Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/565191-d981-41e5-961c-9fe55b171683/1/DRAmiAlO6Hz3YPCOuRf95WO7uZo.roa
File: DRAmiAlO6Hz3YPCOuRf95WO7uZo.roa (raw, json)
Hash identifier: u/A7hDjrCGTlY3IFr3L3NnAi/ERpNz1Xj9s2tA3nZck=
Subject key identifier: 0D:10:26:88:09:4E:E8:7C:F7:60:F0:8E:B9:17:FD:E5:63:BB:B9:9A
Certificate issuer: /CN=1533cd2d1f6dcf1eec97e86943c4e53b0c88eaae
Certificate serial: 018571A7B3B2FC550EAEE96C842E05964855
Authority key identifier: 15:33:CD:2D:1F:6D:CF:1E:EC:97:E8:69:43:C4:E5:3B:0C:88:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTPNLR9tzx7sl-hpQ8TlOwyI6q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/565191-d981-41e5-961c-9fe55b171683/1/DRAmiAlO6Hz3YPCOuRf95WO7uZo.roa
Signing time: Mon 02 Jan 2023 08:44:53 +0000
ROA not before: Mon 02 Jan 2023 08:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8978
IP address blocks: 193.43.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:b3:b2:fc:55:0e:ae:e9:6c:84:2e:05:96:48:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1533cd2d1f6dcf1eec97e86943c4e53b0c88eaae
Validity
Not Before: Jan 2 08:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d102688094ee87cf760f08eb917fde563bbb99a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1b:c2:9e:9a:cc:63:b9:e7:e0:df:bc:03:ff:
78:d4:8b:fe:85:f9:52:99:9f:65:35:93:de:68:a1:
d8:e3:74:37:33:f4:97:d6:bc:80:29:53:7e:63:40:
c0:c5:c7:26:c2:c9:1a:07:f3:8a:0a:1a:93:db:55:
21:71:1c:94:19:7a:90:17:b3:47:d1:1d:9d:e6:7a:
91:0d:c0:bc:ef:df:73:53:1d:4a:f2:54:c5:83:19:
eb:b4:7e:97:42:d7:b3:1b:53:d6:f8:f4:be:fb:f3:
87:49:e0:b9:b6:63:f1:29:b7:4d:eb:e0:8a:d0:9e:
a2:72:4a:59:e6:a8:7e:5f:e2:29:22:4c:8d:43:e0:
31:b2:cf:d9:89:ce:50:5e:50:bb:10:10:ba:9c:c9:
03:62:d2:7e:a2:14:e0:f6:69:75:de:aa:55:10:0d:
d5:f3:68:76:97:24:d4:a9:8c:6f:4e:d2:0e:93:5c:
a2:69:63:d4:d7:a5:da:5f:cf:32:58:bc:e1:59:f4:
5a:44:82:e5:f1:b3:f6:7b:59:f9:86:a2:56:ea:32:
fe:9e:72:b1:aa:c2:9d:65:64:13:f4:41:93:94:29:
70:58:fb:8c:2c:5d:b6:78:aa:79:88:6c:62:bf:6d:
43:53:d4:23:a6:74:ab:ea:9b:28:f8:47:44:28:63:
7f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:10:26:88:09:4E:E8:7C:F7:60:F0:8E:B9:17:FD:E5:63:BB:B9:9A
X509v3 Authority Key Identifier:
keyid:15:33:CD:2D:1F:6D:CF:1E:EC:97:E8:69:43:C4:E5:3B:0C:88:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTPNLR9tzx7sl-hpQ8TlOwyI6q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/565191-d981-41e5-961c-9fe55b171683/1/DRAmiAlO6Hz3YPCOuRf95WO7uZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/565191-d981-41e5-961c-9fe55b171683/1/FTPNLR9tzx7sl-hpQ8TlOwyI6q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.128.0/22
Signature Algorithm: sha256WithRSAEncryption
82:58:34:b9:8e:00:1d:a7:43:78:63:ff:5c:f1:fb:7b:ef:e9:
b3:f6:36:da:fe:9a:8b:16:ed:e1:ff:8e:0a:f2:8d:9a:a7:79:
b6:f7:85:6c:cf:e8:e6:98:fe:45:1e:e5:8f:7f:a9:cf:23:e5:
00:5c:cf:de:31:79:30:83:85:2a:c7:0d:77:20:cd:30:4c:42:
4a:6a:a2:81:2e:6c:db:99:a3:5c:9c:e4:55:b2:9a:9a:b1:e8:
ae:75:d3:6c:f9:b9:39:67:64:58:c1:18:a7:5d:97:b8:6e:0f:
c6:80:0d:1c:0f:22:a5:35:3d:10:1d:21:35:7d:67:83:9d:45:
d2:7a:95:7e:8b:aa:f2:a9:05:2b:35:7c:4c:fd:eb:9c:03:63:
20:dd:05:8b:1b:84:be:5c:26:76:ca:c5:c9:42:dd:08:a8:7f:
e5:4b:15:4a:29:3e:b0:5c:ef:09:86:7b:e2:e2:92:99:38:09:
82:04:f7:ef:1f:41:5e:7d:18:da:b0:6d:1f:d9:e7:18:a8:f9:
18:3e:76:4f:4d:50:ef:ac:df:35:86:a2:23:4e:f1:f9:69:1d:
b2:89:8e:0a:53:36:79:a1:e9:f0:ec:6e:3f:00:c6:49:d2:3c:
be:66:79:7f:fe:0b:8c:d8:cb:db:8e:81:99:79:e8:c5:b2:3e:
7f:5a:4d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:16 2024 by rpki-client on console-fra.rpki-client.org