Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/ReEDKIcpT-TPa9WrzoesLu7ypdg.roa
File: ReEDKIcpT-TPa9WrzoesLu7ypdg.roa (raw, json)
Hash identifier: hpiwNLjFwA5z7abXsnh59YE8WF4B3LjJC2dVv3dSmnU=
Subject key identifier: 45:E1:03:28:87:29:4F:E4:CF:6B:D5:AB:CE:87:AC:2E:EE:F2:A5:D8
Certificate issuer: /CN=8e0c54b3aae251915ffc98bd34a550181ffab49a
Certificate serial: 01856F021646FB0704BC47C499B1CABADFEE
Authority key identifier: 8E:0C:54:B3:AA:E2:51:91:5F:FC:98:BD:34:A5:50:18:1F:FA:B4:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgxUs6riUZFf_Ji9NKVQGB_6tJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/ReEDKIcpT-TPa9WrzoesLu7ypdg.roa
Signing time: Sun 01 Jan 2023 20:24:45 +0000
ROA not before: Sun 01 Jan 2023 20:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8272
IP address blocks: 193.221.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:16:46:fb:07:04:bc:47:c4:99:b1:ca:ba:df:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0c54b3aae251915ffc98bd34a550181ffab49a
Validity
Not Before: Jan 1 20:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=45e1032887294fe4cf6bd5abce87ac2eeef2a5d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cb:40:87:60:81:0e:3c:be:ce:44:61:2c:0e:
18:d9:be:a4:ab:56:fd:84:52:e4:7d:68:fa:49:f3:
8a:68:7e:b2:bc:4d:3d:44:9f:73:e9:2b:9c:f1:f0:
16:86:e1:70:67:8a:0d:30:b7:1e:32:9f:1d:fc:a2:
92:74:e0:d7:43:6c:6b:72:20:a0:64:4a:50:37:f0:
ff:26:c5:ec:a1:cf:8e:79:e6:a6:3f:44:2e:f5:fc:
69:64:49:1f:27:2e:29:14:41:42:32:77:0d:9c:12:
07:28:27:ce:dc:6d:08:fd:65:63:c3:51:6d:05:00:
db:c5:ab:09:f5:cf:1c:8e:fd:95:11:42:5f:97:53:
2a:a1:9a:63:7d:3e:08:02:85:7a:dd:ac:ff:89:34:
6a:7d:fc:97:b9:5b:6e:d4:13:de:7a:e6:f5:d9:8c:
32:4c:90:0b:9e:c7:15:9c:1e:b9:7e:a7:d6:9a:f5:
f2:3d:b5:24:aa:42:ad:6d:83:dc:6b:fd:dd:54:72:
8a:85:01:58:50:1c:23:18:3d:b8:04:4c:77:32:5a:
2a:ea:7c:7e:10:ad:8c:1e:81:3a:e1:35:d2:db:e7:
f1:07:81:0d:53:d0:9f:08:d8:d6:9b:ae:9f:51:7e:
c5:a9:9f:60:59:51:0a:9b:29:3e:0e:77:59:57:25:
35:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E1:03:28:87:29:4F:E4:CF:6B:D5:AB:CE:87:AC:2E:EE:F2:A5:D8
X509v3 Authority Key Identifier:
keyid:8E:0C:54:B3:AA:E2:51:91:5F:FC:98:BD:34:A5:50:18:1F:FA:B4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgxUs6riUZFf_Ji9NKVQGB_6tJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/ReEDKIcpT-TPa9WrzoesLu7ypdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b6250c-e062-4037-b8f3-bf1e1de2ea63/1/jgxUs6riUZFf_Ji9NKVQGB_6tJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.118.0/24
Signature Algorithm: sha256WithRSAEncryption
38:ec:dc:67:e2:2e:1f:42:e0:f2:c5:88:63:f2:ea:73:cb:e2:
4b:8e:99:e5:25:19:b3:a7:cc:3c:bc:81:43:d0:38:8d:bf:6a:
0a:da:74:ea:fe:12:c9:57:b9:15:81:96:35:51:b1:28:b4:21:
cb:22:7e:20:71:ab:98:56:f5:85:7a:95:04:6e:d3:86:7d:a5:
48:5c:1a:74:6a:16:00:31:10:98:c2:23:0b:5e:a4:24:1c:32:
ab:fa:07:c3:fa:52:ae:4e:1b:45:dc:c8:3b:9b:5e:3b:43:3b:
66:6a:b2:89:76:1f:a4:d2:dd:0a:1a:af:e6:be:40:de:33:49:
d3:e7:d2:90:28:32:62:78:3e:42:05:73:75:56:63:1c:9d:13:
55:7e:5c:26:2d:79:c6:51:b6:b9:e2:f7:93:26:8a:cb:4a:7a:
8a:87:01:cb:7e:54:bc:8a:aa:73:12:0f:9b:40:34:4b:0d:f5:
fa:7a:6a:c1:75:db:c4:7a:90:3f:74:d7:d2:9f:8c:cb:6d:b2:
92:ba:9d:10:d5:f0:f7:f9:97:aa:ae:1b:b5:65:b3:04:81:56:
e2:38:95:25:8a:7a:b9:a2:ac:05:f8:07:08:2d:8e:9a:dd:61:
7c:5c:f4:6f:df:e3:92:e5:83:15:e3:48:8b:4d:93:bc:df:19:
96:ef:69:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:07 2024 by rpki-client on console-ams.rpki-client.org