Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/2DDNiGpJdJfShzEOSNeAee7gUpw.roa
File: 2DDNiGpJdJfShzEOSNeAee7gUpw.roa (raw, json)
Hash identifier: cjHiao6dln0/maxqNv/ugK1RC4aVuJUoj2rNZQsXPeI=
Subject key identifier: D8:30:CD:88:6A:49:74:97:D2:87:31:0E:48:D7:80:79:EE:E0:52:9C
Certificate issuer: /CN=d795a7259f9537186493f482d55cef4b64b1c435
Certificate serial: 018570671479816AFB3176CDE2FF6A64694D
Authority key identifier: D7:95:A7:25:9F:95:37:18:64:93:F4:82:D5:5C:EF:4B:64:B1:C4:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15WnJZ-VNxhkk_SC1VzvS2SxxDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/2DDNiGpJdJfShzEOSNeAee7gUpw.roa
Signing time: Mon 02 Jan 2023 02:54:41 +0000
ROA not before: Mon 02 Jan 2023 02:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34330
IP address blocks: 193.43.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:14:79:81:6a:fb:31:76:cd:e2:ff:6a:64:69:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d795a7259f9537186493f482d55cef4b64b1c435
Validity
Not Before: Jan 2 02:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d830cd886a497497d287310e48d78079eee0529c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f8:32:0f:61:58:04:c9:62:c4:ae:ea:58:16:
bc:73:33:02:40:08:8c:87:ad:26:3e:ae:6d:02:3f:
cc:bd:fa:12:61:1e:2d:e8:8a:76:f4:e8:03:17:3d:
44:37:72:4a:c5:00:35:06:f7:0c:b4:23:1d:1e:db:
ba:fe:06:a4:15:04:0c:2f:06:14:3b:02:76:18:d0:
6d:fe:37:58:78:fe:d4:9d:da:4b:12:f7:84:e8:fa:
92:ab:e6:82:f9:77:c5:49:4a:24:68:0e:91:68:ed:
d3:12:cf:0e:e2:01:3f:44:92:73:99:a0:8f:9b:70:
3a:50:ea:a7:71:cb:de:45:0d:7c:99:04:7b:63:e7:
9a:7d:59:ba:e2:fe:7b:a4:af:4d:15:ae:af:80:90:
84:20:ff:85:5b:02:16:04:2a:52:5e:78:d5:7c:ae:
60:c4:ee:4c:b1:05:02:a1:a7:58:6d:e6:97:fd:85:
89:1d:ec:6e:9d:5d:1b:7f:76:51:e2:c5:52:38:93:
e3:96:f5:81:71:e2:9d:0e:53:2a:1a:6e:49:05:fc:
7a:2e:be:24:53:fc:56:bc:00:5b:38:fe:e9:e2:71:
bc:df:42:09:51:a9:d1:b5:5c:da:f8:a2:45:a4:32:
63:08:ee:96:ba:55:36:41:56:2f:5c:26:0c:1d:a0:
f2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:30:CD:88:6A:49:74:97:D2:87:31:0E:48:D7:80:79:EE:E0:52:9C
X509v3 Authority Key Identifier:
keyid:D7:95:A7:25:9F:95:37:18:64:93:F4:82:D5:5C:EF:4B:64:B1:C4:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15WnJZ-VNxhkk_SC1VzvS2SxxDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/2DDNiGpJdJfShzEOSNeAee7gUpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/daf87d-dfa4-4b14-93e2-b05db0bc97c4/1/15WnJZ-VNxhkk_SC1VzvS2SxxDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.77.0/24
Signature Algorithm: sha256WithRSAEncryption
70:db:29:a5:90:e4:7e:e8:38:96:6e:5d:7e:57:7d:e7:d1:c6:
f9:9b:2d:f9:8d:5a:47:9e:a2:12:a5:20:27:6a:31:ff:3e:60:
0c:48:8b:de:f6:c0:2f:f1:f1:ad:75:41:c6:ee:43:69:d1:2b:
82:15:bd:7c:67:58:84:44:e0:db:3a:01:b4:87:c3:99:a5:24:
97:2e:c4:f2:0c:57:cf:c9:14:c6:63:4d:0b:f1:f7:d2:78:f8:
ab:65:26:61:ed:06:09:33:92:94:bd:62:60:f4:bc:e7:71:36:
05:e8:ec:27:bb:e7:9d:bf:57:ed:3d:02:e5:a1:c2:52:26:ad:
28:9a:0e:65:47:1d:cd:55:b7:18:ba:a8:83:60:80:4c:ce:d3:
c7:99:7b:60:91:d3:f5:f6:e2:a0:f9:a7:53:85:ae:0b:39:e4:
d0:fe:b2:e7:c6:6e:d3:fc:74:88:4e:b2:41:61:8b:41:47:2d:
0a:30:b2:37:aa:a5:22:09:26:71:79:bd:b5:23:7f:24:46:e9:
f1:24:4e:32:46:e5:47:5f:73:ba:25:69:dd:13:d1:9f:a4:62:
5f:8d:8e:d1:ac:57:2d:43:64:51:c7:b0:eb:f3:ab:26:d4:fe:
1c:21:78:36:ed:0e:7c:04:85:0f:da:bd:4e:3e:29:cb:d4:91:
50:ab:b0:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:28 2024 by rpki-client on console-fra.rpki-client.org