Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/V4qb2nr2_rAYwk78fCrvIguQ5Ho.roa
File: V4qb2nr2_rAYwk78fCrvIguQ5Ho.roa (raw, json)
Hash identifier: Zstj4dWPqrLUkXM36XZitpUnIgFaZQyxa41KqeCuqAc=
Subject key identifier: 57:8A:9B:DA:7A:F6:FE:B0:18:C2:4E:FC:7C:2A:EF:22:0B:90:E4:7A
Certificate issuer: /CN=32a03fed5dc7a0c34e4d85774ff7005d33e6ef13
Certificate serial: 0185737A82662A487C774E2DE1238EF8DF52
Authority key identifier: 32:A0:3F:ED:5D:C7:A0:C3:4E:4D:85:77:4F:F7:00:5D:33:E6:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MqA_7V3HoMNOTYV3T_cAXTPm7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/V4qb2nr2_rAYwk78fCrvIguQ5Ho.roa
Signing time: Mon 02 Jan 2023 17:14:46 +0000
ROA not before: Mon 02 Jan 2023 17:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31528
IP address blocks: 193.16.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:82:66:2a:48:7c:77:4e:2d:e1:23:8e:f8:df:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32a03fed5dc7a0c34e4d85774ff7005d33e6ef13
Validity
Not Before: Jan 2 17:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=578a9bda7af6feb018c24efc7c2aef220b90e47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bc:a4:da:af:5a:5f:18:94:55:ba:ea:14:c3:
10:c3:2f:1d:1f:58:dc:f1:fc:84:5f:6e:82:99:38:
5b:76:3a:b7:33:0f:5c:51:2e:f4:f6:66:32:c8:f6:
94:19:51:b3:03:dd:57:74:b1:78:15:4d:6c:74:58:
2f:3e:1d:32:61:2b:74:5c:c7:8d:d9:31:32:0d:1a:
dc:e8:b4:6c:71:7e:80:10:0b:f7:42:8f:5a:89:0f:
30:ed:54:85:05:b7:5e:66:fb:99:e3:f3:8c:bd:ce:
a1:45:c8:93:a7:01:f7:c1:8b:27:cb:5f:d7:03:5b:
9c:84:14:52:f0:6e:5f:ed:5e:09:58:b4:4e:e5:e8:
d8:34:33:6c:f1:3b:21:f7:ad:c6:2c:2f:cd:99:62:
05:70:01:d1:48:72:57:9c:d9:52:6c:f9:ff:7d:38:
53:f4:15:c2:95:8a:ef:b9:05:39:98:61:78:c2:1e:
34:54:9c:77:92:82:60:48:65:a7:55:c3:65:f5:30:
da:2c:83:45:2b:61:e1:e4:b6:17:a8:b1:9e:e8:b8:
0e:e0:1c:e4:7b:ed:d0:bb:8d:b9:4d:52:f6:44:16:
55:77:f2:44:2d:99:5e:e3:d4:f8:60:24:91:c6:6e:
10:98:ae:fc:74:40:56:3b:fc:77:94:c7:e5:37:e8:
ea:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:9B:DA:7A:F6:FE:B0:18:C2:4E:FC:7C:2A:EF:22:0B:90:E4:7A
X509v3 Authority Key Identifier:
keyid:32:A0:3F:ED:5D:C7:A0:C3:4E:4D:85:77:4F:F7:00:5D:33:E6:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MqA_7V3HoMNOTYV3T_cAXTPm7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/V4qb2nr2_rAYwk78fCrvIguQ5Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/122129-2226-4e97-b0a7-1aa500b9948a/1/MqA_7V3HoMNOTYV3T_cAXTPm7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.107.0/24
Signature Algorithm: sha256WithRSAEncryption
69:7e:9d:01:1e:dd:8e:90:22:46:35:51:52:e1:eb:19:a7:13:
88:36:f5:8d:52:35:a7:61:40:01:9a:d1:cb:e2:a8:66:61:89:
32:10:61:b2:ac:d1:8b:7e:ad:0e:f9:02:e1:02:eb:54:87:d1:
26:19:70:19:f1:39:c4:69:19:19:7c:65:8c:b4:51:2e:4b:e4:
e2:df:4a:4d:e1:9f:f5:b3:ed:ab:c2:85:14:fe:d9:6b:41:90:
4d:7d:2f:e5:cd:18:0a:4a:7a:1f:24:c3:c8:18:e5:a0:55:6d:
86:a0:66:c4:20:e5:00:90:9b:c6:d2:1b:c0:bd:0f:26:6d:7a:
52:1d:1c:e6:5b:87:a3:a5:b4:1d:27:bd:82:58:13:4e:c2:1c:
fd:f6:36:f7:ab:78:6b:5f:53:df:d6:01:63:34:b8:0f:3a:ea:
3c:df:05:45:90:ca:e9:bb:e9:fd:10:fc:a3:bd:88:54:59:5c:
45:01:da:8c:43:1a:b0:e4:ba:6c:9d:d0:34:e7:3f:4b:c4:d7:
97:44:c4:af:f0:d9:3e:c2:e6:86:ed:bf:ea:00:d9:08:54:af:
00:e6:96:95:76:21:a1:84:b0:57:ae:97:c4:1b:68:86:db:66:
64:c6:27:c6:5d:3a:63:4f:f6:47:09:65:4e:84:f7:90:7b:8f:
aa:48:23:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:38 2024 by rpki-client on console-fra.rpki-client.org