Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/IKiBCyKrrZnkV-bKDLcAQtuosiw.roa
File: IKiBCyKrrZnkV-bKDLcAQtuosiw.roa (raw, json)
Hash identifier: EPJpp2yAM/UJ+/lqf92sut1VTQY4Y50qJPUOn/+DXTE=
Subject key identifier: 20:A8:81:0B:22:AB:AD:99:E4:57:E6:CA:0C:B7:00:42:DB:A8:B2:2C
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 0189DEBEE2DBCFAAA6D9685AA269BCD1B04B
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/IKiBCyKrrZnkV-bKDLcAQtuosiw.roa
Signing time: Thu 10 Aug 2023 09:19:59 +0000
ROA not before: Thu 10 Aug 2023 09:19:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35308
IP address blocks: 193.151.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:be:e2:db:cf:aa:a6:d9:68:5a:a2:69:bc:d1:b0:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Aug 10 09:19:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20a8810b22abad99e457e6ca0cb70042dba8b22c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3f:4f:bc:23:61:1e:aa:7c:d8:45:d3:6e:78:
96:e8:e3:6c:5c:a0:0f:8b:ae:7d:99:ed:99:8d:84:
6e:2e:d8:06:f6:3b:30:3d:b3:e3:cb:13:64:b6:7b:
73:81:54:c6:58:1c:c8:a0:15:e6:2d:25:f9:b7:08:
9f:6c:75:e3:8e:c9:ce:55:27:ac:70:be:30:05:16:
03:87:d3:12:9c:ef:67:f7:f8:1a:81:1a:9f:d3:f1:
17:45:f6:b2:49:88:ab:78:f1:72:5f:c6:00:fc:3a:
76:8d:d8:77:97:33:0e:25:8f:12:12:22:46:89:37:
e0:1b:08:43:ad:9d:12:c4:da:00:4b:63:76:32:91:
6a:30:38:9a:51:b4:08:e9:22:bf:c5:00:14:5e:87:
b6:43:de:6f:74:f9:74:a7:03:81:f1:34:a7:01:f0:
58:01:dc:f2:d1:97:47:88:b3:ca:2f:52:78:06:d9:
26:52:3e:5a:3c:50:a4:dd:d7:3f:2f:ff:55:08:8c:
1e:21:12:f6:ae:e4:08:a0:46:9c:9f:66:64:02:fd:
dd:32:27:ff:4f:2d:3c:24:12:63:0a:e1:84:06:62:
81:a9:db:47:75:70:00:78:72:28:86:8c:0e:75:8a:
ec:aa:2e:f6:05:b3:44:a2:7c:23:8f:ac:e8:70:10:
ca:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A8:81:0B:22:AB:AD:99:E4:57:E6:CA:0C:B7:00:42:DB:A8:B2:2C
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/IKiBCyKrrZnkV-bKDLcAQtuosiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.167.0/24
Signature Algorithm: sha256WithRSAEncryption
97:9f:ff:70:2b:f3:1c:dd:cc:0a:f3:d3:d5:c1:de:c7:af:24:
f1:97:47:16:c6:bd:c8:f6:c8:77:91:22:b1:3d:b8:77:cd:60:
2f:6c:91:e1:10:d3:d5:c1:f9:03:27:b3:5d:d8:5e:ac:59:99:
a6:2f:9c:d0:35:00:ef:2d:4a:31:cc:83:1a:70:7a:b1:60:5d:
2c:79:f0:5d:7d:bc:4d:3a:cc:ca:b7:59:2e:f7:eb:8c:ad:c6:
11:06:fa:14:4c:68:1e:31:1b:2a:97:aa:e3:7c:69:8d:08:5d:
b6:cd:46:66:c8:60:87:1a:df:b7:70:20:82:69:f4:a8:d6:32:
81:74:29:52:f7:35:97:7a:ed:35:ab:5a:9c:0a:57:42:59:8c:
17:6e:8c:43:8f:4e:5a:96:ad:08:a1:df:9e:75:c4:a0:80:38:
7e:f3:e7:77:1a:72:7d:7f:a5:83:2c:5a:21:e0:f1:d9:17:d4:
75:16:48:dc:0e:e4:a5:02:a0:18:26:24:32:ec:84:ca:04:53:
4e:3a:ed:c5:f0:5e:76:67:f4:4e:21:05:a9:a8:e3:fe:e6:6f:
a8:65:00:f8:17:33:fb:15:89:d2:68:74:86:69:68:eb:99:af:
8e:35:ec:15:ca:c3:8f:24:75:22:38:19:0e:98:6d:a1:da:b9:
5f:c4:b6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:13 2024 by rpki-client on console-ams.rpki-client.org