Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/89ox_b2ZBbuQjIv3xdS3rtPWzuU.roa
File: 89ox_b2ZBbuQjIv3xdS3rtPWzuU.roa (raw, json)
Hash identifier: UiilJbfrXnlLDKRwoyeQrgIMEWJyXBmkr9Ccs4Ou4KY=
Subject key identifier: F3:DA:31:FD:BD:99:05:BB:90:8C:8B:F7:C5:D4:B7:AE:D3:D6:CE:E5
Certificate issuer: /CN=1da81713853c9b18d410d4ff3099ab668e69b3f5
Certificate serial: 01856D4193FAED07FA3575FA48D6F5A28096
Authority key identifier: 1D:A8:17:13:85:3C:9B:18:D4:10:D4:FF:30:99:AB:66:8E:69:B3:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HagXE4U8mxjUENT_MJmrZo5ps_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/89ox_b2ZBbuQjIv3xdS3rtPWzuU.roa
Signing time: Sun 01 Jan 2023 12:14:52 +0000
ROA not before: Sun 01 Jan 2023 12:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.131.114.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:93:fa:ed:07:fa:35:75:fa:48:d6:f5:a2:80:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da81713853c9b18d410d4ff3099ab668e69b3f5
Validity
Not Before: Jan 1 12:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3da31fdbd9905bb908c8bf7c5d4b7aed3d6cee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:37:79:cd:d3:61:88:db:a2:32:25:84:82:bb:
fb:15:56:35:0d:f0:0b:6f:bd:fb:cd:cf:55:6a:78:
26:89:a5:68:b4:32:36:b1:4c:b9:41:9b:18:dc:57:
aa:05:01:e0:9a:f4:50:d0:cc:33:88:d1:98:66:38:
d0:7a:37:48:cb:79:56:52:85:60:bd:e7:09:c6:57:
be:44:02:ed:97:15:17:77:17:e7:aa:ff:dc:e9:19:
a2:b5:00:69:c4:76:47:2e:0d:4d:2f:4c:24:ca:d9:
7a:88:2e:a3:78:8b:b7:d2:9d:dd:87:a1:90:25:68:
38:53:02:9d:51:a5:d0:6d:c3:72:86:6d:01:e6:7d:
bd:c1:78:91:04:5c:eb:b6:bf:31:4f:7b:00:9c:20:
b6:a5:1e:96:29:79:52:53:14:e7:8e:80:ee:80:3f:
a6:ec:42:86:16:a7:7d:d9:a8:28:df:40:f0:65:65:
71:90:e3:dd:5d:cb:86:27:36:ad:d0:8f:f1:d4:a0:
c7:a6:75:c3:f8:2f:27:3e:9d:2e:d1:6b:fb:3b:5a:
f3:a8:fd:4c:85:e6:31:83:51:b4:44:9e:73:b1:1d:
66:4e:97:9b:6e:c5:79:ce:14:10:63:6c:c1:b5:6f:
9b:84:ee:16:40:b7:16:f4:a9:1e:c3:6c:f8:2f:07:
0b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DA:31:FD:BD:99:05:BB:90:8C:8B:F7:C5:D4:B7:AE:D3:D6:CE:E5
X509v3 Authority Key Identifier:
keyid:1D:A8:17:13:85:3C:9B:18:D4:10:D4:FF:30:99:AB:66:8E:69:B3:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HagXE4U8mxjUENT_MJmrZo5ps_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/89ox_b2ZBbuQjIv3xdS3rtPWzuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d29fe7-8c22-4aaa-b8d6-660f39f64316/1/HagXE4U8mxjUENT_MJmrZo5ps_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.131.114.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:60:67:5a:27:57:a5:a1:48:d7:99:bd:8d:03:48:4e:17:b1:
cd:38:f3:33:a9:23:32:f1:1a:c7:d1:cd:d7:75:b7:8e:43:26:
02:35:45:43:b3:68:db:2f:0e:50:96:45:e6:b5:46:80:e1:13:
eb:38:3f:60:67:03:cd:d6:d7:1d:22:68:61:61:7b:83:78:16:
96:2c:f9:53:bf:33:6d:1e:e9:5d:d1:a1:2b:2e:b1:05:62:1b:
a8:46:19:c1:f4:6e:f1:9a:bc:4f:49:32:bf:eb:85:e2:7c:fb:
96:00:c3:81:d3:aa:2c:ce:b8:90:2c:a1:ea:82:29:f5:75:b5:
7f:d7:56:8a:48:93:bc:1f:da:c1:63:af:1b:bb:f5:d2:42:2e:
2b:c3:35:40:75:4d:55:6d:0d:91:5b:bb:72:ad:7d:49:8e:cb:
73:6d:04:94:ac:ac:f2:df:47:55:c1:dd:8a:e8:bb:a7:05:61:
ca:75:f7:cc:c9:d0:4f:cd:2b:97:87:47:3d:f9:86:22:9d:60:
9a:ad:40:42:1c:1c:65:05:08:e1:cd:a0:0a:19:70:2f:a4:92:
2d:91:5e:79:79:e5:a2:db:70:f4:e7:7b:b2:ca:40:48:08:54:
2d:a3:0a:30:c4:07:18:8b:d3:18:30:bb:32:59:bc:e4:ee:32:
00:ee:52:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:21 2024 by rpki-client on console-fra.rpki-client.org