Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/znvo6xtlVlsj6Gdz_qvWrEOXNUw.roa
File: znvo6xtlVlsj6Gdz_qvWrEOXNUw.roa (raw, json)
Hash identifier: FgxZ+dmZ5/ZuJldSd0LQHk/M9ceKGrgkWMB4QbzN8bM=
Subject key identifier: CE:7B:E8:EB:1B:65:56:5B:23:E8:67:73:FE:AB:D6:AC:43:97:35:4C
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018C8CA11DE7D6DA820AFF1FFCC59568BA4A
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/znvo6xtlVlsj6Gdz_qvWrEOXNUw.roa
Signing time: Thu 21 Dec 2023 13:46:58 +0000
ROA not before: Thu 21 Dec 2023 13:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51087
IP address blocks: 193.32.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:a1:1d:e7:d6:da:82:0a:ff:1f:fc:c5:95:68:ba:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Dec 21 13:46:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce7be8eb1b65565b23e86773feabd6ac4397354c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7b:15:91:5e:9e:52:82:12:01:97:04:36:89:
d9:cd:c8:df:37:7e:2f:dc:79:f6:2b:0d:ee:2b:ca:
92:0f:34:b2:0d:83:ce:ac:1a:95:bf:3a:3a:ae:38:
73:09:07:02:11:73:af:32:84:9a:c7:85:70:01:77:
3d:dd:cf:04:fb:31:81:83:7f:35:4a:dd:3b:84:0f:
e3:1d:89:45:5e:cb:7b:7f:23:b1:88:fa:d6:9a:23:
82:16:24:3b:93:82:f0:53:a8:92:d7:d0:27:b7:b7:
03:18:10:cf:3d:f0:4f:09:b4:af:f6:3b:83:3d:93:
d5:47:7a:8b:a3:35:c2:b5:44:0e:bb:ee:fc:22:ce:
8f:1d:0e:68:b6:28:81:83:3f:5d:31:70:d3:8e:40:
7f:1c:05:c7:cc:4f:6e:30:b8:68:0a:d4:7b:6a:1e:
b4:6f:af:69:8b:7e:cd:5e:5f:66:31:55:d7:56:e3:
37:3c:5b:29:ac:93:f9:61:81:40:d5:79:13:2f:9f:
bc:93:9e:c5:38:0b:9c:a6:62:d9:ca:6e:ea:4b:a9:
0b:9d:fd:11:a4:f5:3e:65:ad:11:ad:6a:87:71:51:
aa:bd:5d:28:8b:88:80:9d:8c:82:7d:fe:a9:93:b2:
d7:77:c3:4c:2b:28:75:85:c2:35:5e:97:18:ee:04:
90:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:7B:E8:EB:1B:65:56:5B:23:E8:67:73:FE:AB:D6:AC:43:97:35:4C
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/znvo6xtlVlsj6Gdz_qvWrEOXNUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.86.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7f:9d:c7:7d:ae:5f:64:f0:aa:98:ba:40:90:ad:07:f0:60:
b6:75:8a:5d:1e:1f:3f:f5:3a:43:46:5d:68:5a:37:4f:7b:4a:
44:05:e3:a9:11:37:97:7e:3c:4a:db:06:d7:c7:2a:b9:56:79:
fa:01:12:4e:2e:16:1a:ed:0c:fa:84:b5:04:15:15:47:17:d4:
ef:3d:db:1a:ce:04:9b:06:bb:4d:c6:1b:0b:d5:ae:ff:bf:c9:
cc:5a:dd:5c:42:69:da:d9:30:b3:f2:b7:43:e2:fb:f2:b2:21:
9c:98:51:e0:87:26:7e:71:f8:5c:b0:4b:dc:34:34:d0:e3:9a:
54:81:5a:05:6c:bb:13:7e:fb:74:ab:23:bb:8f:cc:b9:dd:a5:
b7:fa:62:41:a1:e2:3b:90:f0:d4:76:13:0c:e4:bd:51:d4:9e:
7e:c0:75:64:30:cc:6f:1e:2c:66:85:e2:bb:4a:b5:07:19:62:
4c:5a:a7:30:cc:ac:ec:8d:df:b3:7b:af:37:4f:29:7e:f1:48:
d5:cc:13:cc:29:bc:96:ef:99:3f:4e:8e:72:18:cd:4e:ad:9e:
33:76:e7:02:9e:95:fa:02:c1:3d:d0:01:85:8c:64:9f:b1:e4:
ae:eb:2b:35:27:fc:a3:3c:59:f0:1b:9e:3d:8d:1b:be:7e:58:
8e:6a:58:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:43 2024 by rpki-client on console-ams.rpki-client.org