Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/fq8ocNV4NjxB3suGVsBnPkSRs78.roa
File: fq8ocNV4NjxB3suGVsBnPkSRs78.roa (raw, json)
Hash identifier: 1LVprjqocVLpyXL/HzH3dAwM+KEIBP/dHbFty03G8ew=
Subject key identifier: 7E:AF:28:70:D5:78:36:3C:41:DE:CB:86:56:C0:67:3E:44:91:B3:BF
Certificate issuer: /CN=0bcf721c71c8ae7caf706d9df3358b12d54b4d90
Certificate serial: 0185712773D12BBC2BA3980F970FDC0529BF
Authority key identifier: 0B:CF:72:1C:71:C8:AE:7C:AF:70:6D:9D:F3:35:8B:12:D5:4B:4D:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C89yHHHIrnyvcG2d8zWLEtVLTZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/fq8ocNV4NjxB3suGVsBnPkSRs78.roa
Signing time: Mon 02 Jan 2023 06:24:49 +0000
ROA not before: Mon 02 Jan 2023 06:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1234
IP address blocks: 193.110.32.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:73:d1:2b:bc:2b:a3:98:0f:97:0f:dc:05:29:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bcf721c71c8ae7caf706d9df3358b12d54b4d90
Validity
Not Before: Jan 2 06:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7eaf2870d578363c41decb8656c0673e4491b3bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a1:77:f7:64:ce:14:66:75:25:e0:9c:33:0a:
6a:1c:60:d0:0d:c1:bb:44:15:62:a7:0a:e1:89:74:
40:97:b7:90:83:b9:18:ef:35:e5:c2:ee:6d:ec:23:
28:2c:4a:f6:21:0f:57:4a:b8:e5:70:ee:f2:f6:37:
5a:1f:7d:ea:35:ed:68:a1:e4:6f:80:d2:99:a1:8f:
6c:6e:c9:18:f1:c2:08:50:68:7e:d0:25:ad:60:d0:
82:c7:f2:79:33:b3:64:9f:b5:e5:d7:ba:2b:50:5f:
f1:40:66:81:ee:a2:8b:2e:46:b8:51:5a:a7:ce:97:
9f:ef:cb:e7:bd:11:84:67:cf:e6:e9:72:b9:6e:10:
58:e5:fc:93:d4:85:80:17:dd:88:1e:bc:59:9f:47:
68:e1:df:28:cf:2b:1d:36:e7:ef:92:ca:74:92:46:
47:c8:74:41:21:9b:14:e3:78:92:21:84:ad:c2:40:
46:0f:9c:02:db:b3:7b:f6:43:c6:02:f5:32:04:fd:
64:81:7c:ed:f3:16:86:ed:a7:1c:8e:40:b2:cb:0f:
54:0f:4f:8e:5f:35:fd:41:68:74:03:f9:a1:16:91:
f5:b2:24:6c:24:90:66:fc:f8:02:29:f5:37:53:ed:
b1:11:7a:91:97:e4:4a:b4:f7:e8:63:7a:f1:a7:3a:
17:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:AF:28:70:D5:78:36:3C:41:DE:CB:86:56:C0:67:3E:44:91:B3:BF
X509v3 Authority Key Identifier:
keyid:0B:CF:72:1C:71:C8:AE:7C:AF:70:6D:9D:F3:35:8B:12:D5:4B:4D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C89yHHHIrnyvcG2d8zWLEtVLTZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/fq8ocNV4NjxB3suGVsBnPkSRs78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0ee11f-41b7-4ac9-9b16-d9eb8d57366c/1/C89yHHHIrnyvcG2d8zWLEtVLTZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.32.0/21
Signature Algorithm: sha256WithRSAEncryption
82:67:ff:ed:76:00:6c:90:69:34:82:d9:ac:86:e2:aa:d1:64:
ec:9d:e8:5b:96:0b:e6:2e:32:ba:8b:ac:92:bd:11:35:26:9f:
90:03:5a:c1:24:a8:19:bd:b4:6b:a9:3a:4c:bf:40:01:1f:fb:
73:a3:20:6f:e0:29:83:47:a6:46:c9:1b:2a:18:25:51:29:00:
4a:c0:7d:db:d5:33:c7:65:69:7d:56:ea:ae:d4:bb:2a:4d:36:
3b:26:5d:c3:cb:45:23:9b:ca:3f:d0:af:ef:f3:1b:be:91:47:
4c:c2:99:4e:1e:f3:86:69:34:03:72:a1:e8:c2:63:fd:7c:4b:
1a:f1:59:38:43:43:a4:8d:52:c5:65:1c:e7:61:89:41:ba:2e:
80:7b:12:30:5b:3b:f8:68:3b:22:31:da:50:b9:0c:a8:d2:3d:
c8:b3:a6:66:0c:14:07:e4:22:1c:f3:d2:52:8d:5e:8a:d3:95:
f5:ab:f7:ce:d0:67:86:d3:41:c4:40:1d:0a:58:13:cf:1f:fd:
39:76:ef:5e:9d:9d:e1:e4:52:17:39:17:75:d1:1c:04:6c:e7:
08:d9:72:74:d1:a1:12:69:89:cf:85:58:03:57:6d:a6:82:a4:
e8:2a:3b:eb:d3:26:91:7e:a3:34:df:d2:4f:2e:3a:11:97:8a:
42:88:a8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:37 2024 by rpki-client on console-fra.rpki-client.org