Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/mIE8MPgLl9rcUFJx5XKOX9qFU4k.roa
File: mIE8MPgLl9rcUFJx5XKOX9qFU4k.roa (raw, json)
Hash identifier: 8rmKrdXwJTl6cd5wK60fhbv/yDZPScbQvVOgIdrnG10=
Subject key identifier: 98:81:3C:30:F8:0B:97:DA:DC:50:52:71:E5:72:8E:5F:DA:85:53:89
Certificate issuer: /CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Certificate serial: 01856E2F9534188EE849DCBC632A60B122D8
Authority key identifier: 43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/mIE8MPgLl9rcUFJx5XKOX9qFU4k.roa
Signing time: Sun 01 Jan 2023 16:34:50 +0000
ROA not before: Sun 01 Jan 2023 16:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212031
IP address blocks: 193.163.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:95:34:18:8e:e8:49:dc:bc:63:2a:60:b1:22:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b88ff1edfb67206603026771aaaec84b8b1eb8
Validity
Not Before: Jan 1 16:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98813c30f80b97dadc505271e5728e5fda855389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5d:6a:ed:fd:20:68:b1:41:cc:3d:8d:57:ea:
f0:2e:80:a7:58:db:b8:9c:f1:fe:dd:1c:e6:9d:e1:
a2:0d:d8:99:93:d2:4a:39:f0:d2:1b:43:9b:92:61:
7d:36:f3:24:62:4b:5f:75:36:9c:19:28:fa:65:92:
28:f9:57:1c:e4:e8:6d:d7:09:82:24:7d:29:ea:35:
80:2a:5d:c3:fc:c4:ea:f4:9f:6d:d4:58:4b:a3:d3:
80:cc:3f:76:e2:4d:dc:8d:d1:7c:b0:95:83:e7:36:
a3:b6:dc:10:72:ff:fc:58:46:52:6a:7d:78:6a:c0:
0a:da:1b:88:9a:32:4c:35:b1:97:60:a4:a5:a6:9c:
a0:c0:c8:1a:1e:71:72:2c:e0:89:59:82:f3:c1:6c:
93:27:1a:3e:7c:68:36:cf:7d:44:88:56:d7:4f:dd:
5e:0a:a8:68:43:fe:28:cc:f4:90:e6:dd:ae:0f:46:
27:c0:be:a4:7f:b0:c8:60:00:d9:93:6b:76:f4:cb:
7b:49:49:1f:1c:0b:55:c5:7b:f5:ff:70:26:6a:62:
e8:52:ee:3a:26:ef:74:aa:b6:b4:7a:b9:8f:ec:9e:
ff:69:67:3d:a8:0a:ff:eb:da:00:ea:84:a3:75:14:
69:1b:b6:12:20:48:55:b6:a2:77:f5:71:fb:ad:4b:
00:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:81:3C:30:F8:0B:97:DA:DC:50:52:71:E5:72:8E:5F:DA:85:53:89
X509v3 Authority Key Identifier:
keyid:43:B8:8F:F1:ED:FB:67:20:66:03:02:67:71:AA:AE:C8:4B:8B:1E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7iP8e37ZyBmAwJncaquyEuLHrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/mIE8MPgLl9rcUFJx5XKOX9qFU4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/e5c783-436e-46e5-b514-c1be5dc01bbe/1/Q7iP8e37ZyBmAwJncaquyEuLHrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.145.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:d2:55:db:ec:55:49:10:86:53:33:6f:38:12:77:87:7e:da:
15:0f:2d:2e:47:22:53:33:d9:37:b8:03:1e:23:23:ca:f9:79:
45:0b:20:09:b4:2b:37:e6:5d:3e:cb:50:09:cb:87:31:20:00:
76:92:b4:63:df:b2:a3:e1:a7:00:93:fb:80:c5:c6:5c:f1:24:
a7:cc:01:56:29:43:61:84:b9:09:d6:51:9a:d1:e0:2d:4b:b2:
da:12:64:9f:70:3e:a4:73:3e:f7:72:66:60:d7:40:96:a0:f3:
8b:5e:44:1a:71:87:cf:ca:85:be:0e:82:fd:99:54:1b:6b:91:
50:b5:ed:74:d5:14:ed:e6:0a:95:a7:72:ce:4b:38:fd:32:34:
85:17:d2:50:e7:88:99:95:e3:cd:76:9a:4f:d4:29:b1:76:a1:
5a:76:15:84:98:b6:f0:2d:c6:7f:de:a1:62:09:90:d8:b7:d0:
dc:a3:1a:a6:a7:ee:fc:94:03:57:1f:77:da:7a:9f:2e:f0:83:
81:d5:cc:df:59:bb:1e:6c:bc:c6:55:9b:b0:77:20:5d:af:7c:
be:09:d4:c9:df:0d:c2:43:db:a9:16:b9:0a:61:24:7f:d9:45:
d9:b7:bb:46:41:cf:0f:cf:20:e4:b8:6a:f8:da:96:06:ac:e1:
1c:7c:ad:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:44 2024 by rpki-client on console-ams.rpki-client.org