Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/9TVZGUixBtPqa1o5vC1c_Zt7tx8.roa
File: 9TVZGUixBtPqa1o5vC1c_Zt7tx8.roa (raw, json)
Hash identifier: 6SQlbbO0UdsT4I+BdD2fSN5Lm+AMNQOjAczAtAYSqzQ=
Subject key identifier: F5:35:59:19:48:B1:06:D3:EA:6B:5A:39:BC:2D:5C:FD:9B:7B:B7:1F
Certificate issuer: /CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Certificate serial: 01856CAF220D450E6A8FE79F65EC6E81E852
Authority key identifier: FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/9TVZGUixBtPqa1o5vC1c_Zt7tx8.roa
Signing time: Sun 01 Jan 2023 09:34:54 +0000
ROA not before: Sun 01 Jan 2023 09:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198892
IP address blocks: 194.0.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:22:0d:45:0e:6a:8f:e7:9f:65:ec:6e:81:e8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd0ef040fba45bce7b07163495cdf5e85077919d
Validity
Not Before: Jan 1 09:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f535591948b106d3ea6b5a39bc2d5cfd9b7bb71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:30:81:9b:7d:b7:3a:fb:66:ce:92:df:49:23:
b1:97:e7:3c:18:35:2e:c7:8b:9e:a2:30:08:5c:8d:
ea:25:f6:d9:0b:da:26:c9:64:ad:d4:cf:32:ce:c8:
77:aa:0c:39:3d:7d:52:9d:d9:6c:e0:6c:81:f9:8e:
8c:17:57:2c:23:e1:fb:23:f6:8d:a1:4a:0c:ab:4a:
f7:18:57:75:86:e3:ef:fc:de:c5:a7:96:62:46:75:
91:40:be:06:2a:59:a1:bd:09:74:89:de:97:8a:a5:
2e:93:ce:45:c7:e8:b2:b8:6f:6f:5d:01:59:56:1f:
22:c0:7c:f9:af:e2:a8:f8:d9:32:c2:7f:d7:9b:6c:
32:35:ac:6b:6a:f7:2e:2c:d4:96:d9:f8:df:86:c8:
b8:2b:df:7f:0d:68:a4:bc:1f:b8:7e:f6:60:2e:41:
08:84:ed:d0:9a:e6:a7:66:81:ef:a5:13:78:55:5a:
6b:14:5d:34:74:5f:af:40:bb:62:a6:71:57:9f:8f:
c0:95:aa:c6:e8:23:58:0b:05:25:72:0b:5c:4f:f8:
8f:f9:03:9a:62:7b:e8:47:2c:0f:41:08:82:c4:17:
8f:94:1f:f3:52:e2:14:3e:6a:ab:87:45:b5:7c:55:
3d:21:08:59:fe:bc:47:7d:f0:f9:ec:82:bd:61:c4:
bc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:35:59:19:48:B1:06:D3:EA:6B:5A:39:BC:2D:5C:FD:9B:7B:B7:1F
X509v3 Authority Key Identifier:
keyid:FD:0E:F0:40:FB:A4:5B:CE:7B:07:16:34:95:CD:F5:E8:50:77:91:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Q7wQPukW857BxY0lc316FB3kZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/9TVZGUixBtPqa1o5vC1c_Zt7tx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d77168-133f-4553-b19d-56c94f326dc2/1/_Q7wQPukW857BxY0lc316FB3kZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.173.0/24
Signature Algorithm: sha256WithRSAEncryption
45:fc:9f:64:78:5b:0c:1a:5f:91:b7:e8:34:8e:05:d7:5d:ba:
da:af:56:8f:ea:b3:12:f2:a7:70:1c:32:97:5f:74:db:bf:a0:
aa:6b:6c:74:b5:7a:2f:39:b3:06:59:5c:a2:2e:1e:ed:ce:87:
dd:d0:a6:d7:9e:22:64:80:d1:89:70:88:db:ce:52:93:37:74:
ac:ea:54:60:77:0e:bd:51:4f:32:a4:91:67:3d:1d:22:ad:53:
ef:bc:af:1f:44:f1:3f:f0:dd:0e:93:3f:7d:a6:fb:ad:4f:bb:
dd:e7:8b:62:6b:5f:9e:6f:ac:1d:86:a6:f1:12:9e:c2:da:d5:
c6:05:c7:cf:fd:a9:c7:27:a0:cf:55:e3:50:84:2c:31:a5:ce:
23:2f:3b:c6:f1:cc:6f:74:0f:8b:0d:36:05:fe:77:27:c6:1b:
7d:d0:f3:2b:fb:ae:59:d7:01:39:c9:bb:34:af:a2:b5:1f:3d:
81:70:0d:d9:55:ac:f0:2a:5a:21:7b:20:d5:46:27:04:7c:b1:
4f:af:31:98:b1:81:db:44:97:4c:4d:1d:a8:83:08:19:43:50:
7e:d5:4e:88:e8:cd:27:be:0f:99:77:02:07:a2:16:a4:3a:9f:
c6:b5:51:b4:db:22:c0:36:0e:78:4b:76:2c:e4:75:f9:2e:70:
17:28:02:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:48 2023 by rpki-client on console-fra.rpki-client.org