Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/349616-e10e-41d7-9898-09aef8043b35/1/Dwet28Ny0q1tVXPI4Hew6hQjcZk.roa
File: Dwet28Ny0q1tVXPI4Hew6hQjcZk.roa (raw, json)
Hash identifier: CTImNrjmoRqIoteVwu2siccSl8+b4VXiNo9XkwASLcw=
Subject key identifier: 0F:07:AD:DB:C3:72:D2:AD:6D:55:73:C8:E0:77:B0:EA:14:23:71:99
Certificate issuer: /CN=19aed7327289167009b96c40e3880ade66800a3f
Certificate serial: 018573686289ED92E82E457859EA02CE542F
Authority key identifier: 19:AE:D7:32:72:89:16:70:09:B9:6C:40:E3:88:0A:DE:66:80:0A:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ga7XMnKJFnAJuWxA44gK3maACj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/349616-e10e-41d7-9898-09aef8043b35/1/Dwet28Ny0q1tVXPI4Hew6hQjcZk.roa
Signing time: Mon 02 Jan 2023 16:54:58 +0000
ROA not before: Mon 02 Jan 2023 16:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42404
IP address blocks: 193.33.90.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:62:89:ed:92:e8:2e:45:78:59:ea:02:ce:54:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19aed7327289167009b96c40e3880ade66800a3f
Validity
Not Before: Jan 2 16:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f07addbc372d2ad6d5573c8e077b0ea14237199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:37:a2:85:e3:aa:33:47:56:11:39:d9:0d:49:
b4:66:0d:57:a3:23:97:41:02:fe:74:6b:da:d7:02:
b6:d2:f3:8e:0e:3f:c5:06:9b:72:36:fe:dc:22:fa:
ef:99:06:8c:9c:0a:69:4b:23:d6:91:04:53:1a:bc:
8e:1b:66:2b:07:3d:e1:f1:7e:cb:cf:84:62:91:d0:
83:17:4d:29:d5:f7:4e:a9:46:04:ba:5d:14:5d:5b:
b4:b7:fb:83:21:3d:2e:28:63:ba:5b:7b:be:98:19:
30:ad:2f:8d:6e:3a:ad:a7:26:f9:9c:92:ae:c2:4f:
5b:82:03:a6:9e:1a:3a:bb:56:ee:0d:e6:06:66:cc:
ac:5f:2e:e4:91:e1:d2:01:49:57:4f:5f:6f:c8:a0:
29:84:ae:a8:ef:09:44:ca:2e:4f:4f:73:4a:77:4c:
c7:e3:a8:b0:72:69:fa:f9:c2:1d:f4:fc:7b:49:a4:
de:d8:fd:df:ac:d5:4b:34:70:0b:ec:47:ad:27:00:
b9:75:a8:5c:81:2f:9e:88:9a:9c:c6:e1:64:81:61:
6f:c7:31:4d:16:16:a7:40:a1:bf:11:e1:ac:20:4a:
f4:39:4b:24:8a:97:c7:00:f9:1b:37:f3:8b:ed:42:
1c:cf:17:f7:35:51:cd:2e:87:26:67:9f:88:cc:e0:
92:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:07:AD:DB:C3:72:D2:AD:6D:55:73:C8:E0:77:B0:EA:14:23:71:99
X509v3 Authority Key Identifier:
keyid:19:AE:D7:32:72:89:16:70:09:B9:6C:40:E3:88:0A:DE:66:80:0A:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ga7XMnKJFnAJuWxA44gK3maACj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/349616-e10e-41d7-9898-09aef8043b35/1/Dwet28Ny0q1tVXPI4Hew6hQjcZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/349616-e10e-41d7-9898-09aef8043b35/1/Ga7XMnKJFnAJuWxA44gK3maACj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.90.0/23
Signature Algorithm: sha256WithRSAEncryption
58:15:16:2f:e7:33:b9:e9:2d:e3:32:0f:a2:3b:21:29:1a:18:
e3:3b:f9:84:89:90:62:d0:41:10:08:68:a5:ff:46:2f:5d:94:
94:72:b7:e2:02:c6:92:88:24:f0:61:5b:38:ed:13:ae:eb:7a:
c3:d5:29:31:0c:53:a5:d6:22:61:6e:7e:ae:79:c7:65:33:98:
32:03:1d:e8:c4:c9:c2:8a:cc:3e:46:02:e9:09:a5:e6:37:84:
64:24:55:5f:4e:9b:0c:ed:25:95:8a:1f:4b:aa:d4:f7:f0:a3:
72:fa:66:a6:45:03:d8:bc:1c:a3:a2:d4:e7:91:5c:75:09:58:
dc:22:02:16:16:e9:1d:c8:a9:4c:6c:a9:13:ee:e7:81:0a:cb:
b5:cf:ed:e8:86:d5:52:ca:8d:e7:d1:99:b9:13:3a:a6:61:9d:
e4:b7:4a:08:f4:26:e8:f6:90:ba:1e:7d:40:5a:e5:4d:8f:5c:
0e:c7:35:23:b0:72:54:10:eb:2e:0d:93:bb:1a:45:6f:af:4f:
53:22:2b:68:95:b6:84:a4:4d:9c:f9:46:70:9c:f6:20:61:db:
62:3e:45:e4:ce:f9:6c:54:21:3f:74:d1:f1:c0:14:81:b9:95:
b5:e7:5c:39:a2:30:97:82:d7:37:d5:d6:0e:62:83:cf:6e:ac:
d3:4b:31:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:48 2024 by rpki-client on console-ams.rpki-client.org