Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/Id2lu5ouRuWckgvnrHJI3TvfR28.roa
File: Id2lu5ouRuWckgvnrHJI3TvfR28.roa (raw, json)
Hash identifier: lOvDam0ZujV/W/JaI4v/grYruI7NabpIgatpHOHDX2M=
Subject key identifier: 21:DD:A5:BB:9A:2E:46:E5:9C:92:0B:E7:AC:72:48:DD:3B:DF:47:6F
Certificate issuer: /CN=efa70cb849e3837451bd79af7dc7e035963e6043
Certificate serial: 018C21C0EF857E753BCA2225B44B830D5A34
Authority key identifier: EF:A7:0C:B8:49:E3:83:74:51:BD:79:AF:7D:C7:E0:35:96:3E:60:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76cMuEnjg3RRvXmvfcfgNZY-YEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/Id2lu5ouRuWckgvnrHJI3TvfR28.roa
Signing time: Thu 30 Nov 2023 19:42:21 +0000
ROA not before: Thu 30 Nov 2023 19:42:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33911
IP address blocks: 193.202.126.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:21:c0:ef:85:7e:75:3b:ca:22:25:b4:4b:83:0d:5a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efa70cb849e3837451bd79af7dc7e035963e6043
Validity
Not Before: Nov 30 19:42:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21dda5bb9a2e46e59c920be7ac7248dd3bdf476f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:fd:f6:c5:0e:1d:e2:45:52:3a:2c:06:b7:29:
36:de:45:89:92:8e:06:a3:7e:b0:96:3e:d7:66:48:
b5:ad:2e:86:1e:db:28:46:34:ca:6f:f5:9f:ff:26:
ce:a8:d9:8a:37:5f:eb:a9:32:ce:46:18:c3:f6:91:
20:ce:3a:2e:f1:30:9e:7a:65:1b:e9:bc:89:1d:7b:
cf:d7:41:71:f9:11:26:23:34:15:69:19:5c:c8:b5:
8b:8b:82:af:24:ab:2d:cb:86:e8:aa:49:3f:fa:3f:
b7:7e:24:d4:73:31:ca:0b:21:a8:be:df:69:6f:61:
fa:2d:2c:c6:75:76:0f:51:60:a3:82:bc:c5:3e:0f:
ed:16:02:01:16:d5:0f:42:95:cc:79:d2:dc:3f:2c:
2e:f3:b3:c1:72:28:87:5e:4e:de:db:f8:08:16:76:
66:18:08:83:e2:0c:ee:c3:0f:dc:16:cd:09:71:f4:
c9:86:58:13:9f:9a:80:89:07:c1:52:4d:76:2d:2b:
55:94:10:0b:67:d8:d8:0e:02:03:f9:59:3e:f6:68:
4c:86:33:c6:0f:e0:4c:f3:4c:cd:8e:27:41:6e:61:
f3:90:0a:78:2d:b2:25:a0:af:79:75:f3:e7:3a:24:
2e:75:73:20:81:48:aa:8e:c4:28:b6:43:d8:44:8d:
ec:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:DD:A5:BB:9A:2E:46:E5:9C:92:0B:E7:AC:72:48:DD:3B:DF:47:6F
X509v3 Authority Key Identifier:
keyid:EF:A7:0C:B8:49:E3:83:74:51:BD:79:AF:7D:C7:E0:35:96:3E:60:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76cMuEnjg3RRvXmvfcfgNZY-YEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/Id2lu5ouRuWckgvnrHJI3TvfR28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/76cMuEnjg3RRvXmvfcfgNZY-YEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.126.0/24
Signature Algorithm: sha256WithRSAEncryption
09:87:74:f8:12:3e:77:b7:77:cf:b6:83:e3:c7:1d:ff:c0:8e:
31:c2:2f:24:26:e0:f2:7a:db:e8:05:7b:07:5e:63:bb:27:a8:
9a:8a:f6:73:ab:b7:17:ba:a0:d6:1d:b9:1f:6d:b6:e8:ff:38:
1d:aa:b3:aa:7f:c9:55:83:0f:02:05:b3:90:4c:18:33:00:df:
47:62:a0:c7:d3:e6:4a:73:5f:fe:ef:12:b8:b1:cf:19:55:5d:
57:c2:37:76:f8:61:41:61:0c:88:a2:ef:50:69:97:9b:11:30:
df:c0:c0:ee:bf:02:17:ad:5e:fa:e5:ed:b6:07:25:7b:0a:bf:
0c:ed:75:95:a7:16:3f:4a:62:5b:9b:4b:a6:48:e0:d6:42:06:
37:5a:62:1f:be:e7:a8:28:dc:dc:3c:1a:c5:f4:31:aa:c0:78:
a7:bf:dd:47:2d:a9:49:83:f5:a3:23:90:f8:d3:f6:41:f1:1c:
a8:d2:25:61:c1:92:14:2d:a1:a8:8a:85:49:92:56:55:7c:10:
0f:3b:5e:aa:9a:5c:5e:29:ec:8d:6a:7b:69:ee:b1:74:d9:25:
ef:12:c8:a6:ea:9f:4b:a2:16:2f:36:c8:f8:8d:35:44:3f:9a:
cc:37:0b:0d:d8:38:18:b3:ce:3d:e5:89:0f:1b:56:6c:c1:c2:
f8:16:b3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:32 2024 by rpki-client on console-fra.rpki-client.org