Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/wrlv8mvqapeUoPwDxABhLjUPgZE.roa
File: wrlv8mvqapeUoPwDxABhLjUPgZE.roa (raw, json)
Hash identifier: j2oc3D7yCeVVSjbFrMFZ4VQd4EFkUMCXibOBnROp6yQ=
Subject key identifier: C2:B9:6F:F2:6B:EA:6A:97:94:A0:FC:03:C4:00:61:2E:35:0F:81:91
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 018570E7579C2F769B9F48FD766FBB8C253F
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/wrlv8mvqapeUoPwDxABhLjUPgZE.roa
Signing time: Mon 02 Jan 2023 05:14:47 +0000
ROA not before: Mon 02 Jan 2023 05:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39144
IP address blocks: 193.178.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:57:9c:2f:76:9b:9f:48:fd:76:6f:bb:8c:25:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Jan 2 05:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2b96ff26bea6a9794a0fc03c400612e350f8191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fb:a3:f5:ad:23:e0:fb:e4:55:70:54:e4:d0:
ce:2a:7a:07:35:d2:04:ca:df:d3:39:48:2b:c5:aa:
e7:d1:70:17:ba:58:08:4d:eb:4e:a6:6b:6f:2c:87:
cb:e7:c3:a1:35:0b:d8:c8:da:bb:d8:38:2b:89:0b:
eb:dc:b9:7b:fa:ac:bb:98:a9:9e:58:4c:35:14:80:
b0:da:94:a6:ec:7d:3b:ed:a3:32:35:d2:13:a9:d7:
ad:12:20:73:0c:5e:93:b4:be:b6:d9:0e:a7:fc:2f:
34:29:de:5d:19:d8:16:ee:ca:e7:f6:36:1f:f9:fe:
49:f8:94:1c:dd:86:ad:24:ca:73:87:25:2a:87:f8:
bc:75:b6:07:93:82:a5:23:a1:90:3d:b9:9c:5e:b4:
f9:d2:0b:e9:d0:c8:f1:b3:53:5e:e1:9e:39:d9:ef:
6c:f8:39:32:fd:ae:56:a1:43:34:47:15:7f:91:31:
f0:67:da:d6:7d:fc:72:d8:2c:68:0d:5a:99:97:3a:
e1:c9:4e:50:47:8c:b1:1d:30:c9:15:2f:93:6f:a0:
71:18:6c:21:19:7d:87:e2:7a:63:35:16:25:c7:14:
0f:db:a1:4e:25:d0:d7:f4:e3:1c:2a:a3:ce:0f:94:
bc:a1:d2:e7:d8:ec:ec:fe:af:fb:61:31:2f:4f:8b:
03:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B9:6F:F2:6B:EA:6A:97:94:A0:FC:03:C4:00:61:2E:35:0F:81:91
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/wrlv8mvqapeUoPwDxABhLjUPgZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.33.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1c:25:63:f8:b6:5e:31:27:71:91:2f:b6:30:42:32:47:73:
1d:dc:d5:d1:d2:45:98:c0:15:32:c4:87:d0:d7:9e:b2:1e:76:
23:f6:96:f8:fb:3d:18:0c:ea:94:80:02:3f:a1:95:ff:d9:f5:
b6:78:e5:b3:02:e0:e8:7d:ac:3b:b4:e6:35:8f:2f:be:86:ad:
ce:5b:1e:7e:1b:e8:bd:76:55:4d:59:eb:e5:11:e2:b0:50:3b:
de:ed:45:20:ca:a3:21:d3:61:90:cf:6e:20:01:92:d4:4c:e4:
cc:87:e5:d4:0d:f5:bb:21:d5:d6:17:67:b9:4f:cc:03:26:03:
fa:83:24:6b:8b:63:f7:5e:31:72:7e:75:41:c2:09:c6:13:68:
cd:7a:41:0b:51:a1:31:bc:9c:de:01:36:38:5e:2a:de:3e:13:
60:0e:da:06:98:2a:6e:14:7b:00:4e:65:24:fd:9a:96:51:ae:
05:01:0a:32:ac:95:04:89:1a:36:04:9b:4b:38:2f:c7:15:90:
9a:2c:2f:f1:bc:22:8a:6b:5b:b2:cb:d0:a3:19:a4:46:c7:9f:
1f:73:0a:01:72:c4:31:68:36:bd:75:73:4b:9e:77:70:91:f9:
4e:1e:46:eb:7e:ae:76:17:76:20:be:6e:89:32:bf:03:0d:9d:
c8:55:cb:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:29 2024 by rpki-client on console-fra.rpki-client.org