Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/p7q_zKqOIF-PMXb3tct9rXBb1TQ.roa
File: p7q_zKqOIF-PMXb3tct9rXBb1TQ.roa (raw, json)
Hash identifier: vvgqKlNHcraj6b94d7uRjy8aMZpKQKMT11x9qCmzcR4=
Subject key identifier: A7:BA:BF:CC:AA:8E:20:5F:8F:31:76:F7:B5:CB:7D:AD:70:5B:D5:34
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C17C0050D301163D41A05D42278E2
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/p7q_zKqOIF-PMXb3tct9rXBb1TQ.roa
Signing time: Mon 02 Jan 2023 05:54:55 +0000
ROA not before: Mon 02 Jan 2023 05:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 193.34.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:17:c0:05:0d:30:11:63:d4:1a:05:d4:22:78:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7babfccaa8e205f8f3176f7b5cb7dad705bd534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:64:6d:18:87:e8:f5:aa:e4:de:b8:86:cc:2b:
30:40:d6:92:eb:62:34:83:a8:2c:4b:06:95:8a:e3:
61:ae:20:ed:7d:d4:1a:45:ff:ca:03:fb:c7:b1:c7:
7b:bf:4c:dc:39:20:84:7e:5f:1f:5a:34:65:85:8c:
8e:e7:16:6e:44:bb:f6:48:0b:11:f6:35:3c:e4:fb:
d6:be:bb:72:e8:61:e0:eb:8b:b3:d2:74:4d:14:7a:
d3:71:18:80:92:60:10:70:d9:8a:72:64:1a:4a:d8:
51:3d:c6:84:f2:50:ee:e1:c4:18:68:10:46:6e:8b:
4d:f9:f1:c6:23:4a:4e:57:a8:92:f6:ad:3b:b0:8f:
dc:bd:d8:bc:20:f9:ee:c4:46:81:ad:1a:1c:03:28:
bd:c6:d3:76:b4:e4:41:11:62:2a:3c:0a:74:f2:2c:
72:99:da:7d:0b:4b:d9:9c:39:54:4d:06:7c:42:af:
2a:6d:8f:b7:96:4c:82:21:78:63:2f:3e:53:60:79:
e1:b2:a8:84:2b:aa:6d:ff:4b:1a:a3:09:d0:e4:46:
0f:77:dc:37:71:a9:a2:8a:2a:14:c9:a7:0a:5f:39:
dd:67:5e:1e:da:0a:5e:a1:19:72:ab:e4:f6:b0:be:
9e:7e:6d:b5:ca:17:36:26:6f:d8:5d:16:7d:c6:8f:
0f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BA:BF:CC:AA:8E:20:5F:8F:31:76:F7:B5:CB:7D:AD:70:5B:D5:34
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/p7q_zKqOIF-PMXb3tct9rXBb1TQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.232.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:b3:73:b6:33:6f:11:82:0f:86:05:5d:6c:6a:bd:c8:62:7f:
f5:48:5f:bd:84:69:06:92:15:e7:bc:c4:53:83:a1:6f:2a:5b:
7c:4e:77:c0:cc:54:15:6e:df:b8:61:74:cd:1d:10:10:52:8e:
b5:58:56:79:7e:07:79:21:54:39:c1:f4:81:2d:66:a1:a7:bc:
e0:8e:12:0d:9f:6d:5f:ef:0d:e8:5a:06:cc:ee:75:e2:63:3c:
ab:1f:b1:35:4f:54:c0:a1:fb:3c:ff:5a:6d:47:f3:1c:ac:38:
e8:b5:a7:b4:a6:95:01:7d:e1:7d:d6:55:7c:41:96:73:4f:27:
87:1a:d8:d9:7e:08:59:fb:1e:d6:3e:37:3f:f6:3b:7b:74:48:
ce:d7:4e:46:2e:b2:18:68:ca:7f:42:96:cb:3c:df:42:c6:04:
d3:2c:f1:30:e0:91:2a:b3:a1:32:ea:6c:b1:4c:15:8b:97:05:
8d:1f:49:0a:11:0a:fa:af:01:e0:f9:e0:81:eb:18:11:27:25:
50:ce:8b:85:73:f4:c3:5e:f7:af:1c:b6:55:49:85:a1:15:f2:
e9:42:a9:4a:92:0e:53:e2:40:d7:a2:e1:6d:97:da:de:a9:e3:
28:e4:c9:52:88:5b:2a:73:05:32:0b:05:74:a4:1b:5a:50:0a:
29:c4:53:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:28 2024 by rpki-client on console-fra.rpki-client.org