Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/ca2a80-1d90-4823-b3f1-4e284cff0799/1/9qyGJfeJ4fhHRBTFFi8nawibZbY.roa
File: 9qyGJfeJ4fhHRBTFFi8nawibZbY.roa (raw, json)
Hash identifier: jVcl0j8A/Qw6OsRynXzKlsw+NKeH4p2PoNHBV/0wtDE=
Subject key identifier: F6:AC:86:25:F7:89:E1:F8:47:44:14:C5:16:2F:27:6B:08:9B:65:B6
Certificate issuer: /CN=e675da09cd3aeb4c937c63f535f33fd57d0c2191
Certificate serial: 0185711523D3A130AFA80768E42F9D7B3398
Authority key identifier: E6:75:DA:09:CD:3A:EB:4C:93:7C:63:F5:35:F3:3F:D5:7D:0C:21:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nXaCc0660yTfGP1NfM_1X0MIZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/ca2a80-1d90-4823-b3f1-4e284cff0799/1/9qyGJfeJ4fhHRBTFFi8nawibZbY.roa
Signing time: Mon 02 Jan 2023 06:04:48 +0000
ROA not before: Mon 02 Jan 2023 06:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42876
IP address blocks: 193.47.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:23:d3:a1:30:af:a8:07:68:e4:2f:9d:7b:33:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e675da09cd3aeb4c937c63f535f33fd57d0c2191
Validity
Not Before: Jan 2 06:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6ac8625f789e1f8474414c5162f276b089b65b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fe:45:11:87:67:c0:21:8d:9d:52:b2:07:eb:
d7:23:53:6c:d2:2a:d7:e5:54:e7:75:57:e3:91:b0:
f0:81:b1:bf:9c:0d:01:45:49:3e:41:b9:b5:8a:83:
80:4d:5a:32:9a:d7:38:cd:6e:1b:41:2b:1f:ba:87:
6e:25:a3:e1:9d:e8:61:78:eb:a2:41:71:01:8a:56:
41:b9:14:9e:e4:3c:a2:f2:e7:a6:b5:1c:dd:e2:77:
90:71:54:1a:be:94:17:37:d7:65:a6:54:6f:f8:cd:
95:63:2b:5b:34:d4:8e:99:a9:72:2c:46:22:3c:98:
aa:d2:2c:1d:70:79:4b:46:00:66:2a:68:b5:51:02:
20:da:e3:0d:db:0e:93:7d:34:6a:cc:bf:0b:71:53:
b2:c6:c6:09:f9:da:d1:e6:b5:1b:f8:0e:3f:20:1f:
4a:de:4a:9f:96:30:90:40:23:ad:b7:61:c2:45:af:
bd:b2:46:b8:06:93:b0:8c:58:e7:98:d0:40:0f:b2:
1e:51:08:84:45:04:fb:c0:c6:e2:c8:a9:b4:d1:21:
ad:6c:40:b6:28:1d:59:a4:3c:c9:66:81:02:49:7d:
c0:35:cc:f4:d9:6d:c7:60:d4:75:93:c7:07:be:50:
8b:8a:53:af:86:91:00:dc:82:66:80:87:b6:8d:99:
76:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AC:86:25:F7:89:E1:F8:47:44:14:C5:16:2F:27:6B:08:9B:65:B6
X509v3 Authority Key Identifier:
keyid:E6:75:DA:09:CD:3A:EB:4C:93:7C:63:F5:35:F3:3F:D5:7D:0C:21:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nXaCc0660yTfGP1NfM_1X0MIZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/ca2a80-1d90-4823-b3f1-4e284cff0799/1/9qyGJfeJ4fhHRBTFFi8nawibZbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/ca2a80-1d90-4823-b3f1-4e284cff0799/1/5nXaCc0660yTfGP1NfM_1X0MIZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.186.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:df:c6:ee:fc:ae:64:7e:ad:6d:e3:00:62:7c:a7:e1:5c:38:
35:44:66:30:c2:41:ca:a1:37:17:38:e9:d3:88:01:c0:eb:25:
fa:c7:35:2a:ee:9e:71:f9:b8:75:5d:98:57:e7:ec:2b:90:10:
b0:96:7d:5e:64:c9:48:ba:9e:3e:81:c0:a1:b9:39:b8:4c:b6:
42:ba:bf:33:4c:88:9a:7f:2c:c0:11:56:ba:de:67:fd:74:a9:
3a:c4:b5:db:45:09:93:0b:a4:19:54:5d:92:43:f2:9f:c8:1e:
57:0d:ae:b3:3e:00:99:d0:9a:68:25:3e:cc:eb:21:de:cb:ad:
23:69:31:98:39:ac:bf:a4:97:c1:ab:ed:d5:0f:95:09:83:c3:
80:7a:74:96:84:c8:8c:68:3e:a9:41:af:41:03:79:2e:62:12:
b4:87:59:cf:61:6f:92:da:e4:8a:56:82:c4:64:b6:f0:01:1a:
fa:31:0c:56:84:91:d5:5e:67:17:15:4c:1b:61:a5:5b:ec:22:
8f:ec:5e:b5:c0:51:17:0e:4f:3e:b7:2f:88:e5:2b:b7:b6:e5:
68:17:f0:dc:7b:35:b9:aa:59:d4:02:f1:d8:d2:c5:4c:fa:4f:
af:37:01:be:d5:96:01:30:4c:82:a2:9a:21:48:d7:97:ee:bb:
32:36:48:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:15 2024 by rpki-client on console-fra.rpki-client.org