Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/D9h1XJxZDkIiKHbJBVZx5RrwwvA.roa
File: D9h1XJxZDkIiKHbJBVZx5RrwwvA.roa (raw, json)
Hash identifier: F4Y/euQ5V05VBT9Q3Hl7qLXNMIi4tEMLZ77nIJ7tntA=
Subject key identifier: 0F:D8:75:5C:9C:59:0E:42:22:28:76:C9:05:56:71:E5:1A:F0:C2:F0
Certificate issuer: /CN=082b303cb49e73e2d2a404583d5f8377ceb02545
Certificate serial: 018B0A61330C940182D5CFBD7B1D58EB3EEC
Authority key identifier: 08:2B:30:3C:B4:9E:73:E2:D2:A4:04:58:3D:5F:83:77:CE:B0:25:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CCswPLSec-LSpARYPV-Dd86wJUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/D9h1XJxZDkIiKHbJBVZx5RrwwvA.roa
Signing time: Sat 07 Oct 2023 13:43:44 +0000
ROA not before: Sat 07 Oct 2023 13:43:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16242
IP address blocks: 193.247.85.0/24 maxlen: 24
2a12:5a40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0a:61:33:0c:94:01:82:d5:cf:bd:7b:1d:58:eb:3e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=082b303cb49e73e2d2a404583d5f8377ceb02545
Validity
Not Before: Oct 7 13:43:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd8755c9c590e42222876c9055671e51af0c2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:ca:4b:a8:76:39:32:93:5a:65:f3:eb:2e:
a2:c2:08:bb:1d:e1:e1:d4:8e:11:8a:d9:42:e5:c5:
1f:fb:b6:c6:1f:70:7e:5a:6f:ad:1f:90:c5:b8:e4:
b4:7b:d1:d0:35:10:a1:a1:64:2e:b8:cb:8f:d9:55:
ea:1f:2b:5c:e5:36:61:ac:d3:4f:77:f6:a5:fd:c2:
84:8b:a2:ce:e1:f4:27:75:ab:fd:99:c4:b9:6d:ae:
c9:61:00:e5:38:7e:30:1f:3e:02:a6:57:b7:22:9f:
24:ab:1d:09:cf:8e:b9:a8:ff:80:ac:6d:36:4c:52:
08:56:dc:e4:fe:7f:34:6b:68:a7:32:02:58:df:f1:
e0:eb:a4:12:af:df:6b:ac:bc:b8:bc:d3:4d:53:62:
2c:35:7c:60:85:18:41:89:14:a4:0f:19:c4:47:75:
ea:89:c8:94:8f:91:e4:e9:b2:29:b1:d3:fe:a6:d0:
da:9d:d2:bf:fe:d1:24:88:f1:2e:40:75:1a:a7:2a:
25:a8:57:d6:73:10:16:02:10:e7:9c:0e:5a:9e:c0:
b2:aa:6e:4a:de:0e:ea:cb:43:d9:53:df:a6:e5:e5:
73:85:11:9b:58:c0:77:d6:94:60:c6:0c:2c:29:dc:
ba:78:85:f9:82:06:d0:ca:55:c3:37:45:b2:e3:21:
88:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D8:75:5C:9C:59:0E:42:22:28:76:C9:05:56:71:E5:1A:F0:C2:F0
X509v3 Authority Key Identifier:
keyid:08:2B:30:3C:B4:9E:73:E2:D2:A4:04:58:3D:5F:83:77:CE:B0:25:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CCswPLSec-LSpARYPV-Dd86wJUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/D9h1XJxZDkIiKHbJBVZx5RrwwvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/340eb5-7be0-4bc9-bf2d-b473ce7807ca/1/CCswPLSec-LSpARYPV-Dd86wJUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.85.0/24
IPv6:
2a12:5a40::/29
Signature Algorithm: sha256WithRSAEncryption
6f:23:5e:55:2d:ef:09:e3:d4:90:d0:dc:7b:a5:15:10:f4:a6:
3a:2c:33:48:90:5a:5b:61:fc:0e:1d:81:89:2b:73:26:97:a5:
8f:18:ba:12:8d:bc:83:69:d4:5a:97:f8:d0:7c:62:37:c0:a7:
b1:42:94:ed:83:4f:40:93:27:b7:e9:81:65:4c:64:2d:76:85:
4d:47:55:ea:4f:87:26:36:ad:20:48:9e:58:01:29:a2:8f:7b:
28:b5:b6:ad:62:f8:c0:b6:73:e9:ba:44:d7:65:e4:ac:13:b1:
a3:df:1e:ed:8e:1a:b0:17:98:79:d1:d6:50:1a:f3:f6:ba:b4:
cd:c8:0c:95:bd:38:b6:2c:c5:e6:a3:5f:78:c1:7e:ab:e5:25:
ba:d9:9a:13:07:31:a3:7f:9d:05:41:f1:21:19:3e:85:1a:53:
2d:88:88:3c:ae:a9:b2:94:c4:ea:61:37:ea:71:f0:0f:df:b0:
e7:59:e7:7b:58:4f:ec:17:03:40:a0:43:e3:fd:a2:1e:77:d4:
96:e2:fc:a0:17:5d:28:3a:db:77:ef:55:fa:81:05:4e:22:a6:
0d:e1:f1:b8:9e:1e:f7:59:8f:12:55:17:18:8c:b4:88:21:10:
21:2b:cb:d6:93:e0:74:d5:2f:37:00:86:b7:94:87:f2:07:15:
5e:b2:21:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:07 2024 by rpki-client on console-fra.rpki-client.org