Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/VQKhfx0oU0JMJi6RqRfEbE_Y1sg.roa
File: VQKhfx0oU0JMJi6RqRfEbE_Y1sg.roa (raw, json)
Hash identifier: NlpdZjctGwnA3mhy03AOfd1a4T06V384DpKKf+GXXzE=
Subject key identifier: 55:02:A1:7F:1D:28:53:42:4C:26:2E:91:A9:17:C4:6C:4F:D8:D6:C8
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 01857227EC7624BED3F8925B68E49FD57310
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/VQKhfx0oU0JMJi6RqRfEbE_Y1sg.roa
Signing time: Mon 02 Jan 2023 11:04:57 +0000
ROA not before: Mon 02 Jan 2023 11:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.9.122.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:ec:76:24:be:d3:f8:92:5b:68:e4:9f:d5:73:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Jan 2 11:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5502a17f1d2853424c262e91a917c46c4fd8d6c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f5:f0:bf:e5:c4:83:89:06:84:00:36:33:2c:
51:cc:ed:79:fb:94:91:87:47:95:41:c9:bd:3d:ae:
c3:4d:7e:c2:88:51:51:9c:6d:b5:3c:28:cd:f5:18:
15:f4:3f:70:33:3a:1a:e3:0b:c1:1e:62:7a:6b:a5:
23:ba:a3:a0:da:7f:70:b9:48:32:6f:58:f8:92:c5:
3b:d9:12:51:00:48:b7:47:2d:f1:fd:06:5e:b4:07:
0e:15:cb:c1:d8:78:1e:84:37:dc:d0:86:86:ce:11:
ce:18:3e:88:19:18:de:03:dc:2f:6f:c9:ae:6d:58:
91:4b:77:bf:01:49:56:6e:c2:2b:4c:c0:25:cd:04:
28:ab:e1:51:f1:3e:66:c4:4b:47:b8:e6:50:36:a5:
77:1a:b2:0f:e1:24:ac:15:a3:cc:21:a1:87:27:52:
16:3d:81:1c:56:25:75:9c:b8:7c:6c:98:d0:98:b2:
de:06:4a:2c:0d:13:15:04:07:b5:fb:a7:cf:6f:d0:
4a:bd:8a:83:b8:b8:90:13:ad:f0:2b:c7:14:87:25:
6e:04:55:dc:fb:91:c4:94:f9:84:76:9a:ba:fc:9d:
7b:8a:8e:06:b0:44:43:9d:60:1a:09:07:44:9a:10:
33:23:b1:89:f3:78:6f:61:95:b0:b7:15:1a:2c:ff:
52:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:02:A1:7F:1D:28:53:42:4C:26:2E:91:A9:17:C4:6C:4F:D8:D6:C8
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/VQKhfx0oU0JMJi6RqRfEbE_Y1sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.122.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:03:df:9e:48:dc:de:d6:73:bc:1d:18:50:51:48:20:f5:8a:
2b:4b:79:60:24:c5:69:97:c9:3e:97:f7:fd:28:4c:98:a0:65:
4e:2e:cd:b4:1c:22:f4:85:dc:38:4c:9c:00:79:da:ba:37:ee:
80:2b:d2:5a:34:4e:34:2f:88:f0:b5:66:11:21:90:ce:a5:ca:
45:08:a2:02:94:b0:f1:cf:b2:ae:66:7e:a6:0a:a5:28:69:8a:
bf:d8:94:3d:02:55:32:99:17:46:ff:9c:c7:9b:e7:a1:7f:94:
81:84:54:9f:2d:fb:90:9b:75:41:4a:d4:62:09:1a:b1:85:80:
95:e7:78:c7:e1:1a:5a:f1:66:13:43:ca:b2:8c:aa:c7:c8:c5:
e7:e6:4e:1a:7a:d4:20:5b:52:c4:00:eb:a7:ee:1a:f7:87:6f:
2c:85:a3:62:d3:f7:30:65:21:25:37:24:96:9c:a8:00:8a:30:
de:71:9e:aa:a8:b2:67:d1:f9:3f:9b:9f:cf:2e:fe:fa:8d:d5:
59:bc:69:b5:db:e0:28:6b:85:35:ef:d9:b0:f1:69:d4:7d:0a:
34:09:5b:46:67:93:ef:66:70:1a:12:ab:d5:77:a6:88:8b:e7:
84:9e:41:f0:25:8a:89:35:4a:ec:92:9b:df:cc:54:c6:df:b5:
79:8b:49:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:54 2024 by rpki-client on console-ams.rpki-client.org