Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/3-ZtbzddcjyP-iaP1fF73-LUubQ.roa
File: 3-ZtbzddcjyP-iaP1fF73-LUubQ.roa (raw, json)
Hash identifier: oDmKSKercaMzlIjmnCF6/xF8kS1XmmKOQ/wxnxIPj14=
Subject key identifier: DF:E6:6D:6F:37:5D:72:3C:8F:FA:26:8F:D5:F1:7B:DF:E2:D4:B9:B4
Certificate issuer: /CN=89e21a2b8a25b971bdb741a0aae325992304194e
Certificate serial: 018A928738EF0BE34B17988D8CFAEA81B086
Authority key identifier: 89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/3-ZtbzddcjyP-iaP1fF73-LUubQ.roa
Signing time: Thu 14 Sep 2023 07:10:50 +0000
ROA not before: Thu 14 Sep 2023 07:10:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397966
IP address blocks: 193.25.215.0/24 maxlen: 24
193.25.214.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:92:87:38:ef:0b:e3:4b:17:98:8d:8c:fa:ea:81:b0:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e21a2b8a25b971bdb741a0aae325992304194e
Validity
Not Before: Sep 14 07:10:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfe66d6f375d723c8ffa268fd5f17bdfe2d4b9b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:99:d0:ab:49:68:ac:d3:eb:f0:56:24:a1:
32:62:37:d9:d2:f2:23:23:38:09:a6:39:fa:e3:01:
b3:67:1b:45:40:9f:3f:6c:e3:a6:63:a1:e0:d2:17:
aa:e7:f1:03:1c:62:71:2e:f3:52:4a:ec:b4:dc:0b:
25:10:c3:26:6f:98:bb:a0:79:f5:a0:91:be:5a:02:
b5:51:d6:0d:2c:4f:25:da:74:a5:8a:a1:ba:61:2c:
3a:79:9e:33:88:80:3f:f0:13:66:bf:39:88:5b:a3:
93:20:4d:d9:aa:3a:c5:17:d1:03:91:ba:66:65:17:
fd:81:bc:41:5d:55:47:5c:a0:5a:ae:b7:4b:bd:0b:
cd:03:a5:46:c6:10:b0:18:54:67:00:83:ed:84:6a:
aa:3a:08:d9:d8:68:ef:b3:b2:8d:00:cd:16:ad:18:
d8:e5:31:cd:2a:d9:8a:5c:d7:51:91:1e:a2:6b:2f:
31:b0:17:b9:e9:ed:f6:68:7a:6d:67:0c:9a:81:45:
c3:9c:21:53:4e:bf:ba:d4:44:28:04:fa:c9:34:e3:
dc:14:ee:83:7c:3b:42:38:79:e6:e3:52:c4:4b:e8:
5e:f6:5f:af:1a:f0:f1:1a:d8:66:fa:9d:a2:78:d2:
bf:85:a0:c9:5f:7f:e9:cc:64:b6:22:35:ef:bd:0b:
a7:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E6:6D:6F:37:5D:72:3C:8F:FA:26:8F:D5:F1:7B:DF:E2:D4:B9:B4
X509v3 Authority Key Identifier:
keyid:89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/3-ZtbzddcjyP-iaP1fF73-LUubQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/ieIaK4oluXG9t0GgquMlmSMEGU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.214.0/23
Signature Algorithm: sha256WithRSAEncryption
38:24:4f:e9:a1:07:a7:06:32:78:3b:2d:1b:63:05:55:6b:bd:
d9:21:2e:33:d2:38:0c:1d:f5:84:b1:c7:ee:2a:9c:ba:52:d5:
8d:67:2f:1e:ba:74:07:b4:9a:50:aa:b3:1f:2c:0b:d0:6b:7a:
71:6c:35:dc:b0:07:25:56:62:a6:5c:2c:cc:83:b0:b6:52:49:
84:41:00:24:ad:e9:95:b7:25:0e:af:7a:70:75:51:37:86:04:
e4:d6:7f:3d:8a:56:f7:f8:ee:4c:d7:f4:45:7e:7d:df:1d:58:
5b:c3:a2:13:67:73:f7:22:26:97:38:82:ec:ae:f2:11:16:8f:
57:d7:2b:41:36:1d:23:88:4a:87:02:2a:fe:19:05:e2:f6:60:
1a:7d:9b:f0:ad:52:f0:c5:9e:f5:27:fe:e0:2a:de:8d:fe:1b:
38:81:7b:07:10:cd:93:a1:d1:f1:6f:94:a0:7a:58:82:94:07:
30:2e:28:22:d2:31:22:72:b2:07:8c:6e:b1:34:29:f7:7e:98:
66:e5:42:92:b7:9f:b5:57:3e:0b:01:6d:5b:3b:58:d1:88:c3:
50:62:be:6e:38:df:5f:e3:8a:3f:96:95:ea:00:0b:be:8a:a1:
57:c7:bc:27:dd:a3:d2:56:96:64:47:32:d9:15:f8:ce:8c:f4:
a5:c2:46:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:49 2024 by rpki-client on console-fra.rpki-client.org