Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/D5Q1B7x2TfT06BNZVAROhqFDTls.roa
File: D5Q1B7x2TfT06BNZVAROhqFDTls.roa (raw, json)
Hash identifier: 10Y0kXsIhSOOjxmPAWWzxeLqwUm4wEToBvy/fTb42gM=
Subject key identifier: 0F:94:35:07:BC:76:4D:F4:F4:E8:13:59:54:04:4E:86:A1:43:4E:5B
Certificate issuer: /CN=e1977859d071f7150837b2acb4353ff33efd831c
Certificate serial: 01856B77C2746D57C33D3EF6182C0DD1A26E
Authority key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/D5Q1B7x2TfT06BNZVAROhqFDTls.roa
Signing time: Sun 01 Jan 2023 03:54:48 +0000
ROA not before: Sun 01 Jan 2023 03:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.221.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:c2:74:6d:57:c3:3d:3e:f6:18:2c:0d:d1:a2:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1977859d071f7150837b2acb4353ff33efd831c
Validity
Not Before: Jan 1 03:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f943507bc764df4f4e8135954044e86a1434e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:43:e4:64:2d:13:f4:50:10:d3:ec:72:08:5b:
40:4d:c2:71:0c:ec:df:d0:54:78:af:f5:ff:26:47:
37:b4:52:df:18:3a:bd:31:b9:ec:2a:43:da:19:50:
47:7e:a0:bd:09:6c:ca:bb:22:7d:33:ac:ed:52:19:
d5:de:42:dc:90:57:9d:01:8b:39:5f:dd:59:e5:15:
26:95:73:7d:0d:2a:fa:dc:77:5b:1d:ab:87:fa:44:
de:ca:82:3d:48:f4:a0:b5:a3:e8:be:e6:c2:75:ea:
26:b6:dc:e1:d1:d9:17:a0:f2:29:41:b1:4e:bb:45:
69:fc:5c:69:3f:30:91:14:8e:50:06:09:d2:49:6a:
ed:08:60:9e:13:88:bb:88:d9:54:f6:0f:14:3d:8b:
c0:36:18:74:85:52:43:2f:47:07:b7:64:b3:71:0e:
d2:3e:a0:02:cb:6b:20:6e:6e:36:e8:13:8a:83:61:
52:3c:30:a7:e1:e1:d5:20:3b:f6:47:34:e9:5f:ec:
6b:28:01:0b:5a:db:7b:97:07:93:01:fa:3c:f4:f6:
76:7f:78:72:13:19:c2:fc:72:be:bb:88:2a:d0:c7:
e6:82:98:0e:e0:6c:74:2d:c2:12:c8:1d:b5:77:4c:
c9:31:bd:51:51:ce:69:dd:bb:f7:e4:a3:97:2e:0d:
65:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:94:35:07:BC:76:4D:F4:F4:E8:13:59:54:04:4E:86:A1:43:4E:5B
X509v3 Authority Key Identifier:
keyid:E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/D5Q1B7x2TfT06BNZVAROhqFDTls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.125.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f1:e2:94:76:a1:a1:c8:7f:8c:30:fd:56:2b:fc:c4:49:2a:
bc:73:c0:50:f3:62:9d:78:a7:6f:6d:f5:ab:aa:ec:eb:16:3d:
94:1c:5d:94:02:69:2f:1d:d7:a3:a9:98:8b:87:57:82:02:8b:
00:b7:2e:65:07:52:6d:27:0a:db:94:0b:cf:9d:9b:9c:b4:54:
6b:5a:ed:3b:53:fa:58:28:8a:73:85:3e:86:ca:62:1e:f8:f7:
23:ec:30:35:9e:d5:d9:00:b4:84:5b:68:04:7e:c6:7a:55:da:
6c:53:3e:a7:5d:80:88:b3:57:be:6a:42:36:82:7e:59:0a:ef:
15:db:e8:78:42:03:55:a9:c8:81:78:30:4c:53:76:b1:03:f8:
e8:63:14:99:e3:bd:64:9e:9d:58:2b:9b:37:6d:ac:6f:3f:59:
78:23:ee:56:ad:62:1e:eb:f0:4f:cd:0a:07:d5:56:27:8c:0d:
39:61:78:d7:11:ef:5f:77:8c:6e:e0:c9:bf:56:19:94:55:90:
65:8d:a3:e1:cb:60:cf:de:c6:f7:14:86:aa:d3:d2:a7:7e:7a:
bc:ca:48:fd:e1:82:65:cc:e9:1d:5c:7b:c9:53:9a:61:4e:93:
01:60:3a:21:e4:2b:e4:ce:ca:35:30:41:d8:e4:95:13:68:32:
61:63:0d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:18 2024 by rpki-client on console-fra.rpki-client.org