Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/5H3dpI2A5JmLMPmOIDASECJzYPA.roa
File: 5H3dpI2A5JmLMPmOIDASECJzYPA.roa (raw, json)
Hash identifier: NybpiDnhetABMEN6lIWfzvYf+T85MQzuNsGSmfYAinw=
Subject key identifier: E4:7D:DD:A4:8D:80:E4:99:8B:30:F9:8E:20:30:12:10:22:73:60:F0
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 018572CCD59E87EE1697A7D060FFCCAD68C8
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/5H3dpI2A5JmLMPmOIDASECJzYPA.roa
Signing time: Mon 02 Jan 2023 14:05:04 +0000
ROA not before: Mon 02 Jan 2023 14:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42010
IP address blocks: 193.8.240.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:d5:9e:87:ee:16:97:a7:d0:60:ff:cc:ad:68:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Jan 2 14:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47ddda48d80e4998b30f98e20301210227360f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:60:2f:b6:24:a4:86:cf:1b:16:9d:47:fa:5b:
41:c2:50:5a:49:d3:54:9e:fe:89:c7:7d:47:7f:e0:
8f:c0:ce:02:c6:53:5e:26:fa:e1:1c:a8:ea:2a:93:
16:49:fc:f5:8d:68:e8:8f:5d:c7:41:d5:5f:45:2e:
33:7f:e7:e4:94:4d:a5:19:fa:aa:1f:9f:de:e3:c8:
e3:16:37:a8:dd:17:69:d2:2a:cd:05:fc:3a:b7:0f:
7b:10:b5:b8:58:fe:63:65:7b:6c:b5:55:65:d4:96:
27:6f:28:d9:b2:2e:5b:97:8d:29:00:b5:42:4d:8d:
2b:08:ca:e1:8d:12:de:9c:16:b2:b6:82:41:49:e3:
6c:39:ef:3c:c1:29:00:73:63:00:36:93:f3:68:72:
7b:c8:30:89:17:e6:84:db:1a:53:76:ec:98:b4:62:
90:cd:4e:ec:b5:48:7f:a3:11:35:d6:9a:fc:54:1a:
2e:98:e4:d4:0f:71:18:42:35:d1:7a:12:07:99:f3:
15:f6:cb:79:13:f4:2d:2e:eb:ac:78:ff:da:14:35:
42:6f:73:ea:4e:0a:9c:77:7a:19:9e:d1:12:54:2b:
57:92:b6:6d:30:c1:c0:48:e9:f9:a0:eb:05:dc:51:
19:41:0c:b4:a5:79:8d:f0:c0:25:da:0c:b7:9c:d5:
55:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7D:DD:A4:8D:80:E4:99:8B:30:F9:8E:20:30:12:10:22:73:60:F0
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/5H3dpI2A5JmLMPmOIDASECJzYPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.240.0/22
Signature Algorithm: sha256WithRSAEncryption
51:40:a9:be:6b:e3:7b:13:c6:b0:a9:54:26:6a:82:72:0d:e0:
18:a8:72:55:85:40:3b:9e:60:d4:96:2e:d8:6a:32:08:66:5f:
b4:b0:d5:29:84:0d:98:5e:f2:25:81:95:32:e1:cb:62:09:69:
52:c5:80:a5:4b:51:f1:94:cc:9c:e3:d4:87:af:14:9f:b6:a9:
6e:8f:70:e2:2c:8a:a7:f7:26:a7:a1:78:01:d1:a3:1e:0b:1a:
3b:4d:13:88:54:d1:f0:47:05:8c:60:a5:98:8c:e5:6c:b4:4c:
77:41:65:7d:73:16:78:c1:4f:5f:e8:b1:e8:af:82:44:b5:78:
06:8b:be:e8:e6:d4:2a:ab:50:38:80:52:0d:db:c1:60:26:48:
30:ad:50:d9:5e:06:3f:e8:e6:6d:1d:58:91:8d:c2:70:af:c2:
a8:19:30:88:3a:8e:32:99:d1:4f:31:b5:0c:92:d5:57:aa:eb:
27:b4:92:84:2c:d8:78:18:58:8e:47:15:48:8f:24:20:d1:94:
0a:91:08:fd:71:79:fb:8f:9a:73:fe:3b:ea:03:cd:02:4c:ae:
53:25:21:b0:98:56:d7:c8:30:08:fa:93:d5:86:51:79:31:0a:
ac:0e:d7:08:4c:9d:27:7a:e0:33:5b:8f:b0:92:e3:e6:bb:30:
06:54:fe:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:34 2024 by rpki-client on console-ams.rpki-client.org