Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/d49c21-dead-4dc4-9478-a10b7cc98bc8/1/2dl2wgBTFEVIa4xZcKMz0EqxxrA.roa
File: 2dl2wgBTFEVIa4xZcKMz0EqxxrA.roa (raw, json)
Hash identifier: EcZt2t9mzOC4zd9w0/ByJCpmleNm1mP0IUSpLYtjv28=
Subject key identifier: D9:D9:76:C2:00:53:14:45:48:6B:8C:59:70:A3:33:D0:4A:B1:C6:B0
Certificate issuer: /CN=f95f5a35738c3229e2f4394500c322c8275a97a2
Certificate serial: 01856D81A9ADF72A53CB5514AF79E82DFF51
Authority key identifier: F9:5F:5A:35:73:8C:32:29:E2:F4:39:45:00:C3:22:C8:27:5A:97:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-V9aNXOMMini9DlFAMMiyCdal6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/d49c21-dead-4dc4-9478-a10b7cc98bc8/1/2dl2wgBTFEVIa4xZcKMz0EqxxrA.roa
Signing time: Sun 01 Jan 2023 13:24:52 +0000
ROA not before: Sun 01 Jan 2023 13:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212462
IP address blocks: 193.3.129.0/24 maxlen: 24
2a10:fc00::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:a9:ad:f7:2a:53:cb:55:14:af:79:e8:2d:ff:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f95f5a35738c3229e2f4394500c322c8275a97a2
Validity
Not Before: Jan 1 13:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9d976c200531445486b8c5970a333d04ab1c6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:db:c6:63:20:e0:fb:37:1f:18:e1:69:72:e2:
91:43:89:74:42:e1:7a:ef:84:bb:a2:29:53:cd:b1:
df:a9:a9:7b:f2:7b:73:0f:18:92:6f:d0:f0:72:a2:
fb:e2:91:d1:63:cb:2e:2f:dd:8c:d6:cb:8c:fc:21:
46:b2:33:54:df:ed:7a:23:03:b0:46:2a:9d:8f:7a:
7c:9a:e7:84:b7:b9:82:64:f1:35:64:2a:2b:2a:2f:
c0:ed:6e:af:1b:a6:1f:47:dc:7d:70:7f:b3:0f:b8:
04:cf:58:d7:0a:ea:85:cc:12:e4:d1:28:52:28:66:
1b:5b:84:f7:fd:ad:fd:2d:e7:b7:d8:9d:b4:0a:14:
6a:43:bb:bb:9f:5d:74:bf:39:66:e5:5b:43:0e:88:
67:9d:8d:d1:fb:2b:e0:40:6e:c2:07:63:db:7b:04:
66:86:1e:ac:59:d6:69:b7:82:4e:19:72:f5:ac:76:
ec:a4:77:82:b2:c7:3d:94:4e:79:1d:dd:13:f3:c4:
55:7a:01:1a:09:2e:66:de:f9:6a:87:84:42:4f:45:
b3:d4:56:dd:7d:6b:0a:07:ec:c2:e1:55:6d:14:a7:
57:8b:24:b0:39:2a:e6:10:e9:6e:74:16:e2:eb:15:
72:48:f0:23:9b:ab:2c:dc:37:1d:d9:1f:96:be:2d:
d5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D9:76:C2:00:53:14:45:48:6B:8C:59:70:A3:33:D0:4A:B1:C6:B0
X509v3 Authority Key Identifier:
keyid:F9:5F:5A:35:73:8C:32:29:E2:F4:39:45:00:C3:22:C8:27:5A:97:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-V9aNXOMMini9DlFAMMiyCdal6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d49c21-dead-4dc4-9478-a10b7cc98bc8/1/2dl2wgBTFEVIa4xZcKMz0EqxxrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/d49c21-dead-4dc4-9478-a10b7cc98bc8/1/1-V9aNXOMMini9DlFAMMiyCdal6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.129.0/24
IPv6:
2a10:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
09:3b:27:af:99:ca:9c:ad:f3:f8:b5:1a:fa:82:f3:9d:2f:7d:
61:11:e5:cb:5b:b6:ae:3c:82:f9:06:e5:78:c3:d1:b1:2a:0c:
79:36:22:24:61:d9:7a:89:a8:21:fd:1a:6f:32:be:88:60:a3:
59:b2:35:27:4d:34:ca:fb:80:ef:aa:01:8f:72:75:14:6d:dc:
c0:35:e4:78:7a:e5:cf:64:29:a6:ad:bf:98:ad:75:68:95:95:
66:12:3d:be:71:3e:39:42:c7:3b:35:3d:8b:4d:ae:28:49:2a:
9f:8e:0e:73:97:71:26:1c:3f:c0:99:ff:ab:e8:cc:b7:ee:e2:
e7:e9:db:d9:30:78:f3:aa:78:c5:1c:4a:b6:f1:65:ed:7c:35:
a4:95:a9:a5:81:c1:b9:34:20:55:1d:11:aa:8f:4e:ef:4c:34:
7b:43:19:a5:ae:47:8a:3c:0d:52:1e:9d:fb:ba:38:98:1d:c6:
d2:f6:60:33:dd:06:21:79:b0:18:c3:fc:90:05:ab:03:9b:6c:
a8:5e:0f:3b:08:1c:f7:b1:3d:24:1a:6b:07:d0:d6:f0:d9:ff:
b7:bd:d0:47:2b:ca:28:2a:d1:c8:1f:8d:c0:a0:46:e2:87:90:
a1:96:8c:40:fb:3e:15:a5:53:02:17:10:a4:67:a0:99:d4:ce:
c0:fb:a1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:44 2024 by rpki-client on console-fra.rpki-client.org