Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/Mr0Wo2YFBtP2pgRH5t-e3pLm2Wk.roa
File: Mr0Wo2YFBtP2pgRH5t-e3pLm2Wk.roa (raw, json)
Hash identifier: bj2BvwWDnFmcyqTpukn27wA5fCeFe8+4SGhcTJI8oPY=
Subject key identifier: 32:BD:16:A3:66:05:06:D3:F6:A6:04:47:E6:DF:9E:DE:92:E6:D9:69
Certificate issuer: /CN=02807e0863103f0912e7e0247811d167797d8107
Certificate serial: 0185E97B54778C4D62F02420EE98252FA132
Authority key identifier: 02:80:7E:08:63:10:3F:09:12:E7:E0:24:78:11:D1:67:79:7D:81:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoB-CGMQPwkS5-AkeBHRZ3l9gQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/Mr0Wo2YFBtP2pgRH5t-e3pLm2Wk.roa
Signing time: Wed 25 Jan 2023 15:10:51 +0000
ROA not before: Wed 25 Jan 2023 15:10:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25447
IP address blocks: 193.169.168.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:7b:54:77:8c:4d:62:f0:24:20:ee:98:25:2f:a1:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02807e0863103f0912e7e0247811d167797d8107
Validity
Not Before: Jan 25 15:10:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32bd16a3660506d3f6a60447e6df9ede92e6d969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:38:07:01:16:88:61:09:fd:6c:66:8b:38:43:
e3:69:67:6e:d4:fc:bb:fd:ad:02:63:67:c1:bd:c9:
e5:19:da:5b:4e:fe:09:6c:f8:f1:0d:ff:be:41:f2:
46:ce:33:fd:52:aa:08:9f:9c:8e:c9:90:7f:b5:32:
bf:d6:87:81:21:19:c6:61:e8:dd:06:58:dd:fd:01:
cc:47:31:bd:61:19:c4:91:37:2c:88:d1:f5:8e:6d:
42:4f:60:e6:cb:64:c9:9b:6e:b2:83:ca:a5:4e:8c:
94:8e:bc:6e:e9:83:21:5e:bd:4f:88:4e:29:7b:64:
b8:a9:42:68:6a:c1:b0:34:61:d5:fc:14:e3:94:47:
6b:3f:c3:e3:43:25:73:dc:88:c5:6b:9b:a3:8e:71:
ea:93:10:73:3d:de:f4:ec:82:67:49:a6:36:3b:0c:
33:4e:62:c4:f0:f0:1c:a0:d1:3b:32:0d:fa:10:a1:
7d:98:9e:87:d4:12:07:d6:2f:98:85:e3:88:79:59:
22:7b:5a:ad:cc:93:d9:7c:81:36:67:63:53:cd:2f:
00:ea:8e:c5:cc:ac:08:89:cd:46:80:df:48:33:08:
ea:e6:03:10:7c:96:af:d1:c7:84:72:53:9c:03:84:
1b:68:29:92:9c:49:77:26:d3:7d:d9:77:26:1b:bc:
a6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BD:16:A3:66:05:06:D3:F6:A6:04:47:E6:DF:9E:DE:92:E6:D9:69
X509v3 Authority Key Identifier:
keyid:02:80:7E:08:63:10:3F:09:12:E7:E0:24:78:11:D1:67:79:7D:81:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoB-CGMQPwkS5-AkeBHRZ3l9gQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/Mr0Wo2YFBtP2pgRH5t-e3pLm2Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/bf6049-8d1d-4be8-9f57-8bab78de32c9/1/AoB-CGMQPwkS5-AkeBHRZ3l9gQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.168.0/23
Signature Algorithm: sha256WithRSAEncryption
74:a9:91:4a:92:50:ef:bc:ff:8a:85:1e:81:c2:86:be:80:d5:
00:79:f8:96:e9:74:ce:a9:28:cf:d9:7e:ef:ab:77:94:33:d7:
8a:5e:25:4d:6a:22:86:8f:fc:9b:4b:68:13:4a:82:e7:07:49:
ca:99:dd:92:d2:d7:c3:cf:75:73:59:f9:29:f2:69:79:96:22:
d1:7d:90:4c:c8:1c:68:75:ad:d5:96:1c:22:57:e2:c2:e7:3f:
d7:47:8b:be:3e:ad:cf:aa:fd:ef:12:09:91:3b:e3:43:1e:16:
a9:ab:61:18:5e:87:0c:c1:be:41:74:a9:61:b4:42:d1:be:6f:
36:af:45:f8:df:6a:bf:1e:61:7b:2e:14:a6:25:66:81:61:1d:
a8:26:ff:25:eb:dc:e0:6a:31:32:d0:f4:3f:0e:e7:ed:af:b5:
66:b4:f3:c8:c3:b1:c3:dd:66:7f:e1:8c:f8:9e:5d:78:35:a0:
3d:4e:1e:18:c8:90:b9:a0:cc:18:7e:55:7d:01:6e:58:ba:58:
05:de:06:06:32:76:2d:6a:96:34:6e:85:08:2e:7f:20:05:6b:
bb:a0:d6:0f:cc:9e:ba:29:c9:7c:8d:dd:c4:9d:15:01:30:fd:
f1:de:b0:b7:09:67:f6:c6:cd:c0:7b:2e:86:99:69:70:ca:20:
90:4d:ee:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:02 2024 by rpki-client on console-ams.rpki-client.org