Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/9Ok9PcX0ViclHqzhN2qQLtr2n7A.roa
File: 9Ok9PcX0ViclHqzhN2qQLtr2n7A.roa (raw, json)
Hash identifier: mE6AjsGL/lLK4dp2t6on0OR9MUHfG/k54vy7hbOIZa8=
Subject key identifier: F4:E9:3D:3D:C5:F4:56:27:25:1E:AC:E1:37:6A:90:2E:DA:F6:9F:B0
Certificate issuer: /CN=c3a8e8648e0ba36a323ab9df6341d668bda6b4d2
Certificate serial: 0188E8A4D4BFC917F9ECBAD5BF0D503EC2A9
Authority key identifier: C3:A8:E8:64:8E:0B:A3:6A:32:3A:B9:DF:63:41:D6:68:BD:A6:B4:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6joZI4Lo2oyOrnfY0HWaL2mtNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/9Ok9PcX0ViclHqzhN2qQLtr2n7A.roa
Signing time: Fri 23 Jun 2023 14:24:56 +0000
ROA not before: Fri 23 Jun 2023 14:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5511
IP address blocks: 193.43.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e8:a4:d4:bf:c9:17:f9:ec:ba:d5:bf:0d:50:3e:c2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a8e8648e0ba36a323ab9df6341d668bda6b4d2
Validity
Not Before: Jun 23 14:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4e93d3dc5f45627251eace1376a902edaf69fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e8:7d:5b:66:36:ae:05:be:73:63:da:a0:cc:
5b:ef:ac:0b:b9:e7:85:60:d2:f2:e4:cc:e1:05:cd:
93:e4:d7:15:f5:c7:72:e1:be:30:20:a6:22:ae:d5:
84:b3:09:a0:49:9a:68:c4:aa:ec:3d:66:90:53:54:
30:77:9e:4e:bd:f6:ba:6a:aa:48:2c:2e:61:1b:7b:
aa:4a:40:4b:9a:a9:af:c3:7a:9e:41:00:b3:7a:35:
47:c5:bd:f8:ae:2b:96:43:ef:32:e7:85:9a:ab:ac:
75:0b:95:7c:bb:c6:94:70:9f:c6:67:b6:68:b2:f8:
51:97:d8:c7:4a:7d:6c:52:b7:6a:0e:b0:07:e7:e6:
b1:fa:6a:13:61:0d:6e:df:1c:16:b7:44:ab:f3:26:
47:f0:da:19:f9:63:f0:1e:03:6f:3c:40:4f:38:7b:
34:2a:55:94:55:ef:7c:87:4d:91:b2:c4:fe:ca:9a:
6f:65:d5:0f:97:95:43:71:a5:76:2d:e4:8e:9a:26:
61:7f:1b:84:f8:d8:d3:ec:36:11:d6:ba:b5:31:d5:
1e:62:de:a8:c6:0f:e8:09:b8:ab:bb:c6:62:6f:1f:
4f:6c:e6:8c:25:2f:fc:6d:9f:0c:b9:2b:65:c8:9d:
d0:9e:cb:89:1d:6d:c5:7d:d1:8f:e8:53:73:63:3c:
39:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E9:3D:3D:C5:F4:56:27:25:1E:AC:E1:37:6A:90:2E:DA:F6:9F:B0
X509v3 Authority Key Identifier:
keyid:C3:A8:E8:64:8E:0B:A3:6A:32:3A:B9:DF:63:41:D6:68:BD:A6:B4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6joZI4Lo2oyOrnfY0HWaL2mtNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/9Ok9PcX0ViclHqzhN2qQLtr2n7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/w6joZI4Lo2oyOrnfY0HWaL2mtNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.42.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:a4:86:ee:5c:d8:71:33:e4:be:38:92:c4:3d:f3:eb:ca:ba:
51:0f:73:18:6f:a1:de:ae:0d:c9:13:73:12:28:53:4c:60:2a:
6c:9b:f5:49:b1:a2:34:e9:c8:71:f3:50:cc:f1:ad:5c:b8:ed:
6f:9d:ad:b3:39:84:d3:94:1d:fa:ea:5c:4f:9f:5c:93:3d:32:
ad:67:55:4c:00:67:43:26:d1:1b:10:eb:20:10:42:b2:bf:cd:
b1:25:b8:20:2b:3a:25:66:ad:d9:ea:fb:34:d5:57:e1:45:71:
31:30:69:e8:f3:91:59:a7:24:68:90:18:a1:12:ab:b2:1b:3e:
8b:fc:87:19:3d:08:46:a7:e1:0c:62:92:f2:23:c7:35:3e:a6:
a8:da:9f:64:52:11:55:d3:6d:e8:3d:5c:43:a8:ca:bc:d7:73:
22:6d:e5:33:4e:c6:51:c0:dd:0b:a5:58:df:95:66:b1:ff:83:
55:38:45:b9:03:68:f5:52:72:55:2b:79:bf:7b:df:dc:49:1a:
db:3f:d2:8e:3d:e0:bc:8d:4b:99:3d:c1:34:45:a1:46:26:46:
c9:7e:23:18:a7:08:0b:85:07:ce:c1:7d:6b:d3:cb:9b:13:4f:
51:37:e0:f1:1c:c5:62:37:97:fb:18:3d:d6:4e:94:ee:61:c7:
c4:9f:3c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:30 2024 by rpki-client on console-fra.rpki-client.org