb:cf:08:e7:75:de:54:08:00:1d:6e:
62:8f:ec:d7:8b:1d:22:66:84:e2:06:ad:d5:89:f5:6b:a1:4c:
09:51:53:94:5c:3d:d6:7b:62:6c:0c:b3:3d:9f:47:5f:2c:40:
60:3b:dc:39:d6:7b:4e:30:5d:bd:53:91:2a:25:1e:a3:b6:fe:
f4:e0:51:3a:81:51:47:ea:dc:54:34:16:0a:43:d4:03:ef:3e:
82:d0:dc:de:21:26:13:71:32:7b:de:60:06:17:10:68:81:5e:
96:b5:80:1c:18:87:04:f1:55:bd:bc:5e:6d:dc:d2:e3:23:68:
21:88:05:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:13 2024 by rpki-client on console-fra.rpki-client.org