Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/HGXzq2GaJ3Tft5qSot99LrfXoqU.roa
File: HGXzq2GaJ3Tft5qSot99LrfXoqU.roa (raw, json)
Hash identifier: cbkRN/gp0IVL/IzgWm2s3XQtGN+44qcYMnsyrlbOe7c=
Subject key identifier: 1C:65:F3:AB:61:9A:27:74:DF:B7:9A:92:A2:DF:7D:2E:B7:D7:A2:A5
Certificate issuer: /CN=9cd0758825dd89cfee5fdecc7dcb651f0a5d1018
Certificate serial: 018A2DFB9E6EB7DD708A01BF4609435D6449
Authority key identifier: 9C:D0:75:88:25:DD:89:CF:EE:5F:DE:CC:7D:CB:65:1F:0A:5D:10:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/HGXzq2GaJ3Tft5qSot99LrfXoqU.roa
Signing time: Fri 25 Aug 2023 18:36:19 +0000
ROA not before: Fri 25 Aug 2023 18:36:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 93.113.96.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:fb:9e:6e:b7:dd:70:8a:01:bf:46:09:43:5d:64:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cd0758825dd89cfee5fdecc7dcb651f0a5d1018
Validity
Not Before: Aug 25 18:36:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c65f3ab619a2774dfb79a92a2df7d2eb7d7a2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:10:6c:25:18:66:f3:57:bc:5b:bb:73:ea:20:
61:98:fa:ae:db:5e:47:24:16:cb:1e:dc:a7:1a:0d:
a6:54:f3:f0:2c:dc:6b:74:f8:b7:40:32:f8:b4:dd:
11:b0:c0:c4:0d:86:7b:24:88:53:42:8a:1a:29:0e:
69:33:79:92:f2:84:8d:b6:d6:5d:c6:39:10:83:48:
60:37:fe:fd:7c:d5:98:b1:a9:f5:89:8d:7c:cb:59:
d2:fc:1d:44:d1:19:a7:cf:2e:30:d9:18:59:93:83:
b4:52:55:5e:b5:6e:ef:33:b3:d5:18:cd:a4:b3:28:
16:a0:12:dc:ac:ca:97:97:83:6c:45:ce:08:c8:37:
13:b0:78:c4:18:f8:75:02:02:e2:e3:03:99:9c:78:
6c:63:8e:8b:60:83:45:14:8c:a0:ec:e3:55:42:be:
93:c0:0f:a4:0a:d2:fd:9f:68:49:e8:9e:10:da:6f:
a4:80:ac:9d:b2:e2:c1:85:b2:06:1e:80:83:5c:b1:
5d:5f:da:89:d8:aa:7c:66:9c:c1:80:49:85:14:7c:
ac:cc:71:67:56:9a:0e:b9:32:81:83:bf:2c:51:77:
2f:2e:5c:6b:10:a2:ac:6c:3a:4c:45:f2:12:b6:11:
b7:8c:6f:2f:4c:6d:aa:df:ea:ce:54:14:00:f3:3a:
9d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:65:F3:AB:61:9A:27:74:DF:B7:9A:92:A2:DF:7D:2E:B7:D7:A2:A5
X509v3 Authority Key Identifier:
keyid:9C:D0:75:88:25:DD:89:CF:EE:5F:DE:CC:7D:CB:65:1F:0A:5D:10:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/HGXzq2GaJ3Tft5qSot99LrfXoqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/nNB1iCXdic_uX97MfctlHwpdEBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.96.0/24
Signature Algorithm: sha256WithRSAEncryption
55:08:dc:3f:da:51:b8:e2:0d:1f:04:11:2c:a3:b8:4b:9a:a7:
da:bc:da:9d:9f:18:fb:c4:ae:48:f3:5f:ff:c4:fe:a9:f9:78:
f1:1c:17:04:a4:d2:2a:3d:62:31:af:41:68:68:ce:ef:cc:a4:
dc:1c:9b:3f:b3:05:ee:2c:2c:2c:b8:5d:b2:bd:6e:db:15:d0:
1d:39:68:2b:d3:98:15:62:16:45:f0:26:34:57:2f:4c:e4:fe:
25:2d:1e:51:f5:43:33:ac:6f:26:c6:78:4c:fe:75:a9:ff:de:
75:8f:ef:ae:03:79:01:60:75:22:6d:22:36:53:76:3b:99:a3:
2b:bf:9e:6a:e8:60:4e:1c:24:cc:b7:08:74:b7:0b:15:5e:7d:
16:ae:cc:f2:5a:c4:6e:71:14:81:62:59:ce:a0:5e:14:a5:b6:
02:29:4c:33:d1:a5:18:c6:7a:6e:77:90:12:63:95:58:7b:0a:
46:bd:b1:d6:3d:49:5c:e3:f4:ca:8c:08:50:2a:b0:11:df:bd:
57:f3:f3:ee:ec:58:cb:b0:1a:d2:02:38:50:f6:d1:c8:07:b2:
37:b1:8a:8d:ab:a2:e0:33:62:a9:66:96:36:29:bb:f6:26:c3:
b2:46:5d:f6:e1:97:66:e6:ae:7a:6d:6d:81:1b:21:5d:3e:2e:
0a:f2:c4:31
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 18 22:09:56 2023 by rpki-client on console-fra.rpki-client.org