Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/3gRrwp_WMJqGDpfAKlosFUzWj98.roa
File: 3gRrwp_WMJqGDpfAKlosFUzWj98.roa (raw, json)
Hash identifier: RaiPuheJleseqFghmMjp0v+V/L08JbBjVRptnrGn3Gw=
Subject key identifier: DE:04:6B:C2:9F:D6:30:9A:86:0E:97:C0:2A:5A:2C:15:4C:D6:8F:DF
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 01856F3006D84B05BC78B902FE65FB14CDEA
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/3gRrwp_WMJqGDpfAKlosFUzWj98.roa
Signing time: Sun 01 Jan 2023 21:14:56 +0000
ROA not before: Sun 01 Jan 2023 21:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205954
IP address blocks: 130.193.69.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:06:d8:4b:05:bc:78:b9:02:fe:65:fb:14:cd:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Jan 1 21:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de046bc29fd6309a860e97c02a5a2c154cd68fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9c:03:6d:cb:5a:31:04:73:fb:69:e5:c4:c0:
fb:9b:2f:96:ed:7a:41:3c:5c:3e:98:53:44:1d:e5:
18:6f:2c:4f:e2:6b:60:3f:19:88:e8:1a:d8:c9:69:
df:11:c9:38:e2:11:31:9a:e6:4e:4c:11:0f:8c:12:
e0:54:72:c0:58:f0:97:71:5b:dd:52:3d:e9:69:3e:
71:bd:bc:55:50:1a:e1:b2:14:e2:6e:7e:2d:7a:fe:
9c:a1:0d:33:4d:44:b1:b8:ac:0b:52:3a:52:8e:ca:
00:a1:91:bc:51:f1:bd:49:a3:80:a8:b7:31:60:14:
96:ce:d1:3d:aa:2c:5c:0a:2a:77:1b:67:56:02:30:
a0:a8:05:5c:8d:08:6d:6a:3c:74:c2:f6:29:b1:a0:
05:0e:7f:0e:95:17:09:4a:f0:54:10:f9:bb:fd:96:
34:20:91:b2:55:9d:59:1d:13:b9:f9:62:a0:bc:dc:
d7:ca:96:51:65:3e:8b:c5:75:e6:d6:b3:53:a6:13:
5d:8f:09:db:a8:a0:33:25:f7:b7:4a:12:7d:da:a0:
2c:ae:9c:e7:2f:08:e9:b0:c3:69:51:6e:2b:d6:e6:
fe:ca:c0:79:dc:fd:17:5e:6d:58:68:b3:47:96:e4:
43:7e:64:8a:bf:14:88:48:e8:2f:0e:ee:08:13:06:
22:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:04:6B:C2:9F:D6:30:9A:86:0E:97:C0:2A:5A:2C:15:4C:D6:8F:DF
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/3gRrwp_WMJqGDpfAKlosFUzWj98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.69.0/24
Signature Algorithm: sha256WithRSAEncryption
86:1b:2e:e5:6d:ed:29:13:c8:15:97:b7:e0:56:e6:ad:a5:73:
1f:a8:47:b5:54:ba:aa:b7:05:2b:50:8b:4a:7e:ce:9a:ad:3f:
32:97:54:b7:b2:54:4b:a3:b5:d8:b4:40:f8:3f:af:7f:a2:6d:
be:b9:08:3e:d2:2e:31:58:0e:2f:1e:57:df:32:d7:71:06:3c:
7b:c9:a5:4a:b3:ae:b7:8e:b8:38:03:ac:64:e4:6f:ef:98:a1:
c0:f9:e6:ae:e3:f1:65:17:9f:68:7b:b0:6e:22:1b:f3:ff:59:
50:d9:cb:18:b4:eb:fe:95:c4:c8:8b:08:e8:f9:75:8b:95:c1:
fc:81:df:38:0c:4b:14:25:83:1e:66:3a:73:af:c7:fe:63:bf:
99:5b:4a:ba:2a:04:e7:14:20:81:15:a0:7c:ab:5b:ad:b3:d1:
fa:88:4b:77:9c:7d:2a:14:e6:45:65:d8:01:b2:d8:f4:84:1e:
7d:3e:06:8d:b7:63:d7:16:08:db:c9:7a:0e:f1:c7:ca:83:61:
db:4b:56:92:39:b1:f6:8a:bb:d3:b2:e9:b5:5c:73:1f:60:b8:
e2:4b:60:ee:be:fe:02:d3:52:f0:5d:4a:7a:7d:4e:f5:05:33:
d0:32:75:78:9d:62:6d:6b:f7:6c:04:33:51:8d:de:c6:88:b5:
11:97:86:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:36 2024 by rpki-client on console-fra.rpki-client.org