Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/371QRwCogbMZS6SOf3fC-bjLbnU.roa
File: 371QRwCogbMZS6SOf3fC-bjLbnU.roa (raw, json)
Hash identifier: 855rXfOsoWmTdTz/xsEiUAKdbdC8aZhsGti+a0v49H4=
Subject key identifier: DF:BD:50:47:00:A8:81:B3:19:4B:A4:8E:7F:77:C2:F9:B8:CB:6E:75
Certificate issuer: /CN=da16c6198d0dc1942fc11ea8fd046b8f8427e829
Certificate serial: 018B679E66C1DCDD035C3D68ECE45028FFA8
Authority key identifier: DA:16:C6:19:8D:0D:C1:94:2F:C1:1E:A8:FD:04:6B:8F:84:27:E8:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hbGGY0NwZQvwR6o_QRrj4Qn6Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/371QRwCogbMZS6SOf3fC-bjLbnU.roa
Signing time: Wed 25 Oct 2023 16:15:16 +0000
ROA not before: Wed 25 Oct 2023 16:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 193.5.44.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:9e:66:c1:dc:dd:03:5c:3d:68:ec:e4:50:28:ff:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da16c6198d0dc1942fc11ea8fd046b8f8427e829
Validity
Not Before: Oct 25 16:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfbd504700a881b3194ba48e7f77c2f9b8cb6e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3f:2f:47:11:28:c1:69:09:d7:43:ee:be:d0:
ec:07:f8:21:d5:55:af:56:24:a7:c4:4b:70:69:e5:
56:20:3e:06:8f:0b:69:16:b7:9d:40:ce:94:ef:b5:
87:b2:2b:8e:b9:43:52:51:4d:7e:0b:46:d6:4c:66:
b1:1a:e2:68:9c:08:77:9c:e1:65:4f:3e:4c:d4:2f:
8d:50:2b:ad:8d:e1:17:6b:20:44:29:d8:b1:c5:f5:
b9:66:ae:fb:61:76:33:6c:c8:c0:95:19:de:67:98:
7f:37:6b:5b:1e:0b:c3:0b:25:10:cd:4e:91:5e:4e:
dc:46:d4:ab:28:90:2b:15:23:28:b0:d4:1a:c3:c3:
a3:5e:0a:df:67:d4:b2:f9:1a:37:1a:41:00:12:76:
ee:a9:3f:6b:5a:93:c2:d7:5e:a1:b1:4d:24:ae:64:
90:87:cb:90:18:98:14:b3:af:e4:e2:7c:03:8d:be:
66:2c:4c:7d:37:1b:97:96:ca:72:3d:fb:54:80:aa:
fb:8b:07:96:cd:9b:6c:fa:b3:2d:6c:a3:88:ab:5b:
31:7c:8c:bd:2f:15:00:aa:13:34:34:66:08:28:5e:
16:00:b7:4b:2e:88:f1:42:bb:dc:6e:c9:c7:45:7a:
b4:f7:db:fc:0f:c5:63:60:0b:91:fc:b6:90:2b:5f:
7a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BD:50:47:00:A8:81:B3:19:4B:A4:8E:7F:77:C2:F9:B8:CB:6E:75
X509v3 Authority Key Identifier:
keyid:DA:16:C6:19:8D:0D:C1:94:2F:C1:1E:A8:FD:04:6B:8F:84:27:E8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hbGGY0NwZQvwR6o_QRrj4Qn6Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/371QRwCogbMZS6SOf3fC-bjLbnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cd4ac8-2235-4539-85b1-78a709d7fefd/1/2hbGGY0NwZQvwR6o_QRrj4Qn6Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.44.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:a4:ce:f1:96:66:d5:dd:fd:3c:59:57:67:57:43:35:f3:f0:
53:5f:35:d9:75:9e:a7:d2:b1:62:ed:a4:26:0f:2f:f8:ac:c5:
2e:59:8c:0c:57:ef:78:69:41:14:3c:3d:d5:57:d6:fa:2a:47:
fa:5d:e5:06:fa:d9:a6:02:11:80:f0:c8:7c:aa:06:cb:c0:5f:
21:7e:cd:7c:09:bc:f3:12:a1:60:23:a9:fe:a2:73:44:9b:3e:
83:04:2b:69:78:23:b7:13:e0:a4:43:b1:ba:7e:08:cd:43:53:
7a:e0:69:73:3f:75:94:12:0a:fa:51:cc:a7:7e:93:fe:8b:76:
60:f0:22:bf:07:09:8a:81:af:f7:b4:67:09:55:34:85:20:eb:
e9:ec:e9:a1:ea:54:fe:da:0c:b8:01:63:b2:d6:7d:bf:3e:cf:
f2:02:94:34:2b:0e:f7:6e:64:99:d5:70:01:a2:65:46:2e:c0:
a9:19:2f:f5:99:bf:d1:50:74:ec:15:bd:ec:ac:da:d2:63:32:
36:d8:07:68:e3:77:e7:e0:3f:22:a7:e0:f4:4e:3e:33:2c:1b:
55:65:dc:b9:da:ce:84:10:cd:93:27:33:ff:1a:2c:90:26:62:
e7:f3:85:5f:3b:59:2c:12:d5:cd:8e:92:9f:13:79:ac:8d:4d:
6f:c3:48:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 7 16:57:08 2023 by rpki-client on console-fra.rpki-client.org