Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/ef829a-acfc-4402-95ce-383fb2b954d9/1/kLP6a9pHVdFHOdBPRNlDHvTSYyQ.roa
File: kLP6a9pHVdFHOdBPRNlDHvTSYyQ.roa (raw, json)
Hash identifier: 9/CqNHqWJGSs4hUSMuUS065iPZTDo2ydTVG0ii9EM6o=
Subject key identifier: 90:B3:FA:6B:DA:47:55:D1:47:39:D0:4F:44:D9:43:1E:F4:D2:63:24
Certificate issuer: /CN=dee72c8faecb7052c841201b25f6a018e477b1c2
Certificate serial: 01881FD0C2E750E3288A685017BEEA6B24E7
Authority key identifier: DE:E7:2C:8F:AE:CB:70:52:C8:41:20:1B:25:F6:A0:18:E4:77:B1:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ucsj67LcFLIQSAbJfagGOR3scI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/ef829a-acfc-4402-95ce-383fb2b954d9/1/kLP6a9pHVdFHOdBPRNlDHvTSYyQ.roa
Signing time: Mon 15 May 2023 14:29:14 +0000
ROA not before: Mon 15 May 2023 14:29:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47216
IP address blocks: 193.111.236.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:d0:c2:e7:50:e3:28:8a:68:50:17:be:ea:6b:24:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee72c8faecb7052c841201b25f6a018e477b1c2
Validity
Not Before: May 15 14:29:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90b3fa6bda4755d14739d04f44d9431ef4d26324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:22:88:c2:e4:2e:c6:20:5f:c8:9f:2c:53:35:
64:52:8f:73:97:e8:86:01:19:6e:e3:e7:4a:1d:fd:
43:18:06:80:a4:8a:ab:af:27:3e:82:14:46:6b:ee:
01:72:7c:da:ee:3c:11:87:17:8e:4c:0c:7b:10:5a:
b4:35:6c:cc:56:fb:34:fa:c4:1f:b9:8f:26:6b:48:
5a:bf:38:64:ba:d4:88:b1:89:5c:62:5b:d9:b4:2d:
59:04:34:4a:16:c5:b2:0d:27:70:cf:9a:9c:c8:62:
ce:22:dd:b6:42:d3:ff:62:40:4f:93:8e:a8:6f:64:
57:2c:d5:38:75:e0:b8:b0:1c:b8:3e:5c:56:f1:2c:
8e:92:52:45:cf:6a:27:ac:9a:e1:56:39:0f:4c:38:
d9:1a:5d:90:e9:3f:94:a0:85:d8:42:5b:a0:83:44:
06:03:4b:e5:be:4b:29:b5:24:cd:5f:48:9e:21:ca:
54:49:31:bc:bc:5d:16:90:2a:6c:19:fd:71:12:6f:
41:52:7e:02:cf:ee:2c:72:61:cc:05:25:88:02:cf:
11:28:d8:6b:92:35:5b:20:38:a1:97:20:99:37:08:
ee:2b:10:ec:a2:23:2a:82:d7:c9:4d:f3:dd:4b:52:
a1:50:8d:4f:c2:a1:cd:12:d2:6b:51:3f:ee:5b:7e:
0b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B3:FA:6B:DA:47:55:D1:47:39:D0:4F:44:D9:43:1E:F4:D2:63:24
X509v3 Authority Key Identifier:
keyid:DE:E7:2C:8F:AE:CB:70:52:C8:41:20:1B:25:F6:A0:18:E4:77:B1:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ucsj67LcFLIQSAbJfagGOR3scI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/ef829a-acfc-4402-95ce-383fb2b954d9/1/kLP6a9pHVdFHOdBPRNlDHvTSYyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/ef829a-acfc-4402-95ce-383fb2b954d9/1/3ucsj67LcFLIQSAbJfagGOR3scI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.236.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:78:9a:a6:31:0a:d2:a1:3d:3b:23:19:6f:21:3b:19:90:62:
b1:3a:10:e2:3b:7c:42:c7:d7:2b:8b:12:59:e4:f4:50:83:6e:
9b:4d:56:de:80:6c:d2:61:8d:24:25:07:73:52:d4:29:0b:8a:
21:b2:d2:ba:7d:fa:58:fc:11:33:ca:97:e0:dd:db:e7:51:34:
db:6b:58:7b:84:e0:49:39:c0:ad:8c:fe:06:0f:78:c0:0c:31:
16:19:7b:a6:dd:fa:01:9e:71:cf:2a:bd:be:2b:cb:1b:e5:29:
9b:16:8f:b6:40:05:07:f6:a8:ab:70:66:70:86:be:36:1a:28:
b2:d0:ca:97:a0:ea:ed:ce:b6:f3:f3:91:b4:bc:f9:cd:07:34:
9f:aa:b9:af:90:3a:df:30:56:c0:19:48:0f:31:9f:2d:2f:6b:
94:90:ef:d1:d6:cd:ed:d6:31:ae:90:f9:b5:a0:cd:19:43:b9:
0c:6d:3f:98:0e:35:44:1c:11:f4:b9:c7:77:33:d4:63:f9:20:
dc:04:09:2d:c5:69:ef:68:54:f8:31:03:6a:c3:a2:cd:77:4f:
b7:ad:08:52:d5:4f:71:47:39:73:52:b9:55:af:36:48:e5:7a:
9e:4f:0a:97:98:7b:d6:5c:5f:22:a8:9b:b6:36:01:61:17:ea:
e8:93:07:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:04 2023 by rpki-client on console-fra.rpki-client.org