Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/10Fc1IgHl1BzD03mtapjlRW2vGI.roa
File: 10Fc1IgHl1BzD03mtapjlRW2vGI.roa (raw, json)
Hash identifier: 4Jd/kQbmP9Ft6uCJvoFfizZEtxJpF+13+f1mLscGdxA=
Subject key identifier: D7:41:5C:D4:88:07:97:50:73:0F:4D:E6:B5:AA:63:95:15:B6:BC:62
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018B141B456A74ADEA9AF26B80AB9D709B33
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/10Fc1IgHl1BzD03mtapjlRW2vGI.roa
Signing time: Mon 09 Oct 2023 11:03:33 +0000
ROA not before: Mon 09 Oct 2023 11:03:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 93.114.193.0/24 maxlen: 24
188.212.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:1b:45:6a:74:ad:ea:9a:f2:6b:80:ab:9d:70:9b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Oct 9 11:03:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7415cd488079750730f4de6b5aa639515b6bc62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:03:ae:1c:72:cd:de:f4:3b:9b:66:db:49:83:
e2:58:aa:a0:da:8c:35:09:bb:6a:13:17:2c:97:6c:
3a:eb:fe:49:72:c8:f5:6c:9b:13:b6:0e:d5:17:af:
78:db:5e:b8:13:35:b8:fe:44:f9:08:83:ae:7a:bb:
3d:ce:da:0b:42:49:4c:50:0d:a6:5a:e2:74:e3:fa:
9b:df:36:c2:2e:e3:1b:08:2d:1c:51:6e:75:5b:0d:
72:39:3c:40:a0:e3:ea:10:82:93:39:b1:3c:1d:6c:
f1:18:8c:52:d2:49:69:60:be:80:fb:2c:2b:ef:e5:
e4:cb:f8:6a:01:2f:94:62:36:c0:36:59:b6:5c:b9:
bd:6a:aa:79:20:67:e6:8f:88:aa:d4:1b:df:4e:3c:
c8:27:18:1f:57:a6:b1:17:4d:34:70:58:64:8e:73:
a5:49:69:c8:d0:c2:5a:ee:be:5a:3f:4a:6d:b4:2e:
0e:0d:d6:39:98:a4:90:8c:52:14:47:2e:71:13:36:
e7:07:ad:69:7c:f7:0b:90:ea:25:af:41:1c:f2:a5:
bc:90:30:46:06:70:13:3c:84:9d:e3:ee:38:b5:39:
5f:b2:e8:5a:03:1b:fc:d8:3a:fb:3e:e1:2b:ea:8c:
1c:16:5d:d1:96:1c:54:33:04:e7:c9:ed:00:b7:86:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:41:5C:D4:88:07:97:50:73:0F:4D:E6:B5:AA:63:95:15:B6:BC:62
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/10Fc1IgHl1BzD03mtapjlRW2vGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.193.0/24
188.212.159.0/24
Signature Algorithm: sha256WithRSAEncryption
36:bf:0e:9f:e5:31:4d:23:01:eb:d8:d5:25:53:8a:53:99:5e:
6e:a3:a6:84:84:61:d0:e5:2d:f8:2d:f4:e6:b9:8c:ed:bb:86:
e8:cf:6a:3f:14:bf:37:38:04:36:0b:f8:b7:88:e9:3a:bb:d3:
03:dc:cb:02:af:d1:48:c5:86:4f:dc:d4:d9:8f:4c:0e:a3:73:
61:a6:ed:61:ed:e3:74:16:f7:60:b8:f2:75:7a:14:3a:b9:9a:
99:87:7b:88:20:65:ab:11:b4:b3:bd:a9:3f:51:37:17:89:f1:
0b:a2:25:80:61:44:91:af:d0:ec:93:9a:b7:92:fb:4d:a7:01:
90:3e:6f:94:96:4c:3b:5d:62:5c:8c:c3:b2:ba:aa:13:2f:20:
82:8c:fa:98:b0:c1:14:d1:e9:d7:7a:ac:bd:a5:9a:bb:90:f4:
e1:10:dd:13:a4:6b:81:31:d7:a4:d4:24:70:fa:8d:40:49:fd:
e1:b7:d2:78:98:8c:de:d6:76:29:c1:7f:86:5b:2b:4c:4b:5e:
21:07:46:86:4a:3d:a1:40:e7:17:75:9a:ff:1e:d0:9c:cf:a5:
df:3b:e3:79:0f:cd:b1:74:fc:6d:02:bd:69:84:f3:79:52:81:
21:d3:77:da:e4:24:c0:77:e7:72:07:4e:47:52:bb:dd:f3:51:
c7:40:84:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 08:50:46 2023 by rpki-client on console-ams.rpki-client.org