Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/m-DVUt1_EkKGJn_onn5c1hUYZ9M.roa
File: m-DVUt1_EkKGJn_onn5c1hUYZ9M.roa (raw, json)
Hash identifier: hGPkYRoMzCFq3Ulg6/qu0DQ+6aHimI8bp091otLPZOU=
Subject key identifier: 9B:E0:D5:52:DD:7F:12:42:86:26:7F:E8:9E:7E:5C:D6:15:18:67:D3
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 0185719552948F43719FFEA8154927D96452
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/m-DVUt1_EkKGJn_onn5c1hUYZ9M.roa
Signing time: Mon 02 Jan 2023 08:24:49 +0000
ROA not before: Mon 02 Jan 2023 08:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137
IP address blocks: 193.43.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:52:94:8f:43:71:9f:fe:a8:15:49:27:d9:64:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Jan 2 08:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9be0d552dd7f124286267fe89e7e5cd6151867d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6d:fa:98:9e:12:0f:a0:ea:f5:17:aa:5f:75:
b4:f0:46:99:88:5e:de:09:f9:a6:04:1f:ed:41:b8:
9c:1e:d3:10:0b:c8:f0:82:42:77:13:a0:65:c6:27:
a9:b2:ba:82:ba:b4:45:ac:8f:41:28:cc:3c:bc:1d:
ec:b2:c8:0a:a0:8c:fb:ae:9c:0a:42:87:b1:fa:fb:
3e:0f:e2:25:1b:e6:98:26:e2:91:f6:38:6d:92:dd:
23:63:da:96:63:fd:6e:4b:37:eb:a4:88:31:b8:72:
4f:0f:c6:fe:10:2b:d2:33:2e:21:95:0b:f6:1d:86:
ec:c4:06:7b:19:6e:b8:59:2a:60:c6:18:d2:f1:18:
b5:ad:12:6d:85:c0:cb:a4:f4:98:a9:f0:ef:a7:23:
a6:f0:e1:f1:0d:ee:a1:64:60:eb:d6:a6:8f:c3:00:
de:22:e3:68:2e:8e:98:a7:46:fc:08:dd:14:e6:94:
df:a8:58:76:54:61:01:2d:99:9c:df:44:70:0e:16:
0f:43:4e:fa:fb:57:25:da:53:eb:9c:51:2d:f5:97:
2c:5e:06:09:e3:aa:9d:16:95:7c:91:33:98:f3:53:
bf:ce:ae:ea:e3:c8:7b:1c:28:11:c1:9f:ff:40:cd:
c1:c8:5e:18:1c:03:81:4f:89:13:19:83:8c:72:68:
31:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E0:D5:52:DD:7F:12:42:86:26:7F:E8:9E:7E:5C:D6:15:18:67:D3
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/m-DVUt1_EkKGJn_onn5c1hUYZ9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.97.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:76:58:d1:e9:02:83:02:1f:a4:9a:63:a5:7d:9d:93:8b:21:
f4:ae:f3:90:51:b1:8a:98:c7:c4:94:1a:7f:55:ef:1e:ab:68:
d2:b5:f8:10:ed:61:fa:f9:3a:b8:a3:dc:ce:ad:9a:ba:40:0c:
29:45:f9:7c:5d:52:37:e1:4e:ee:dc:e7:80:10:30:f0:e0:a6:
e4:17:34:4c:75:8f:a5:66:06:17:c1:07:8a:e7:cb:7f:6e:ef:
79:cd:ae:4f:0e:f9:83:fc:0d:a5:ff:50:3c:6a:ef:55:8a:0f:
47:c0:24:b6:71:3c:2e:32:2c:80:e1:df:94:87:c5:6b:bd:6a:
47:15:4a:1e:7d:4f:ab:2e:09:44:9f:38:6b:c7:14:68:19:0e:
d2:a6:f5:eb:fe:fa:5a:90:43:8b:59:53:5a:33:e0:19:5f:2e:
71:9a:da:79:7f:ea:da:9a:0e:b7:b7:7d:5f:35:21:d9:22:75:
f7:76:ef:97:31:30:97:33:9e:48:4c:4d:a3:6a:36:ac:06:3e:
83:95:ef:69:1e:42:37:29:5b:bf:49:e7:11:88:64:78:96:95:
e6:7b:e0:d4:28:e9:af:16:34:1a:90:fa:75:ad:cd:de:43:41:
91:a4:5f:47:c6:07:03:44:be:19:50:50:9e:16:cf:e1:23:bc:
b9:23:35:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:33 2024 by rpki-client on console-fra.rpki-client.org