Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/djjR8cFhgU1Lti8i0Bv60vkO_Ws.roa
File: djjR8cFhgU1Lti8i0Bv60vkO_Ws.roa (raw, json)
Hash identifier: Bmjy6L5UoHJCWEKnl+sCZGKlr2uMz9CQLHi7jOhElXg=
Subject key identifier: 76:38:D1:F1:C1:61:81:4D:4B:B6:2F:22:D0:1B:FA:D2:F9:0E:FD:6B
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCAEF5692EAAA424F460A762A0AEF47
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/djjR8cFhgU1Lti8i0Bv60vkO_Ws.roa
Signing time: Sun 01 Jan 2023 10:05:16 +0000
ROA not before: Sun 01 Jan 2023 10:05:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48904
IP address blocks: 193.180.96.0/23 maxlen: 23
193.180.98.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:ef:56:92:ea:aa:42:4f:46:0a:76:2a:0a:ef:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7638d1f1c161814d4bb62f22d01bfad2f90efd6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b6:a0:0b:b7:0d:6e:5b:de:7f:05:5c:6f:4c:
40:fb:16:43:1f:33:e4:79:81:d9:97:95:ea:44:96:
2a:92:c1:87:af:a3:90:76:bf:99:f1:9c:61:61:0d:
22:15:9e:e9:33:a3:f2:c1:5f:4c:e7:04:73:5e:da:
b0:2a:5c:b4:92:4d:42:26:9a:c7:c4:c1:07:7c:59:
99:c8:79:79:f2:80:dc:89:48:e4:a2:24:0b:d3:57:
9c:31:27:61:13:c2:e3:b7:5a:ca:c6:10:0c:ca:cb:
fd:57:e1:a3:1c:4c:81:dc:f5:63:fb:8d:ff:42:2e:
d4:a7:3c:d1:3a:09:f0:ea:66:2a:8b:93:f6:ab:dc:
92:20:99:e2:bf:c0:46:b4:fa:5d:14:75:d4:f9:a1:
9b:a0:f0:ff:98:1c:1e:c1:c7:30:9b:fc:31:32:4f:
e5:77:2a:01:e2:2b:7a:f3:c8:bf:59:a4:28:0f:b9:
11:65:81:bc:34:50:fe:16:53:7a:5d:b2:d1:d0:aa:
c4:6f:bf:db:f2:0c:70:7d:fb:bd:cb:19:fc:3f:50:
24:76:48:38:f1:9f:43:fe:dd:e5:b3:70:e2:0c:aa:
26:f0:d0:43:b1:2a:d1:e4:f2:5f:07:1d:aa:57:a4:
36:84:9e:24:09:45:1e:16:cf:6e:9a:ad:0f:01:40:
44:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:38:D1:F1:C1:61:81:4D:4B:B6:2F:22:D0:1B:FA:D2:F9:0E:FD:6B
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/djjR8cFhgU1Lti8i0Bv60vkO_Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.96.0/22
Signature Algorithm: sha256WithRSAEncryption
68:8b:fc:bf:57:b9:19:4c:07:67:a5:47:3c:1f:20:3e:64:06:
a3:31:d1:9d:9e:ee:30:41:6a:8e:15:22:53:02:50:d9:ec:8f:
d3:92:84:5b:05:5b:e3:3e:27:00:63:47:df:3f:2f:48:ce:ae:
9f:73:bd:b5:c1:81:8d:0a:04:54:e8:57:9d:46:64:6e:fa:21:
8f:1c:b4:98:ee:ba:eb:9e:b0:4c:40:a5:a6:5c:d8:bc:bb:fb:
b1:9b:04:14:39:e9:6d:5f:26:d8:5a:50:15:8d:5d:ef:24:d3:
11:84:4b:28:71:8d:f1:d8:99:b0:f7:eb:bd:cd:22:87:d5:5b:
24:a8:dc:99:31:1b:da:f3:8d:7c:d6:1f:f0:14:c2:47:bb:7f:
ad:aa:68:d6:f4:f8:6c:14:dc:70:39:07:da:29:55:42:bc:56:
e8:ae:ea:2d:14:ed:03:03:c0:14:05:0f:c4:b1:19:fa:94:98:
db:78:3e:c7:73:5e:bb:95:b9:6b:1f:4c:c5:bb:1e:dd:2f:5e:
cd:d8:69:a2:eb:bd:95:4c:a0:49:da:8d:1b:6d:4b:31:18:eb:
0a:06:fd:6a:fa:20:78:2a:bb:a3:71:65:8e:37:28:64:4b:3e:
7b:9f:32:b1:05:54:f9:d2:11:c0:84:99:9e:8e:b3:29:a5:20:
3a:45:51:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org