Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/nx7WQ6MWqdgtUOr9mpggcClcBIg.roa
File: nx7WQ6MWqdgtUOr9mpggcClcBIg.roa (raw, json)
Hash identifier: t7sHT+2lEUXfciBKHsa6ZZ1ohElbwXXfqtjoEB9yMA4=
Subject key identifier: 9F:1E:D6:43:A3:16:A9:D8:2D:50:EA:FD:9A:98:20:70:29:5C:04:88
Certificate issuer: /CN=0d7d3c72802223577880d38f048c81891226403b
Certificate serial: 018572C379A3DBF1F88AA91CC357C0F1FD1B
Authority key identifier: 0D:7D:3C:72:80:22:23:57:78:80:D3:8F:04:8C:81:89:12:26:40:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX08coAiI1d4gNOPBIyBiRImQDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/nx7WQ6MWqdgtUOr9mpggcClcBIg.roa
Signing time: Mon 02 Jan 2023 13:54:51 +0000
ROA not before: Mon 02 Jan 2023 13:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29240
IP address blocks: 193.142.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:79:a3:db:f1:f8:8a:a9:1c:c3:57:c0:f1:fd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7d3c72802223577880d38f048c81891226403b
Validity
Not Before: Jan 2 13:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f1ed643a316a9d82d50eafd9a982070295c0488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:cb:ad:96:b0:1a:9b:f8:78:cd:3a:2c:ac:7b:
86:dc:c3:23:b3:bb:95:c0:b2:80:8f:95:20:e0:e4:
27:fa:f6:72:a4:03:25:2f:00:4e:8a:96:dc:77:a4:
3a:d1:c2:40:41:46:e6:4e:14:07:74:2d:67:6f:53:
00:3d:2f:99:bd:07:c7:61:81:ae:90:a3:46:5c:5e:
d0:a8:a3:f8:81:28:5b:54:21:13:e4:6e:05:99:b0:
9e:c7:56:9d:87:cb:b4:4b:0c:35:40:06:96:3f:ac:
80:b7:a0:43:06:95:ac:2d:0e:3c:ab:88:cf:3b:70:
73:b9:9f:3d:86:e5:0d:94:62:68:3d:df:1c:60:e1:
5c:f4:b5:a2:32:8b:45:c3:68:93:a7:16:cf:a5:d7:
0f:cd:27:68:73:8e:6f:b1:23:ee:c4:96:5d:f8:36:
27:f6:45:18:d0:2f:18:01:f5:fe:2e:92:08:31:ee:
60:23:55:b5:9a:9b:a9:80:7e:22:63:86:4d:03:aa:
e3:a9:0f:0a:38:fa:01:ce:9d:b6:4f:43:02:01:9e:
f5:b1:21:3a:63:aa:13:55:4d:71:55:2e:54:80:13:
2b:a0:65:b5:04:4c:08:7b:1e:02:55:19:d2:87:32:
d0:a3:ab:ce:e9:58:da:68:9e:46:b2:9f:6d:d0:ba:
30:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1E:D6:43:A3:16:A9:D8:2D:50:EA:FD:9A:98:20:70:29:5C:04:88
X509v3 Authority Key Identifier:
keyid:0D:7D:3C:72:80:22:23:57:78:80:D3:8F:04:8C:81:89:12:26:40:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX08coAiI1d4gNOPBIyBiRImQDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/nx7WQ6MWqdgtUOr9mpggcClcBIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/40e655-a2ac-4252-9437-864fdbc79770/1/DX08coAiI1d4gNOPBIyBiRImQDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:49:48:a5:5e:36:02:93:a2:65:03:d4:c9:88:44:fc:57:b3:
94:b6:de:f7:0d:63:f0:b3:d2:02:84:85:89:cb:f2:88:c4:89:
83:00:3b:1f:be:93:f9:b4:c5:a3:42:2c:46:67:4d:7c:87:02:
11:60:56:36:41:bd:ef:75:3b:a5:82:09:ac:cd:e7:d5:ba:6a:
81:17:c9:2e:28:bf:13:d1:47:b3:10:fe:8b:a1:db:da:1c:3b:
a0:d5:d4:7f:48:3d:83:9d:ea:06:22:d4:b0:a8:54:18:30:da:
8f:b3:b7:56:40:8a:eb:5a:e9:e8:18:2f:27:94:1e:0d:2e:ad:
70:99:35:2b:98:ae:57:e6:e9:f6:f0:8c:17:71:56:66:67:41:
4f:b1:2f:26:1b:49:94:60:18:e2:47:bd:e9:e1:f0:9d:84:7e:
45:90:9e:2f:87:43:ac:99:e4:71:b6:40:e4:e9:62:44:f8:01:
bc:45:b0:e6:68:ff:cf:5a:90:0a:1f:5c:c3:43:3f:70:85:7f:
63:f7:7c:43:60:a4:00:95:8d:ea:42:9b:59:df:27:23:b1:92:
5f:2b:70:98:da:be:d9:2c:fe:cc:f2:75:22:41:90:f1:01:2c:
eb:ad:14:43:f4:d9:bd:6d:7f:1c:68:5f:56:43:2f:a8:4d:85:
4a:a7:8c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:40 2024 by rpki-client on console-fra.rpki-client.org