Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/_IK7SFJnGuZk1nFUnHnnTrnc5oU.roa
File: _IK7SFJnGuZk1nFUnHnnTrnc5oU.roa (raw, json)
Hash identifier: QmeYsomsKfBPmWIpObaSI8GOD85hZKjm2Xh1yYXE4E4=
Subject key identifier: FC:82:BB:48:52:67:1A:E6:64:D6:71:54:9C:79:E7:4E:B9:DC:E6:85
Certificate issuer: /CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Certificate serial: 01857102E2735B1E366F34F03DE2E54922E0
Authority key identifier: 59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/_IK7SFJnGuZk1nFUnHnnTrnc5oU.roa
Signing time: Mon 02 Jan 2023 05:44:52 +0000
ROA not before: Mon 02 Jan 2023 05:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25090
IP address blocks: 193.8.222.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:e2:73:5b:1e:36:6f:34:f0:3d:e2:e5:49:22:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Validity
Not Before: Jan 2 05:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc82bb4852671ae664d671549c79e74eb9dce685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9e:cc:1f:29:9c:f8:db:6b:21:ed:d9:1c:2b:
fa:98:59:51:73:c7:06:1c:6e:d5:99:6c:8a:a2:ff:
16:b9:41:d7:30:b4:d4:59:3a:65:44:db:e6:55:3b:
ad:b2:96:53:51:c2:29:70:34:68:04:81:ff:a3:20:
8f:60:d8:7b:70:f1:44:0a:07:b2:be:84:d9:46:6e:
7c:12:5c:7e:34:a7:04:0f:51:29:96:86:26:07:57:
1d:bd:9f:d3:cb:61:d4:16:3a:f8:2d:73:c2:0d:9a:
cf:d9:7d:91:ad:11:b7:ee:8f:53:28:45:72:03:c9:
47:57:99:d8:f2:83:ea:35:9f:4f:79:c6:39:0d:56:
e5:65:0c:de:82:e9:76:81:ae:84:68:38:f1:ce:1a:
db:a9:6e:19:67:93:59:8a:ff:9b:7a:39:79:e1:5c:
31:86:fb:a0:86:e8:67:d5:09:19:a5:65:cf:1f:06:
11:77:0f:67:2d:9c:9d:ab:93:53:14:d2:85:bf:1e:
34:4e:68:1d:20:24:7f:40:c0:5f:ca:51:45:55:47:
e2:61:9f:e5:1a:99:67:4b:50:f7:82:e1:eb:c8:84:
5b:ad:22:ff:ac:e9:43:8e:9f:69:0e:e2:91:91:69:
3e:e3:dd:2d:bf:b4:6f:2c:d6:cb:20:ef:8f:5d:1f:
3b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:82:BB:48:52:67:1A:E6:64:D6:71:54:9C:79:E7:4E:B9:DC:E6:85
X509v3 Authority Key Identifier:
keyid:59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/_IK7SFJnGuZk1nFUnHnnTrnc5oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.222.0/23
Signature Algorithm: sha256WithRSAEncryption
43:db:18:dd:f7:4f:ad:db:a5:63:33:73:59:b7:14:81:7d:e8:
80:de:9d:fd:75:cf:6a:ed:e1:cd:ed:e6:c7:54:af:14:22:55:
2d:2d:0e:36:87:37:c3:99:72:69:32:4c:b3:7a:d3:eb:87:a0:
82:2d:f4:f7:a8:1a:71:24:e2:b6:75:77:f7:4c:0a:74:5d:81:
4c:a6:30:42:bb:ff:bf:57:9e:77:01:16:83:2a:2b:ed:ba:58:
60:46:2a:81:38:f2:d8:2c:d0:71:c9:31:d8:ad:9d:6c:ac:76:
20:7b:53:4c:8d:32:19:8f:f1:43:36:b6:e2:15:06:69:bc:cd:
75:bc:df:31:bb:e6:30:0b:a6:03:00:eb:08:2e:f1:34:7f:a9:
33:8a:3f:0f:a7:d5:f5:ec:cb:ca:e2:7e:f6:7e:ed:55:6b:72:
3a:5e:8a:7b:93:09:30:26:56:f7:0f:22:22:5b:62:fc:c5:2b:
63:af:d5:9c:22:76:c0:35:25:c0:62:86:71:b8:08:1f:b3:1b:
66:af:70:79:95:3c:d9:4f:0d:b5:2f:e5:46:49:b8:c4:45:56:
37:b5:d0:12:aa:77:28:02:2d:e3:6a:c6:98:c6:b8:5d:19:27:
f3:7c:b8:e1:87:c4:f7:33:f6:b9:cc:a9:24:5d:df:b4:07:c8:
d8:28:a6:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:49 2024 by rpki-client on console-ams.rpki-client.org