Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/b88532-9974-4612-94c4-5e0777b04049/1/9wrjG0wmPWX0TjjISRqMXh8vzgQ.roa
File: 9wrjG0wmPWX0TjjISRqMXh8vzgQ.roa (raw, json)
Hash identifier: eaRb+3csmIgMJAmD8C2nG7iZrfOS4LhWiRx3p2GFWSc=
Subject key identifier: F7:0A:E3:1B:4C:26:3D:65:F4:4E:38:C8:49:1A:8C:5E:1F:2F:CE:04
Certificate issuer: /CN=188ed4884f111939ca6c7f0f34b2792b39b93423
Certificate serial: 01856C0147094318D76B925016D89DC84615
Authority key identifier: 18:8E:D4:88:4F:11:19:39:CA:6C:7F:0F:34:B2:79:2B:39:B9:34:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GI7UiE8RGTnKbH8PNLJ5Kzm5NCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/b88532-9974-4612-94c4-5e0777b04049/1/9wrjG0wmPWX0TjjISRqMXh8vzgQ.roa
Signing time: Sun 01 Jan 2023 06:25:00 +0000
ROA not before: Sun 01 Jan 2023 06:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 192.76.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:47:09:43:18:d7:6b:92:50:16:d8:9d:c8:46:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=188ed4884f111939ca6c7f0f34b2792b39b93423
Validity
Not Before: Jan 1 06:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f70ae31b4c263d65f44e38c8491a8c5e1f2fce04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:34:7e:3c:aa:2d:10:d4:06:11:fc:ad:35:27:
69:9b:0f:e7:4a:eb:6f:e3:b4:5a:58:83:21:5f:0b:
b2:ab:b6:c8:21:00:f2:3d:49:86:5c:e2:a2:d2:34:
6a:86:b7:b5:88:ba:14:cf:b6:9a:ba:3b:50:96:6e:
0c:da:f2:b4:1a:47:dd:eb:03:22:fb:9f:ac:50:55:
24:ed:6d:ac:7f:31:08:25:8a:fb:1f:43:9a:27:db:
00:a3:63:e3:1f:43:a2:77:a5:d2:ef:46:26:24:7b:
14:1f:7e:b9:19:2c:02:29:5c:b7:68:74:f9:ee:99:
bc:00:69:1f:34:f9:70:6d:9a:ca:88:54:a8:41:d7:
60:72:ea:5d:cc:06:f8:16:a1:9c:b5:8b:b7:12:17:
1e:11:2b:a4:77:4f:88:68:3e:c6:68:a1:46:a0:2a:
34:32:bf:29:15:ae:83:67:44:3d:8f:4b:07:0b:66:
1d:9e:3e:54:4a:09:3f:c9:86:03:41:14:0c:98:8f:
65:c1:11:09:1a:49:ea:17:21:f7:10:d9:15:86:95:
e0:5e:b9:e6:f7:2b:93:83:10:6d:d8:1f:49:de:d1:
35:c5:25:fc:9b:60:2f:cd:45:ba:ed:5b:f5:d0:5f:
c5:1c:7f:fd:99:0b:36:96:4a:47:78:70:3d:01:e5:
d8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0A:E3:1B:4C:26:3D:65:F4:4E:38:C8:49:1A:8C:5E:1F:2F:CE:04
X509v3 Authority Key Identifier:
keyid:18:8E:D4:88:4F:11:19:39:CA:6C:7F:0F:34:B2:79:2B:39:B9:34:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GI7UiE8RGTnKbH8PNLJ5Kzm5NCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/b88532-9974-4612-94c4-5e0777b04049/1/9wrjG0wmPWX0TjjISRqMXh8vzgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/b88532-9974-4612-94c4-5e0777b04049/1/GI7UiE8RGTnKbH8PNLJ5Kzm5NCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.76.154.0/24
Signature Algorithm: sha256WithRSAEncryption
59:2b:3d:60:75:ce:fb:6b:40:14:11:83:c4:26:c1:37:9b:4a:
93:43:7c:9d:3c:75:62:6e:a3:59:ff:6f:e3:0d:13:f4:1a:42:
7f:ab:d7:dd:f9:70:c6:b9:ed:f7:d3:b1:57:18:18:c0:81:92:
b3:a8:78:20:2e:6f:43:fb:bf:3e:1d:af:dd:af:31:b3:50:86:
c1:95:d1:da:aa:a5:c2:56:50:77:c5:24:07:0f:19:a1:a6:f8:
dd:cc:ff:22:70:a5:96:73:70:fc:c2:89:c5:1a:45:c5:59:42:
52:64:6c:c1:37:01:6e:5f:62:a4:b6:9a:6d:72:02:44:ed:cd:
92:de:6b:f5:4c:e2:18:ca:2c:f1:ca:7e:4f:7a:45:cd:31:35:
0d:a2:a9:bb:2e:43:81:f0:d4:2a:3c:cd:b0:cf:57:c0:aa:9f:
c1:9d:50:dd:39:8a:3a:33:2e:6e:12:0d:b3:ba:35:33:80:cc:
ef:c3:6c:11:61:71:27:62:b6:b2:75:4b:d9:3b:43:a3:b4:fa:
da:28:af:33:0e:cb:ee:5d:cf:0b:45:a7:80:fd:15:b6:d3:de:
49:e5:ac:ff:4f:b3:41:0a:85:22:c2:e8:25:b3:9b:a1:de:a6:
8e:f5:19:a3:89:01:d0:b6:0a:a1:ce:c8:21:be:8f:2b:fd:5f:
45:50:5b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:47 2024 by rpki-client on console-fra.rpki-client.org