Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/skMSh68Lc5VY2uxRie968F3TRJs.roa
File: skMSh68Lc5VY2uxRie968F3TRJs.roa (raw, json)
Hash identifier: B3aW7YsWrtf+bBOmsg6jareCGh1CnS3VT4fgrQGyu98=
Subject key identifier: B2:43:12:87:AF:0B:73:95:58:DA:EC:51:89:EF:7A:F0:5D:D3:44:9B
Certificate issuer: /CN=dc84756dc772c06483249a987a3b1bc6e605e835
Certificate serial: 01856D6F51F775618F95686A58DC644607A3
Authority key identifier: DC:84:75:6D:C7:72:C0:64:83:24:9A:98:7A:3B:1B:C6:E6:05:E8:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3IR1bcdywGSDJJqYejsbxuYF6DU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/skMSh68Lc5VY2uxRie968F3TRJs.roa
Signing time: Sun 01 Jan 2023 13:04:49 +0000
ROA not before: Sun 01 Jan 2023 13:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6079
IP address blocks: 193.160.80.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:51:f7:75:61:8f:95:68:6a:58:dc:64:46:07:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc84756dc772c06483249a987a3b1bc6e605e835
Validity
Not Before: Jan 1 13:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2431287af0b739558daec5189ef7af05dd3449b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d6:7a:09:24:e9:d7:53:7e:87:fd:68:7e:02:
4d:ad:41:c7:8a:8d:15:5b:77:93:eb:ec:7e:99:e6:
bf:d1:e9:ce:b7:62:23:48:26:50:b7:c3:3e:b8:61:
d6:a5:69:75:be:40:50:c2:1b:19:8c:15:01:88:a8:
77:eb:dd:f9:f3:68:a8:71:41:76:58:15:75:92:38:
77:35:ae:98:e0:b1:3f:d1:3f:b7:e3:8f:4c:1a:c0:
3a:65:d5:12:17:64:3a:57:d2:1e:39:50:8c:26:00:
ca:5c:50:6b:8c:8c:88:ce:ac:a3:58:0f:0d:02:fa:
7f:22:3b:98:03:ff:40:34:5c:17:3c:e9:29:7c:8f:
8b:7a:aa:55:cd:a4:68:0e:70:ad:48:9c:06:4c:d1:
f1:36:b3:e0:fd:4d:ae:10:de:cf:6c:60:81:f0:01:
f6:a3:8c:a6:8d:c7:c0:18:d1:96:3f:b7:24:ad:51:
b7:2f:9d:7d:0f:c1:07:82:e2:6b:55:39:d7:b0:dc:
24:19:aa:c3:6e:63:c0:c3:96:2d:fe:75:ff:56:5c:
5d:09:3e:ff:8a:cf:11:1d:08:a9:bb:7b:a2:19:83:
5b:a8:84:47:5f:01:6e:f8:29:78:b5:50:39:7d:d9:
3e:be:4d:3a:5d:d8:3e:e5:7f:b1:3d:c8:e1:22:4c:
a8:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:43:12:87:AF:0B:73:95:58:DA:EC:51:89:EF:7A:F0:5D:D3:44:9B
X509v3 Authority Key Identifier:
keyid:DC:84:75:6D:C7:72:C0:64:83:24:9A:98:7A:3B:1B:C6:E6:05:E8:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3IR1bcdywGSDJJqYejsbxuYF6DU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/skMSh68Lc5VY2uxRie968F3TRJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/fdd9ed-717c-460d-81a3-4cd99cd5fb1a/1/3IR1bcdywGSDJJqYejsbxuYF6DU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.80.0/22
Signature Algorithm: sha256WithRSAEncryption
88:82:c7:8b:67:55:22:74:5f:e8:96:c0:2a:a5:2d:1c:42:de:
56:41:0c:40:f5:0d:98:bd:6a:d9:e7:97:a2:9b:3c:5e:32:8d:
b8:9d:d4:3f:8e:2d:0f:c7:10:7e:4b:eb:07:8a:31:17:fc:44:
c5:36:ed:a6:d3:d7:cc:68:a8:d2:08:45:f8:db:9c:0e:52:2c:
8d:69:7c:a6:df:69:da:27:52:af:27:6f:06:60:b2:86:08:46:
be:e7:6d:ab:a8:b2:f3:c9:2a:42:76:2a:93:ff:79:b5:f1:c8:
3a:0a:2e:c2:6a:19:7c:5a:09:41:62:1b:db:fd:16:cf:13:2b:
2c:f8:7c:d5:87:33:5b:09:0a:75:68:60:bc:71:3e:63:1d:0b:
48:74:22:4e:b3:6c:b5:77:21:7d:d0:32:70:be:86:15:06:16:
25:00:c0:8c:9b:1a:c4:c2:84:03:db:20:e7:f8:28:4f:5d:9f:
12:6b:9c:03:04:b0:15:d9:c7:5c:87:7d:d4:62:f1:ae:bc:5d:
a5:6e:4e:6d:71:d9:d7:de:22:9c:d8:e5:45:2b:be:de:df:ca:
fc:dc:da:14:e2:7c:8f:38:fe:31:ee:2d:50:98:09:a7:18:21:
0d:db:94:14:a0:46:b0:7b:cd:5a:e8:2d:21:24:27:94:f1:cb:
66:e1:ff:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:48 2024 by rpki-client on console-fra.rpki-client.org