Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/8613ad-4f5f-45fd-8799-a09a875f5903/1/7oju25eghBCijX90AwRbq4kZyzU.roa
File: 7oju25eghBCijX90AwRbq4kZyzU.roa (raw, json)
Hash identifier: rlloTUtoF1pO/KNLE2pnhBZxKm+LZvT8M8DsHzDsu10=
Subject key identifier: EE:88:EE:DB:97:A0:84:10:A2:8D:7F:74:03:04:5B:AB:89:19:CB:35
Certificate issuer: /CN=d2c1d5fd4e20ade5f11b66afb10a54c8ffe4b040
Certificate serial: 0185704282E273A386F9448CA08CFDEBBE8F
Authority key identifier: D2:C1:D5:FD:4E:20:AD:E5:F1:1B:66:AF:B1:0A:54:C8:FF:E4:B0:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0sHV_U4greXxG2avsQpUyP_ksEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/8613ad-4f5f-45fd-8799-a09a875f5903/1/7oju25eghBCijX90AwRbq4kZyzU.roa
Signing time: Mon 02 Jan 2023 02:14:45 +0000
ROA not before: Mon 02 Jan 2023 02:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 192.118.70.0/24 maxlen: 24
192.118.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:82:e2:73:a3:86:f9:44:8c:a0:8c:fd:eb:be:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2c1d5fd4e20ade5f11b66afb10a54c8ffe4b040
Validity
Not Before: Jan 2 02:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee88eedb97a08410a28d7f7403045bab8919cb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:2c:40:94:d5:08:6d:ac:32:dd:09:76:35:
e3:0d:9f:9a:fe:54:dd:f8:dd:4e:3e:c2:0f:0e:04:
d5:cc:b1:96:64:0f:a9:1b:8c:9b:76:5f:8f:29:a9:
80:be:3d:b3:2b:d1:6c:f5:5f:dd:98:05:e3:37:5b:
8e:07:58:d9:6f:21:7e:07:3e:b6:78:a4:f9:f2:ee:
28:3b:08:bf:32:9b:7e:d4:28:f1:6f:ed:ab:1d:1b:
4e:b9:59:4f:24:5a:ed:fd:aa:87:c1:e4:82:2f:57:
b3:8b:62:59:32:a7:cd:82:8c:cb:7d:1c:61:19:05:
3e:75:6c:8a:84:67:79:38:22:87:cb:93:75:21:86:
4e:a5:c9:ad:8b:c4:23:f8:20:52:11:db:f0:6b:d8:
60:bd:f2:1a:2a:8a:5e:1d:51:64:18:4c:f2:62:70:
c3:e3:63:c2:e8:f2:50:55:93:5d:c6:4e:db:a4:06:
24:07:84:e1:f0:5b:98:64:ec:e1:87:32:2f:9c:94:
b1:04:74:a8:ea:24:a8:a6:c5:20:cb:a0:bb:c5:b9:
96:76:13:af:c9:ef:17:83:63:d1:49:33:61:45:ad:
37:06:be:2a:b9:fe:fe:0a:b8:fb:b3:78:88:ae:15:
a3:7e:40:fd:67:2d:46:a2:77:36:a9:24:6b:45:97:
20:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:88:EE:DB:97:A0:84:10:A2:8D:7F:74:03:04:5B:AB:89:19:CB:35
X509v3 Authority Key Identifier:
keyid:D2:C1:D5:FD:4E:20:AD:E5:F1:1B:66:AF:B1:0A:54:C8:FF:E4:B0:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0sHV_U4greXxG2avsQpUyP_ksEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/8613ad-4f5f-45fd-8799-a09a875f5903/1/7oju25eghBCijX90AwRbq4kZyzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/8613ad-4f5f-45fd-8799-a09a875f5903/1/0sHV_U4greXxG2avsQpUyP_ksEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.118.70.0/23
Signature Algorithm: sha256WithRSAEncryption
19:9e:37:d7:09:33:2d:9e:21:6a:7a:fe:86:2b:b1:24:d4:c1:
fc:1d:2a:7a:3e:6d:3f:af:43:36:72:5d:fe:01:1b:60:2f:44:
88:02:da:87:8d:ea:f9:e6:61:4a:8d:5b:0e:8e:fa:78:e3:27:
00:c5:9a:e9:5b:f4:19:37:93:17:8a:e3:59:36:83:db:99:d5:
ef:3a:04:12:9a:32:cc:e9:f6:fa:8a:20:25:f8:8c:09:4f:a9:
c9:18:84:f6:34:83:bf:b0:0d:6c:f3:74:e7:ae:58:60:7e:75:
a7:1e:b4:dd:1c:e0:d9:35:86:3b:c2:82:54:54:9a:dc:27:51:
fa:11:8a:6f:2a:3f:bd:19:bf:69:3c:bb:ed:4b:7d:4b:cc:78:
e5:d6:86:a7:d2:29:f0:d5:62:65:5b:82:8f:1b:cd:a4:1f:c5:
0f:92:c3:25:f6:d3:fc:ff:c3:f4:22:3d:d0:07:98:e7:cd:cb:
a4:d2:a1:78:6a:3b:13:5b:be:9c:63:a8:58:f2:20:1a:f6:a1:
29:d7:4b:a5:13:d6:39:c0:e8:a6:94:be:d9:e7:0a:d9:ae:f6:
03:37:91:53:9e:2a:69:52:82:4e:d3:bb:4f:1c:69:6e:9e:53:
c2:2a:0c:3f:68:d8:b6:b3:45:67:46:e3:43:25:21:9c:a7:da:
84:c5:a2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:28 2024 by rpki-client on console-fra.rpki-client.org