Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/dR0uc3PbacqfRLleB82BumZcJgk.roa
File: dR0uc3PbacqfRLleB82BumZcJgk.roa (raw, json)
Hash identifier: e4t5LVBaZ/hmZ3u09BIRScBCu46iDC/Q1Qq6iKJ8F4U=
Subject key identifier: 75:1D:2E:73:73:DB:69:CA:9F:44:B9:5E:07:CD:81:BA:66:5C:26:09
Certificate issuer: /CN=2f3136ed10998580a517d9598abca33d9ba66599
Certificate serial: 018C1757D5B5E832F8B8CCF16D539575E9A4
Authority key identifier: 2F:31:36:ED:10:99:85:80:A5:17:D9:59:8A:BC:A3:3D:9B:A6:65:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzE27RCZhYClF9lZiryjPZumZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/dR0uc3PbacqfRLleB82BumZcJgk.roa
Signing time: Tue 28 Nov 2023 19:11:21 +0000
ROA not before: Tue 28 Nov 2023 19:11:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 145.224.192.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:17:57:d5:b5:e8:32:f8:b8:cc:f1:6d:53:95:75:e9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f3136ed10998580a517d9598abca33d9ba66599
Validity
Not Before: Nov 28 19:11:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=751d2e7373db69ca9f44b95e07cd81ba665c2609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b6:54:d2:33:aa:27:f8:8e:25:49:7f:1e:04:
7d:e9:33:fe:7a:e5:69:e9:47:a7:72:88:40:84:6e:
eb:a3:e2:2a:ba:20:eb:60:4a:98:30:e6:26:0b:ae:
de:75:71:b8:87:54:69:5f:12:75:d1:98:cf:60:4d:
0a:74:40:7e:1b:fe:45:f8:a6:c1:90:9f:43:e7:78:
b8:99:68:a4:64:ec:00:63:16:17:33:b4:f7:1a:cb:
b1:dc:bd:f8:ec:8f:a6:d3:32:ff:8f:17:51:43:54:
d6:13:02:89:d4:3a:57:79:69:f0:c6:16:fa:4c:78:
ad:ce:49:35:dc:da:41:da:0d:61:93:21:25:3e:2a:
12:bd:4d:ab:c7:9d:cf:5c:de:78:9e:29:e7:b3:8f:
29:04:a8:dd:fb:0b:a8:a4:1e:a3:6e:ac:31:64:53:
29:bc:c7:bd:2b:eb:09:7c:1b:ea:a1:88:4f:64:73:
28:fc:e2:e0:c1:06:d1:eb:00:f6:3e:6b:e1:c2:04:
c4:ae:3f:60:75:9c:89:47:fb:6c:03:bf:b5:c6:8c:
e0:2a:2f:65:a0:7e:08:91:12:59:b6:4f:2f:6d:e7:
d0:69:9a:ad:1e:72:e8:e1:52:9c:0b:78:7c:4d:42:
1b:2d:cd:94:25:a2:4d:2a:80:81:21:11:4e:3a:a6:
0f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:1D:2E:73:73:DB:69:CA:9F:44:B9:5E:07:CD:81:BA:66:5C:26:09
X509v3 Authority Key Identifier:
keyid:2F:31:36:ED:10:99:85:80:A5:17:D9:59:8A:BC:A3:3D:9B:A6:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzE27RCZhYClF9lZiryjPZumZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/dR0uc3PbacqfRLleB82BumZcJgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f90d83-02be-4e5f-bd0f-929f106630f1/1/LzE27RCZhYClF9lZiryjPZumZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.224.192.0/24
Signature Algorithm: sha256WithRSAEncryption
29:69:22:00:1d:76:2f:f1:e3:84:e8:1f:d9:10:dc:52:d9:28:
00:22:ce:23:dd:47:64:76:15:69:75:52:f5:2f:1d:9f:be:0d:
94:93:50:94:09:55:65:7a:e4:5b:30:44:56:61:26:1e:2d:20:
d6:6f:ce:46:8a:84:74:d8:f7:4a:38:0d:49:48:b2:39:dc:22:
0c:27:c8:1f:41:8b:48:35:6e:08:dc:6c:f9:39:8c:da:2b:fb:
b2:70:aa:57:1f:18:03:67:8a:a4:20:3d:13:6d:ab:48:20:5c:
31:85:c7:81:fe:32:35:57:bc:12:6c:c3:74:41:5d:a7:7d:0e:
38:1d:9f:56:08:07:b1:f9:3b:2e:79:b4:ce:32:fd:c7:45:e6:
35:89:89:78:97:a9:3a:d9:c0:6f:99:1d:e3:04:10:f5:7a:9c:
72:11:87:a0:1a:d1:49:5c:e3:b8:77:83:f5:0c:d3:3f:cf:17:
16:cc:c0:d1:cf:03:7d:06:7f:ba:a0:99:ae:1c:31:35:71:e5:
de:a9:81:91:a7:ee:91:e9:2e:5d:ab:87:3c:4c:35:a1:98:00:
d6:10:80:0a:54:4b:24:95:ec:e7:45:69:2e:27:2a:0b:bd:41:
75:2a:d6:7e:82:31:96:aa:64:fb:40:2a:25:c7:4c:95:c9:16:
f1:76:1d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 16:51:15 2023 by rpki-client on console-fra.rpki-client.org