Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/DDhNLPDF6MflKTT6vP4tlnt_Dc0.roa
File: DDhNLPDF6MflKTT6vP4tlnt_Dc0.roa (raw, json)
Hash identifier: E594jPvQV3NyEcNfNFaYPwdlSOftGSTpZvhQUFlr6SQ=
Subject key identifier: 0C:38:4D:2C:F0:C5:E8:C7:E5:29:34:FA:BC:FE:2D:96:7B:7F:0D:CD
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018A4FC54B2E117B5FECF3EF666237F99A98
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/DDhNLPDF6MflKTT6vP4tlnt_Dc0.roa
Signing time: Fri 01 Sep 2023 08:04:04 +0000
ROA not before: Fri 01 Sep 2023 08:04:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 93.152.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:c5:4b:2e:11:7b:5f:ec:f3:ef:66:62:37:f9:9a:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 1 08:04:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c384d2cf0c5e8c7e52934fabcfe2d967b7f0dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7b:e4:d0:d1:d9:a2:a5:93:7b:8e:b8:eb:76:
dd:ee:74:33:c6:3d:5e:26:c8:1c:8b:ac:30:2e:a2:
e2:2b:3b:4c:89:b5:44:fc:e4:7d:2b:06:f7:8f:4e:
c6:d3:04:d6:67:c3:6f:01:a4:cb:aa:fd:25:4a:84:
c5:86:56:14:cc:d9:4c:46:d3:d4:ce:c2:8d:6a:9a:
ad:0c:d6:bd:f2:58:a1:03:69:c1:74:4f:72:65:14:
4a:00:3a:90:83:d5:74:b9:c1:ba:10:bc:71:bf:61:
c1:04:8f:d6:b8:6e:b1:ee:99:c6:1a:f4:bd:a9:f6:
d1:9d:4f:9a:c5:c0:5b:07:11:c5:3d:ef:b6:2a:89:
b2:23:01:57:d7:fa:3d:09:5c:74:57:6f:97:c0:48:
27:7e:cd:6b:9d:85:ce:6d:74:35:a9:21:b9:70:73:
d9:bf:fb:41:c6:41:64:06:c6:66:d4:a9:e2:ba:fd:
70:ff:d8:e6:81:33:e8:74:e6:a6:b0:16:20:4f:c7:
60:d0:53:77:4d:eb:dc:24:5a:f1:ed:9a:5b:5f:99:
69:b5:87:c4:02:29:62:19:b9:68:c0:03:c6:b3:8e:
37:af:36:82:2e:e6:0c:32:1f:b8:7c:fd:bd:31:9a:
bd:29:c5:fa:bf:2f:3c:f7:28:a7:94:bc:17:95:eb:
79:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:38:4D:2C:F0:C5:E8:C7:E5:29:34:FA:BC:FE:2D:96:7B:7F:0D:CD
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/DDhNLPDF6MflKTT6vP4tlnt_Dc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.216.0/24
Signature Algorithm: sha256WithRSAEncryption
63:46:54:73:01:a9:b9:63:8b:62:86:86:92:96:63:a4:a8:6e:
41:ac:41:08:69:1a:2e:57:e8:5f:5f:ad:86:da:02:ea:f1:c4:
c7:26:fe:fc:70:61:07:33:d0:a9:6b:86:02:cf:8f:3f:04:f3:
29:35:70:6b:68:18:1d:a1:82:5b:e9:d6:fc:31:72:ea:a8:9a:
6d:03:0d:c7:00:0f:f5:4f:96:3d:c4:3c:03:97:47:39:65:b5:
19:bf:90:71:81:88:d5:05:1e:14:9d:2c:1a:55:b0:18:f3:71:
3b:6c:b7:06:48:17:93:db:2c:b8:53:03:8f:2d:4f:62:62:dc:
c1:cb:dc:a5:10:a9:19:b6:dd:e4:4a:da:90:9a:fe:43:7a:5b:
3c:80:39:8a:57:48:4c:c3:7b:bc:50:64:da:e4:13:14:2c:78:
22:eb:91:3c:5e:9a:0b:c4:87:d0:8c:c6:20:2a:98:0b:09:ed:
88:e9:fa:37:af:bf:93:3e:b7:ae:b5:01:d9:82:4a:6e:d8:26:
29:cb:b4:09:36:e7:e4:46:12:c0:e1:9a:74:ff:89:46:a5:49:
8a:37:e0:8f:ec:00:14:6d:a2:81:bd:34:96:a2:5c:5d:0d:f0:
dc:29:bd:15:73:dc:e2:bf:b0:9b:07:3f:f7:b3:c6:08:b7:68:
2b:09:8e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 26 13:14:22 2023 by rpki-client on console-fra.rpki-client.org