Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/uDavm3V3LMl4JdAOdDF3tuOCQG8.roa
File: uDavm3V3LMl4JdAOdDF3tuOCQG8.roa (raw, json)
Hash identifier: EyMMrOVx4qh/lXEaKM5Z6aXImSsOYiT5IhsfU7gtBhM=
Subject key identifier: B8:36:AF:9B:75:77:2C:C9:78:25:D0:0E:74:31:77:B6:E3:82:40:6F
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 018CB5D7A6D43FA1B91BD73B832E32F5F707
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/uDavm3V3LMl4JdAOdDF3tuOCQG8.roa
Signing time: Fri 29 Dec 2023 13:50:58 +0000
ROA not before: Fri 29 Dec 2023 13:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60943
IP address blocks: 193.160.240.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b5:d7:a6:d4:3f:a1:b9:1b:d7:3b:83:2e:32:f5:f7:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: Dec 29 13:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b836af9b75772cc97825d00e743177b6e382406f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a1:e1:f3:ae:4c:29:47:20:14:b6:2b:41:b5:
71:c1:4d:32:e7:43:0f:86:54:f0:33:f7:38:fc:2a:
8b:0c:87:da:40:25:7f:34:2e:bc:6f:1e:ee:44:0e:
76:4d:83:77:e6:ab:95:79:78:74:f3:01:c0:05:8b:
05:de:41:ad:05:50:25:1b:ba:56:4a:88:af:29:8d:
22:fa:02:b1:11:44:42:a2:aa:d6:75:60:b0:06:6c:
3f:9f:d2:e2:a5:fb:b5:0b:32:cc:8e:08:0b:ab:60:
ab:33:36:c2:c5:eb:6a:d9:a7:06:02:d8:88:7d:5b:
4e:96:54:6d:57:d4:98:05:f0:bd:09:2a:2d:27:c7:
ad:1f:54:cc:4a:e1:38:bb:7e:46:50:f3:21:2b:28:
37:f1:d3:83:aa:db:f7:10:d6:86:44:c0:ec:c8:98:
0e:90:25:0d:f6:a3:b1:f2:4a:86:30:f7:ae:09:8f:
69:71:a9:c4:c7:98:b1:bf:bb:5d:19:63:ad:09:49:
21:9c:6c:43:0a:59:a6:f7:34:ca:d1:ab:6b:8d:6b:
b3:fe:bb:92:30:b3:3d:74:92:f9:e3:d3:1a:e0:0c:
6e:c2:b5:7f:a9:85:b2:8f:a1:8d:c1:76:a3:4d:8c:
89:2f:b1:3b:f3:e2:dd:59:11:c0:4d:4b:8b:91:ee:
5d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:36:AF:9B:75:77:2C:C9:78:25:D0:0E:74:31:77:B6:E3:82:40:6F
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/uDavm3V3LMl4JdAOdDF3tuOCQG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.240.0/22
Signature Algorithm: sha256WithRSAEncryption
09:34:f8:95:d0:36:02:2e:28:cf:b1:4c:41:b3:21:4f:3d:99:
4f:5d:fd:af:91:8d:a9:c4:f7:fb:ef:10:76:37:f3:16:c3:71:
be:3b:d0:c3:c2:d1:02:cd:a4:3f:8f:30:24:91:da:d5:bd:86:
69:c0:48:bf:27:74:cb:11:43:5c:91:30:ff:db:ec:1d:e3:db:
8c:9a:b9:cc:c7:a4:30:a9:6e:a1:f7:c7:5b:b2:e0:7e:fb:51:
45:b3:e8:fc:f6:b8:73:38:b9:fc:d0:5c:48:23:16:0a:ce:64:
93:1f:76:56:96:a1:f5:ba:af:7a:e4:3f:26:b6:bd:c3:e2:7e:
f0:9b:aa:19:ca:09:3e:f1:50:87:42:2e:f9:ad:9c:3e:46:3b:
7d:ab:5f:eb:a2:54:ec:ed:67:cc:05:fb:a4:2d:3a:ef:4d:27:
3c:fe:c0:46:98:c8:84:5f:85:12:ee:5b:63:53:84:a1:4a:f6:
18:26:80:76:ee:98:1f:40:3b:46:ea:5f:e2:d3:f2:f4:f4:78:
b5:99:ed:7c:9c:5b:e8:6a:50:3c:2b:72:54:ca:2e:cf:ce:2a:
43:bc:57:78:50:4f:a5:ad:07:cc:3d:f1:47:5e:cf:7e:a5:d4:
2a:1a:73:32:19:e1:cb:66:70:75:19:54:fc:30:82:87:4a:b4:
2f:f8:c0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:47 2024 by rpki-client on console-fra.rpki-client.org