Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/t7inVXvsQvlxJk4HnPtQZ1UVkJU.roa
File: t7inVXvsQvlxJk4HnPtQZ1UVkJU.roa (raw, json)
Hash identifier: MNGnoYRm+GPT/yJvUhnePHEiT19bp6zpnFNBZRIN4YE=
Subject key identifier: B7:B8:A7:55:7B:EC:42:F9:71:26:4E:07:9C:FB:50:67:55:15:90:95
Certificate issuer: /CN=1e0c47ba799a060733383b8a4db36e84b62d315d
Certificate serial: 01856F66BFE674415CE39463029961D4FA6D
Authority key identifier: 1E:0C:47:BA:79:9A:06:07:33:38:3B:8A:4D:B3:6E:84:B6:2D:31:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgxHunmaBgczODuKTbNuhLYtMV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/t7inVXvsQvlxJk4HnPtQZ1UVkJU.roa
Signing time: Sun 01 Jan 2023 22:14:42 +0000
ROA not before: Sun 01 Jan 2023 22:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213142
IP address blocks: 193.247.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:bf:e6:74:41:5c:e3:94:63:02:99:61:d4:fa:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e0c47ba799a060733383b8a4db36e84b62d315d
Validity
Not Before: Jan 1 22:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7b8a7557bec42f971264e079cfb506755159095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4a:95:15:2e:b8:ef:cc:a1:7b:21:ef:51:d2:
c6:57:6f:a4:d0:7e:98:30:2b:a8:0a:88:78:98:88:
e4:95:d0:00:f9:ce:b7:29:2a:33:f6:83:fe:47:c1:
a0:55:9d:95:b2:c3:c6:84:5e:59:fe:d3:45:d5:33:
7b:31:0c:e1:8e:11:7f:94:e4:e9:2c:e7:53:3a:ba:
0b:aa:81:d7:7e:c0:14:41:6d:c4:44:2a:fe:1e:a0:
40:42:e2:ed:96:7b:d6:ff:ac:be:70:1e:c7:7d:50:
4c:43:82:9f:0b:f5:0f:b7:54:ae:4e:e8:cd:65:a8:
c3:04:39:0b:f3:b1:67:b0:d1:44:3c:b3:1d:80:e3:
ce:45:7a:e0:4b:93:96:d0:b6:44:cf:d1:9e:fc:24:
41:91:3d:80:88:57:38:57:69:8c:32:34:8a:2e:24:
ae:5c:e5:a0:c5:26:ef:2b:9a:13:20:62:12:85:3f:
24:d4:25:c9:22:5a:b4:9d:df:95:d3:18:ec:3d:f2:
73:db:eb:09:f2:c5:a6:1c:45:cc:0a:b6:0a:ad:1a:
cb:f4:14:6a:35:75:2f:1c:9b:62:08:03:bf:1c:8b:
b5:91:47:a8:cd:28:23:4b:8c:e6:18:f5:04:46:da:
c9:7d:42:77:90:9f:0c:8f:84:c6:23:d8:89:c8:7e:
41:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B8:A7:55:7B:EC:42:F9:71:26:4E:07:9C:FB:50:67:55:15:90:95
X509v3 Authority Key Identifier:
keyid:1E:0C:47:BA:79:9A:06:07:33:38:3B:8A:4D:B3:6E:84:B6:2D:31:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgxHunmaBgczODuKTbNuhLYtMV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/t7inVXvsQvlxJk4HnPtQZ1UVkJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e7fe5a-b626-4a32-a1cc-a327b8b56ed6/1/HgxHunmaBgczODuKTbNuhLYtMV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.67.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:c9:0b:34:ed:c0:31:c1:5a:0d:4b:69:a7:9c:49:7c:5b:72:
79:9a:ea:c1:d8:30:64:a6:e4:96:29:d8:4b:5e:b8:34:30:0e:
57:49:98:9a:8b:ee:26:09:35:d0:51:17:46:33:7e:80:76:18:
f8:04:25:ae:94:22:17:f0:30:54:96:83:bd:79:05:ad:2c:f0:
14:ef:75:34:38:5c:a5:33:cc:9e:e5:1c:7e:9a:c2:64:6a:cc:
bc:78:d0:f8:7f:82:f8:38:ea:f5:29:e8:b2:85:63:8c:3f:a4:
f0:f8:e4:23:9a:07:40:1d:0f:91:44:08:81:39:15:83:71:bb:
ce:f8:eb:a5:3d:44:bf:fb:05:a8:04:7b:2b:a1:5f:f8:77:d0:
d4:f2:84:19:e7:5b:d7:66:9a:e6:94:fe:f7:fe:71:39:53:6e:
42:08:4b:70:7e:30:2b:65:37:26:00:35:7c:95:8d:cb:e7:f0:
b2:02:cc:28:46:04:f5:24:9d:b8:02:3e:7d:0f:73:c6:f9:bc:
c3:ba:d1:e8:d1:28:18:64:47:c9:e3:55:63:66:22:47:b4:3c:
32:fe:b8:1c:64:65:04:2c:53:bf:2a:57:87:90:9a:f4:9e:5e:
52:15:56:9a:9a:3f:d8:ce:62:6c:7b:16:61:00:95:51:05:2e:
0c:9f:8c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:56 2024 by rpki-client on console-fra.rpki-client.org