Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/LGchT5H4ZIJQJw83KCOlLKZFZ0w.roa
File: LGchT5H4ZIJQJw83KCOlLKZFZ0w.roa (raw, json)
Hash identifier: IBwTzp/TbPt4mfmokjbPGmYsa/807QVLirl2+hr6LoI=
Subject key identifier: 2C:67:21:4F:91:F8:64:82:50:27:0F:37:28:23:A5:2C:A6:45:67:4C
Certificate issuer: /CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Certificate serial: 01856BDC847061FE0736E5897FC8ABA98424
Authority key identifier: 00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/LGchT5H4ZIJQJw83KCOlLKZFZ0w.roa
Signing time: Sun 01 Jan 2023 05:44:52 +0000
ROA not before: Sun 01 Jan 2023 05:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.100.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:84:70:61:fe:07:36:e5:89:7f:c8:ab:a9:84:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Validity
Not Before: Jan 1 05:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c67214f91f8648250270f372823a52ca645674c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9a:99:94:d4:16:d9:1b:2c:6c:1b:65:a1:b0:
7a:c9:91:e6:d8:07:16:93:79:07:22:3b:ff:92:67:
2b:cc:4d:ef:9d:e6:99:32:ff:ee:c2:cf:3f:da:1c:
9b:f9:4e:22:6e:9c:19:13:66:ac:22:73:6f:48:d3:
8f:57:a6:00:9e:f0:cb:c5:b1:af:f3:b5:38:f9:4e:
e3:ad:46:53:5c:37:be:3c:6b:fb:96:68:4b:9d:51:
d1:84:42:a0:78:fe:41:e7:5d:c2:d7:81:b1:a2:74:
96:09:2b:8c:ce:dd:e2:45:33:75:aa:f4:ee:e2:df:
8b:e9:6b:8b:19:07:1e:64:bd:6b:d5:d5:33:b2:51:
a4:7c:ed:12:a6:87:ec:7f:9c:af:4c:52:6d:62:ab:
63:94:cb:dc:82:a5:12:1b:fa:11:92:96:e4:80:39:
b4:90:42:23:a9:cc:17:62:d9:ac:46:4e:b7:9d:fc:
d1:d1:5a:f2:92:04:5d:df:92:b7:1b:b9:05:2c:22:
f5:93:30:9a:30:98:0a:02:02:0f:7d:5a:96:46:19:
a6:65:c6:87:45:5e:1c:15:37:0c:b7:19:6b:a7:4b:
19:67:02:25:ab:01:10:c4:22:be:b8:46:6a:0c:be:
2d:2b:b4:93:7c:c0:f9:1b:ae:1d:76:3c:a8:93:14:
ab:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:67:21:4F:91:F8:64:82:50:27:0F:37:28:23:A5:2C:A6:45:67:4C
X509v3 Authority Key Identifier:
keyid:00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/LGchT5H4ZIJQJw83KCOlLKZFZ0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.100.254.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f6:db:37:9e:24:38:28:81:84:20:24:5c:22:6b:3b:6f:89:
62:27:8e:12:e2:b9:45:ac:63:b5:c8:13:e9:95:8b:05:c0:6e:
c0:7d:a2:9b:af:2e:8f:ce:8d:52:68:5c:78:26:9b:45:16:54:
4c:e6:9b:ab:6c:e0:b6:4c:e6:ac:f1:b3:d8:c0:97:d8:21:ac:
cc:d9:ba:41:12:21:ba:1a:a4:97:47:82:d8:a8:6f:b9:2e:d2:
8e:99:21:f1:af:d7:8d:2a:76:1f:5c:8e:2f:23:ae:ee:cb:37:
69:64:c1:a1:9d:d1:0d:3e:a2:78:58:c8:9d:8c:58:ca:4c:76:
75:67:cf:5f:a8:bd:08:9e:83:a8:5c:00:63:e0:23:e6:e7:89:
c4:29:d9:09:49:f3:c1:9a:d1:6f:d7:59:61:ee:71:81:58:ba:
1a:13:32:70:f5:eb:a5:e3:3c:0a:d0:cb:4d:04:12:ce:89:8f:
37:7c:55:af:14:ae:4a:c8:b7:30:00:3c:25:30:97:c5:7f:2d:
57:f3:93:9a:3f:a6:46:f9:01:0a:0c:3a:48:a2:44:29:51:33:
06:96:5b:f4:62:ec:a1:14:15:3c:4c:7f:cd:3e:8f:ab:99:ae:
1f:04:e3:86:3c:e3:99:8b:5e:c5:d7:8b:2a:fd:e3:49:75:ab:
9b:ec:dd:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:49 2024 by rpki-client on console-fra.rpki-client.org