Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/Q_hESxwbQU0SFcUQh1D8aaNiXTA.roa
File: Q_hESxwbQU0SFcUQh1D8aaNiXTA.roa (raw, json)
Hash identifier: Y1O6RHsjKwn+AHD4L9DOhq2MVjRjbCkkhDAFXArXRlY=
Subject key identifier: 43:F8:44:4B:1C:1B:41:4D:12:15:C5:10:87:50:FC:69:A3:62:5D:30
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 01857079878045FAB1FE48E6AC84EF23A56C
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/Q_hESxwbQU0SFcUQh1D8aaNiXTA.roa
Signing time: Mon 02 Jan 2023 03:14:50 +0000
ROA not before: Mon 02 Jan 2023 03:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 193.228.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:87:80:45:fa:b1:fe:48:e6:ac:84:ef:23:a5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Jan 2 03:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43f8444b1c1b414d1215c5108750fc69a3625d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:8b:51:d3:47:2f:8e:5f:bc:3b:bc:f2:6a:
de:be:20:f4:2a:56:b4:54:72:b7:b2:fa:f7:e7:8b:
9b:d8:eb:8c:6c:bf:cd:10:24:61:33:ec:85:45:e1:
29:dc:d1:c2:51:aa:6d:1a:9f:34:9d:4d:f0:0f:fa:
02:74:e8:ef:74:71:92:5d:64:b1:d0:b3:61:3b:c2:
9b:42:2c:82:35:c5:a7:d9:5c:6d:70:d1:ac:64:66:
7a:f4:f2:5e:ef:70:2a:0d:09:4a:83:c3:d8:58:30:
92:02:d1:f8:51:a1:a4:3f:23:9e:0e:99:28:20:1a:
33:49:4d:95:68:0b:00:2c:2c:14:d3:9c:97:83:82:
bc:ba:39:a2:c4:4c:d1:d5:7b:7c:2d:59:11:3c:65:
e8:21:f5:78:f9:71:73:4d:94:60:7e:bb:90:98:46:
2d:f5:06:66:4f:6a:ec:ef:f7:a2:53:bf:fb:82:49:
f3:93:a1:59:21:09:6b:a1:a2:ee:af:8e:53:9a:67:
8b:31:04:c0:41:f7:2b:27:eb:49:e7:c1:48:8f:62:
4e:9c:b9:fb:16:12:ee:38:3f:26:90:c0:b6:22:e0:
4e:c3:5d:19:0d:84:b7:ed:0f:27:80:cf:c7:8f:34:
7f:f3:4d:cf:04:94:17:bf:f4:58:c4:72:c6:34:10:
5f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F8:44:4B:1C:1B:41:4D:12:15:C5:10:87:50:FC:69:A3:62:5D:30
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/Q_hESxwbQU0SFcUQh1D8aaNiXTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.168.0/24
Signature Algorithm: sha256WithRSAEncryption
38:c4:2f:d0:c4:c0:2e:05:bc:df:b8:60:61:d4:3d:8d:cf:4b:
94:c0:cb:19:11:91:46:72:31:15:79:d6:24:73:8d:30:38:67:
a4:e6:b1:9b:d6:be:3a:6d:e8:fe:63:d4:75:3a:15:ec:a6:5e:
9f:8e:38:4c:8a:a3:19:56:8e:fa:e2:6b:4d:ac:89:e5:83:c5:
d7:08:82:24:7d:3e:8c:8c:6a:fb:59:3f:28:09:8e:e8:57:46:
20:4f:5c:d4:11:7f:3b:1c:dc:20:ed:b4:2a:8c:29:46:fd:d0:
88:98:f8:b0:57:ff:fe:c7:74:15:a9:45:17:cf:ee:a4:d2:b7:
17:02:86:eb:29:67:87:d2:a9:9f:02:8d:4c:62:be:21:f4:80:
da:54:87:5b:29:a2:44:fc:83:e5:c9:3e:5b:36:c9:66:f8:77:
9c:da:cc:7a:6e:0d:37:1e:a0:6a:94:5d:15:63:5b:9a:de:d2:
20:99:14:1b:46:a8:97:5a:53:a7:0a:e1:82:81:09:aa:45:cf:
37:21:74:7d:ee:35:3b:46:57:f8:4f:a8:13:f0:87:4d:e2:10:
3b:70:c5:b6:38:f5:90:9e:d7:fc:4e:63:1a:a2:e2:4d:05:4a:
5d:30:e0:cb:39:0b:4c:f2:dd:41:c9:d0:c8:0f:dd:d2:97:57:
e5:7d:17:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-fra.rpki-client.org