Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/JxD6LqP47my9fAafSbHf5TJr0JY.roa
File: JxD6LqP47my9fAafSbHf5TJr0JY.roa (raw, json)
Hash identifier: hZ5UKKMTpnVoC+Q1jH2H81ZsiPSI2H3ZCQM2TQYw+9w=
Subject key identifier: 27:10:FA:2E:A3:F8:EE:6C:BD:7C:06:9F:49:B1:DF:E5:32:6B:D0:96
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018A4FC54B646FA433DE3B26CC5936463647
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/JxD6LqP47my9fAafSbHf5TJr0JY.roa
Signing time: Fri 01 Sep 2023 08:04:04 +0000
ROA not before: Fri 01 Sep 2023 08:04:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 93.152.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:c5:4b:64:6f:a4:33:de:3b:26:cc:59:36:46:36:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 1 08:04:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2710fa2ea3f8ee6cbd7c069f49b1dfe5326bd096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:1a:b8:39:4f:17:2a:7c:e8:39:80:f5:66:
4b:52:51:8d:90:75:54:fc:05:37:86:14:67:d5:09:
a3:36:f7:ee:da:db:45:37:7c:92:d9:01:ef:74:98:
3b:02:d3:e7:41:58:e4:00:db:29:73:1d:39:80:4d:
d8:c9:09:4c:08:fa:2c:3c:8c:f7:c7:bc:a6:04:39:
84:a2:48:63:b5:c0:61:e7:e7:29:57:cd:35:1b:19:
ef:2b:7d:cb:96:bf:ec:2a:59:ee:cb:31:81:ad:61:
5e:8d:0a:4d:4d:44:de:ce:92:18:8d:f9:fb:a8:12:
14:20:b3:8e:a7:b1:21:67:48:e2:fe:c7:40:7e:cf:
9b:92:56:ea:85:cf:7d:a1:8b:ed:15:df:f9:d3:99:
1d:f9:96:97:2a:1d:af:91:26:f4:a2:f6:0d:d4:d5:
0d:e7:49:0f:86:b1:d3:d4:8d:39:56:47:85:17:29:
88:de:0a:c0:40:96:a9:cc:ec:eb:3b:b3:44:98:37:
ff:b9:df:2f:38:29:e1:ab:d2:76:13:91:63:be:a0:
59:cd:0a:cf:7a:9f:8c:51:75:86:01:e6:eb:0b:42:
1f:24:24:69:32:5b:00:87:7b:1b:d4:3b:00:af:e7:
0e:03:e2:ae:99:b0:f5:a1:cc:a1:e5:04:29:74:93:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:10:FA:2E:A3:F8:EE:6C:BD:7C:06:9F:49:B1:DF:E5:32:6B:D0:96
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/JxD6LqP47my9fAafSbHf5TJr0JY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.216.0/24
Signature Algorithm: sha256WithRSAEncryption
11:88:bf:b5:ab:e1:e8:6a:30:77:dd:ab:51:05:29:d3:fa:35:
bf:46:7b:29:44:ad:d7:1b:c7:95:4b:a4:74:14:88:a6:fd:c3:
d5:0c:11:b4:98:5b:95:67:44:8c:5c:3a:e8:b8:5d:bc:ec:cc:
26:df:d6:25:48:08:e2:17:4f:b4:c6:b8:a6:4b:16:2a:c7:96:
a1:39:20:84:0d:54:d4:64:b6:a2:75:28:45:b3:1e:ee:0c:4a:
d6:75:1a:52:4e:26:e6:86:5f:7f:a1:f9:15:9a:7f:01:01:1e:
42:2e:b1:85:76:82:8c:ea:2f:dd:ea:8f:98:5f:89:2c:a7:4e:
e1:06:53:ba:c7:31:75:03:8c:6f:3e:6e:75:ea:ec:fe:11:cc:
d9:d5:98:ff:08:2e:a5:e9:1f:10:fd:44:d9:78:e6:39:31:be:
d2:ce:22:bd:1a:4c:c2:15:24:e0:72:1c:c9:c2:b6:5b:89:c6:
1e:a8:2b:fa:05:95:56:bc:8f:29:3e:cb:06:c1:37:43:61:eb:
43:6e:3b:29:ad:e6:2e:bc:64:26:27:da:8c:d1:70:0b:c4:81:
e1:7a:09:52:5f:68:bc:1d:76:f2:d8:d6:8b:7c:29:8c:1d:91:
e1:1f:0a:57:4d:2e:4f:80:b2:00:96:85:45:6d:83:07:f4:81:
08:74:d4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 26 13:29:27 2023 by rpki-client on console-ams.rpki-client.org