Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/1NbvxzTJ8xZlZ0k0isd_dF94h24.roa
File: 1NbvxzTJ8xZlZ0k0isd_dF94h24.roa (raw, json)
Hash identifier: GV1zMYCAujehPaMsut+uceJ6sy3Yj2nfrbZPDGZL/ek=
Subject key identifier: D4:D6:EF:C7:34:C9:F3:16:65:67:49:34:8A:C7:7F:74:5F:78:87:6E
Certificate issuer: /CN=f8753e2f7230ddb7bc0e64e358af97c318d88b6a
Certificate serial: 01856BE58B0F7FA0E4681B27818639E13611
Authority key identifier: F8:75:3E:2F:72:30:DD:B7:BC:0E:64:E3:58:AF:97:C3:18:D8:8B:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/1NbvxzTJ8xZlZ0k0isd_dF94h24.roa
Signing time: Sun 01 Jan 2023 05:54:43 +0000
ROA not before: Sun 01 Jan 2023 05:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42491
IP address blocks: 193.72.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:8b:0f:7f:a0:e4:68:1b:27:81:86:39:e1:36:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8753e2f7230ddb7bc0e64e358af97c318d88b6a
Validity
Not Before: Jan 1 05:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4d6efc734c9f316656749348ac77f745f78876e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:db:8e:80:97:1d:56:af:cc:d1:86:bb:88:cf:
94:b8:1b:d7:bc:cc:7d:98:a0:39:48:25:51:39:ae:
e2:17:46:eb:11:66:68:16:88:fd:fb:39:5a:3d:04:
20:0e:13:45:81:83:a2:4f:3a:9d:96:74:22:dd:7b:
c6:59:1b:aa:ba:23:02:48:aa:9c:1f:ac:fe:50:d3:
61:43:40:95:0a:cb:0b:a3:c3:c8:c0:e2:b6:6f:23:
f9:83:1d:95:89:ae:ff:61:0e:56:54:9a:1b:a2:44:
2f:f9:81:b5:ed:0f:4a:9a:b6:22:8a:ee:bc:0f:fa:
a0:bf:50:b2:3f:b5:a3:81:11:3e:cc:13:da:7e:b1:
0d:84:0e:d6:0a:2c:05:0d:c1:c5:48:10:fd:f7:1e:
55:1e:73:19:0f:2e:47:c0:30:86:8b:f9:ea:2d:72:
f4:ff:c0:a2:e5:9b:f3:48:1f:0c:40:2d:82:c1:38:
59:5d:97:23:1e:cd:56:14:76:f3:40:27:8a:ec:a8:
52:72:4b:f5:19:a2:33:57:d4:de:79:23:55:57:94:
fd:48:f9:d9:39:69:cb:ef:c2:25:bd:48:b1:33:46:
24:a2:16:99:57:0d:6b:83:3f:0c:4b:60:61:30:c5:
28:00:c3:6d:f2:ba:93:62:3e:f1:79:a3:ae:71:95:
01:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D6:EF:C7:34:C9:F3:16:65:67:49:34:8A:C7:7F:74:5F:78:87:6E
X509v3 Authority Key Identifier:
keyid:F8:75:3E:2F:72:30:DD:B7:BC:0E:64:E3:58:AF:97:C3:18:D8:8B:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/1NbvxzTJ8xZlZ0k0isd_dF94h24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/6f9604-480c-4837-aff2-d5c1aa5ae398/1/1-HU-L3Iw3be8DmTjWK-XwxjYi2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.72.166.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f8:9a:78:bf:a0:74:b1:26:81:ec:b3:60:40:65:ed:ef:4f:
69:46:dd:d1:f7:11:24:1a:ea:5a:dc:5e:5a:fb:2f:23:e2:c5:
b3:ee:6c:29:06:1f:5b:13:b6:35:59:e2:6e:bf:4d:52:40:d4:
49:b4:94:c7:2f:79:a9:74:01:0d:d9:60:d9:a7:2e:04:17:46:
29:71:16:34:ad:94:25:cd:2f:ec:5b:6a:98:d4:8f:12:f7:9c:
99:75:5b:88:82:ec:0b:7d:a4:9a:56:78:49:b1:10:16:40:44:
c3:79:a8:1c:be:10:ff:4d:ce:88:21:0a:37:43:46:73:96:77:
7a:ec:c1:53:43:50:b2:4d:ee:ef:1d:8b:5a:d9:27:aa:69:7f:
01:43:71:e7:29:29:13:f9:eb:52:e6:b2:ad:1e:12:c2:15:cb:
7f:ef:70:a3:c7:09:83:8e:27:22:92:fd:30:dc:b3:e9:84:2f:
17:88:e1:7a:11:6f:0d:a4:be:8d:94:93:95:ec:32:8d:04:c0:
c0:1f:fe:a9:ed:3f:f8:5a:d2:d1:6b:e5:bc:20:2c:b3:c1:1e:
53:a7:a0:0f:00:06:bb:30:02:44:8d:81:1b:4a:3e:14:0d:a0:
7e:f0:de:02:40:a3:8a:a9:61:bd:c5:ec:36:de:fc:8a:94:4f:
b2:b9:4a:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:06 2024 by rpki-client on console-fra.rpki-client.org