Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/13bEMWSQydQIo7loTNYcFbqHT94.roa
File: 13bEMWSQydQIo7loTNYcFbqHT94.roa (raw, json)
Hash identifier: rH9LpyUk8pKxwXwP6kvADCGG+Wo0YlQ9QmOvblnwW20=
Subject key identifier: D7:76:C4:31:64:90:C9:D4:08:A3:B9:68:4C:D6:1C:15:BA:87:4F:DE
Certificate issuer: /CN=8c3d7d885b9fcf06c88f0fe2af10e3ae97ff5b6e
Certificate serial: 01882E8B7F36BB5316C2BDDF3C76B2C81EB3
Authority key identifier: 8C:3D:7D:88:5B:9F:CF:06:C8:8F:0F:E2:AF:10:E3:AE:97:FF:5B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jD19iFufzwbIjw_irxDjrpf_W24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/13bEMWSQydQIo7loTNYcFbqHT94.roa
Signing time: Thu 18 May 2023 11:07:53 +0000
ROA not before: Thu 18 May 2023 11:07:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.225.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:8b:7f:36:bb:53:16:c2:bd:df:3c:76:b2:c8:1e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c3d7d885b9fcf06c88f0fe2af10e3ae97ff5b6e
Validity
Not Before: May 18 11:07:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d776c4316490c9d408a3b9684cd61c15ba874fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:43:19:44:08:6d:47:b1:bf:13:b2:39:29:4b:
c3:49:f5:7c:f3:e2:fa:ed:9d:0f:a3:68:18:f2:2a:
fd:5e:94:d8:4c:53:33:0a:d5:a4:e0:7c:24:c1:cd:
21:25:3e:f0:52:1e:0b:5f:f6:c7:91:78:a8:99:3c:
e9:d9:5c:f4:51:c5:03:98:9f:7c:b9:51:3e:48:5d:
08:2e:ea:fb:a9:b0:91:1c:43:2f:62:47:d5:6a:de:
6e:93:df:62:7a:56:5f:93:c6:e6:81:ad:1a:71:8b:
c5:2a:47:44:45:f7:75:71:04:18:85:78:ae:fe:de:
c3:6b:04:c5:9b:eb:8f:15:ee:c9:9e:09:fd:d4:a6:
c5:60:ea:6d:45:9b:80:bf:f0:82:00:b2:5f:05:c5:
f7:b6:f8:47:48:cb:90:4b:bf:e9:65:a7:40:0a:bc:
9f:7a:09:42:b7:5c:21:88:a1:bf:30:1f:83:c6:92:
7d:6f:8d:e5:90:6d:54:93:df:10:05:c8:40:f4:94:
52:37:04:ea:db:22:8a:fa:12:ee:2d:97:68:0b:da:
cb:88:56:63:de:6d:78:4f:23:b7:8a:ce:09:ce:2c:
e4:d5:b7:a9:dd:43:30:06:13:62:94:c2:04:94:33:
67:9e:5d:f3:b6:93:ed:17:5b:07:21:e7:6f:3c:c4:
6d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:76:C4:31:64:90:C9:D4:08:A3:B9:68:4C:D6:1C:15:BA:87:4F:DE
X509v3 Authority Key Identifier:
keyid:8C:3D:7D:88:5B:9F:CF:06:C8:8F:0F:E2:AF:10:E3:AE:97:FF:5B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jD19iFufzwbIjw_irxDjrpf_W24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/13bEMWSQydQIo7loTNYcFbqHT94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a92-9762-4450-83e7-e0cca5e20f4f/1/jD19iFufzwbIjw_irxDjrpf_W24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.225.98.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:c1:11:ad:5f:f5:94:28:51:35:c2:63:b0:d6:f4:70:04:67:
e3:b8:62:4a:c9:20:bc:6f:58:ce:f0:7e:8e:3d:47:d3:8a:be:
4b:cf:48:73:84:7c:83:22:43:b5:fa:56:38:f0:30:e9:41:1d:
36:60:8e:9d:b5:08:15:9a:90:13:ee:15:b8:e0:61:6a:bb:5f:
63:8a:63:f5:88:e5:71:97:67:2f:54:ea:1b:0d:61:6f:fd:d2:
46:c4:c8:9a:cb:b0:3f:69:6b:53:d6:02:af:12:d8:a4:0f:81:
74:02:ef:b5:04:7f:1f:14:43:83:ca:8e:ce:1f:bc:ea:53:95:
a0:71:87:19:84:c5:60:0b:62:f0:63:57:f8:b1:1b:7e:3e:23:
00:ed:31:57:3e:20:a5:11:23:3c:35:2c:e7:27:74:0b:77:ed:
a0:25:e0:d2:9f:3e:c4:30:be:57:f4:52:be:1c:4f:b1:ad:7e:
f3:b2:f8:62:78:f8:75:2d:44:7e:6c:ed:3c:ea:b7:07:4f:b8:
2f:58:5d:8e:82:02:65:a7:d3:4c:3a:f0:71:32:16:93:8d:44:
01:41:d8:25:c0:3e:ec:3e:c5:55:ba:90:0f:97:fb:80:a4:63:
76:42:41:34:51:30:6e:10:af:02:95:88:28:e7:64:04:92:95:
59:70:ee:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-fra.rpki-client.org