Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/nJysnkeCvC2RiiNDG6C8-lisEXk.roa
File: nJysnkeCvC2RiiNDG6C8-lisEXk.roa (raw, json)
Hash identifier: 4B4A+RnWS8Imr5ekDxfW8O9qMG6LClMVEZbVCwQSsE4=
Subject key identifier: 9C:9C:AC:9E:47:82:BC:2D:91:8A:23:43:1B:A0:BC:FA:58:AC:11:79
Certificate issuer: /CN=89e21a2b8a25b971bdb741a0aae325992304194e
Certificate serial: 01856C0133360DE64A3C51496124699961F5
Authority key identifier: 89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/nJysnkeCvC2RiiNDG6C8-lisEXk.roa
Signing time: Sun 01 Jan 2023 06:24:55 +0000
ROA not before: Sun 01 Jan 2023 06:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213349
IP address blocks: 193.25.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:33:36:0d:e6:4a:3c:51:49:61:24:69:99:61:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e21a2b8a25b971bdb741a0aae325992304194e
Validity
Not Before: Jan 1 06:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c9cac9e4782bc2d918a23431ba0bcfa58ac1179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4d:bc:69:9f:6e:46:6a:32:fc:64:36:e9:36:
cd:94:e6:bf:54:cb:79:8e:16:fa:b9:26:87:e9:02:
21:4c:24:84:ed:fc:f1:1a:97:1b:31:b8:d8:66:57:
a1:9a:fc:e8:3d:f6:73:35:a4:09:82:6e:2a:8a:8e:
e8:c2:87:21:30:68:85:65:aa:10:bb:9f:ec:6d:ff:
8f:01:bb:20:e4:6e:4d:d0:d4:21:ca:0d:32:51:de:
4d:5f:fa:a5:02:b7:9b:3e:d7:c7:fc:94:56:9d:8e:
b8:f4:0c:18:42:5c:43:46:fe:8e:aa:bd:c8:c2:4a:
3e:22:8b:0d:f9:3c:4f:eb:1f:bf:15:19:d6:67:25:
86:f9:3a:18:6f:e1:4f:f7:b0:9c:fc:7d:3a:a6:52:
c8:2d:37:4f:83:8d:ca:35:8b:ef:e5:4a:67:1a:45:
41:69:04:0f:9c:bf:c1:01:8d:5d:bb:48:2c:22:e0:
e2:2f:fc:86:b3:ed:ed:79:8c:9a:ca:6f:a3:e2:70:
76:01:39:f4:77:61:88:a5:7a:8b:94:b8:d1:a0:5d:
f6:cc:aa:f8:28:cf:90:2c:5d:30:4e:4e:8d:c6:b3:
f9:3e:64:bb:19:10:ea:2a:97:3d:3d:36:32:f2:e6:
d6:24:6a:1e:90:3d:4c:7e:50:b6:90:3d:34:d4:e6:
22:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9C:AC:9E:47:82:BC:2D:91:8A:23:43:1B:A0:BC:FA:58:AC:11:79
X509v3 Authority Key Identifier:
keyid:89:E2:1A:2B:8A:25:B9:71:BD:B7:41:A0:AA:E3:25:99:23:04:19:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieIaK4oluXG9t0GgquMlmSMEGU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/nJysnkeCvC2RiiNDG6C8-lisEXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/406991-5be3-4a05-acb2-1ad47ccd2d9a/1/ieIaK4oluXG9t0GgquMlmSMEGU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.253.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:14:6c:de:c6:f6:a4:2c:e8:8d:58:80:70:6b:3b:a5:33:43:
f7:5e:2e:68:67:51:fe:79:ea:5a:37:a1:64:c9:f7:1f:9e:83:
6b:c9:8d:87:19:72:fc:c3:36:2b:d7:3c:e6:02:44:31:a8:a7:
f3:39:ed:fe:a2:b0:f5:30:95:9b:b2:08:97:1e:c7:4e:46:1a:
71:d3:e7:ab:ef:b8:db:c7:51:6d:48:4f:71:33:41:16:64:26:
aa:01:a4:cb:4c:5b:3a:00:a0:57:96:ab:5f:f8:85:4c:d9:8b:
ff:d4:52:51:40:04:23:f3:45:2b:4c:5d:73:eb:ad:17:91:b7:
d9:df:25:52:d7:7e:a0:ed:99:08:7d:eb:2e:c6:ce:6c:2a:e5:
73:41:e0:9d:b5:74:44:b7:8d:23:08:2f:3f:16:d7:3a:95:0b:
11:14:91:e3:5e:ed:41:8d:4b:77:e2:92:88:18:d3:8d:62:38:
b9:b1:b1:52:6e:99:81:24:41:20:ba:89:d5:31:63:a7:16:a4:
36:41:b2:ba:2c:7f:ce:32:d4:89:f8:bd:4e:36:0a:83:16:44:
bc:73:d4:da:43:62:5d:d9:f4:00:89:d1:b8:51:f0:3e:c7:5e:
bc:f0:19:ce:64:c8:78:f9:a5:97:a1:ad:d5:22:35:e2:4a:85:
fc:57:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:30 2023 by rpki-client on console-fra.rpki-client.org