Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/9vARGCWTW4KZKDxdQkuRJKhw_aM.roa
File: 9vARGCWTW4KZKDxdQkuRJKhw_aM.roa (raw, json)
Hash identifier: hPi2FdntKzOi+cwo+MPj93EiUevJ+ZqB1jyFjMCOPcs=
Subject key identifier: F6:F0:11:18:25:93:5B:82:99:28:3C:5D:42:4B:91:24:A8:70:FD:A3
Certificate issuer: /CN=2ec121e1545df3e5bb86e9188f2825fad7477f75
Certificate serial: 01856B77D5A89570FDAC6D8B1A7D3C1333F3
Authority key identifier: 2E:C1:21:E1:54:5D:F3:E5:BB:86:E9:18:8F:28:25:FA:D7:47:7F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LsEh4VRd8-W7hukYjygl-tdHf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/9vARGCWTW4KZKDxdQkuRJKhw_aM.roa
Signing time: Sun 01 Jan 2023 03:54:53 +0000
ROA not before: Sun 01 Jan 2023 03:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42630
IP address blocks: 193.200.58.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:d5:a8:95:70:fd:ac:6d:8b:1a:7d:3c:13:33:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ec121e1545df3e5bb86e9188f2825fad7477f75
Validity
Not Before: Jan 1 03:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6f0111825935b8299283c5d424b9124a870fda3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b3:41:44:4b:05:1d:57:08:89:e8:4e:98:89:
fe:f6:ad:e3:18:7a:d5:5a:da:a9:29:6c:e4:08:5f:
e5:4d:30:39:c1:c5:10:e7:f3:65:a0:d7:30:97:6c:
18:48:67:6a:94:b5:c7:f1:f4:d0:eb:60:e7:2b:3b:
3d:0f:fa:68:ba:11:84:5e:ae:ef:81:24:ff:41:bf:
6b:a3:89:c0:10:56:98:cd:73:75:a9:0b:ce:d1:68:
e0:f4:27:fd:9d:fc:57:53:84:b7:aa:8d:4f:4e:af:
57:bf:eb:60:8b:ef:c3:3c:ea:42:75:78:6c:a8:e3:
5a:a0:c2:d1:7b:0a:19:3c:7c:dc:98:c6:bc:ff:1a:
ee:c4:1b:e3:0e:4d:d2:90:2c:23:4a:a9:66:b6:ef:
41:d8:79:ec:d3:71:1c:46:84:a6:b5:bc:e3:7d:78:
e9:d7:da:24:ed:8c:74:62:3a:12:69:73:20:fa:ea:
5c:d1:c3:5e:68:27:48:0e:00:e5:26:1f:b3:90:90:
50:40:10:ce:a4:35:84:e8:e2:f3:73:90:55:81:ec:
f1:10:28:19:68:24:5d:94:e9:1e:8a:3d:05:1c:f3:
e3:25:6a:02:43:3a:be:d8:d2:82:f4:be:4f:63:2e:
d7:cb:0b:ed:59:14:0b:bd:75:ac:48:39:e2:71:cf:
ae:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F0:11:18:25:93:5B:82:99:28:3C:5D:42:4B:91:24:A8:70:FD:A3
X509v3 Authority Key Identifier:
keyid:2E:C1:21:E1:54:5D:F3:E5:BB:86:E9:18:8F:28:25:FA:D7:47:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LsEh4VRd8-W7hukYjygl-tdHf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/9vARGCWTW4KZKDxdQkuRJKhw_aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1ed27c-2d8c-4080-a458-9f522a284595/1/LsEh4VRd8-W7hukYjygl-tdHf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.58.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:4c:25:8a:d9:fe:6e:e2:cb:b5:bf:d3:57:1a:a7:28:5d:01:
d3:4a:99:fd:7a:4e:b1:c2:52:83:52:0b:d1:c6:12:75:46:1c:
45:66:b7:bf:46:3b:f4:c0:56:4f:ad:96:16:18:98:40:c5:cd:
df:7f:07:48:4e:b5:c9:86:2f:13:3d:31:3d:61:80:63:a0:fa:
bd:b6:56:ea:99:cd:29:cb:fa:d1:33:8f:e1:52:c1:a3:7e:74:
09:ce:60:95:3a:b1:1e:34:20:f0:e8:a7:18:45:fc:84:6b:61:
74:f6:55:c5:90:bb:b8:0e:96:c8:91:4b:d1:66:2a:2f:2d:ed:
1f:ac:1b:50:96:95:cd:d0:3a:ca:f6:f2:74:a6:03:1b:32:c3:
8d:c1:2a:6e:30:e1:e5:3d:b6:7d:e8:c0:ac:cc:8f:3a:d4:f3:
e8:bd:87:14:16:f6:1b:c2:67:2a:5c:46:15:4e:a7:be:51:f2:
54:0c:05:6b:dd:65:52:48:89:ba:80:91:cc:ef:28:d4:d8:80:
a0:8f:c6:7d:56:37:12:43:19:1a:60:0a:8e:72:58:2e:3f:cc:
c9:5a:e4:e2:ea:4e:07:20:93:cc:14:ab:23:77:3c:09:67:b9:
9c:b7:3f:4d:aa:1b:18:53:7f:66:cf:0c:29:aa:e8:ac:a7:23:
32:b2:2b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:47 2024 by rpki-client on console-ams.rpki-client.org