Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/40GaGMJBGDxvU5lFawT_0VLr8Y0.roa
File: 40GaGMJBGDxvU5lFawT_0VLr8Y0.roa (raw, json)
Hash identifier: m+utmcuuwXERFvdDKIV6UgvWodJvJZQMUS7g7OFpr+4=
Subject key identifier: E3:41:9A:18:C2:41:18:3C:6F:53:99:45:6B:04:FF:D1:52:EB:F1:8D
Certificate issuer: /CN=cb268b529393018d4bc9fc54073030a03d929721
Certificate serial: 0185737171E14BBE46E46FAEE4B94CC0CA20
Authority key identifier: CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/40GaGMJBGDxvU5lFawT_0VLr8Y0.roa
Signing time: Mon 02 Jan 2023 17:04:52 +0000
ROA not before: Mon 02 Jan 2023 17:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.43.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:71:e1:4b:be:46:e4:6f:ae:e4:b9:4c:c0:ca:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb268b529393018d4bc9fc54073030a03d929721
Validity
Not Before: Jan 2 17:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3419a18c241183c6f5399456b04ffd152ebf18d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:81:ea:c0:df:f4:cb:32:85:eb:16:43:56:88:
cb:cf:25:dd:2e:46:be:38:73:0f:2e:d7:fe:00:f3:
58:e0:12:da:0e:32:f5:bf:c4:d7:a2:4a:f1:99:ad:
71:10:3b:bc:53:79:9e:f1:0d:af:bb:56:cd:a6:de:
71:5e:67:1e:e1:e3:58:73:e2:2a:45:60:5a:29:a5:
f2:79:99:f9:b6:ce:25:2f:ba:02:a4:f4:31:05:57:
33:c8:68:a0:8a:57:22:f1:00:fb:a4:e4:3f:f9:d1:
be:6f:97:cb:79:70:54:77:22:54:ca:f9:e4:3e:3e:
8b:f3:88:2a:82:60:fa:71:8f:2c:58:a5:4f:ba:7a:
b1:dd:ab:3b:02:99:c3:d0:d1:1f:51:f1:00:f7:b9:
9a:64:14:68:cb:af:3b:29:fa:34:d3:e7:16:2c:9a:
e8:d4:68:8f:4c:8a:5d:c7:10:f6:05:57:0e:16:f8:
fa:f7:a2:dd:67:d4:68:18:1f:eb:9f:e6:20:0c:72:
da:b8:47:15:3b:0b:58:f3:81:43:63:64:94:19:03:
46:6c:d5:37:7f:ae:eb:af:4a:0c:7f:35:26:15:4e:
7d:5f:26:13:0a:e8:8a:da:ca:d0:7f:e7:67:33:5b:
38:00:d2:60:f8:f6:0a:cd:96:3c:ba:fe:94:ff:45:
2f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:41:9A:18:C2:41:18:3C:6F:53:99:45:6B:04:FF:D1:52:EB:F1:8D
X509v3 Authority Key Identifier:
keyid:CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/40GaGMJBGDxvU5lFawT_0VLr8Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.125.0/24
Signature Algorithm: sha256WithRSAEncryption
09:e6:57:41:b9:da:2f:dd:3a:76:67:18:a4:62:94:09:52:ba:
a7:52:7e:e8:16:9f:20:4c:20:ad:17:6b:56:91:f6:3a:f3:61:
b7:90:3a:07:6b:f7:5d:c3:a2:68:8f:f0:29:ca:fc:b6:a9:de:
cb:cd:f2:e7:75:7d:6f:49:b0:a4:20:94:6a:0f:4e:50:c1:f9:
16:41:a4:a9:38:2a:60:92:9b:d7:b7:ab:e4:b9:29:2e:ea:9a:
59:45:4f:04:54:6a:59:b3:37:3b:53:1a:a0:48:df:c4:b2:69:
41:eb:83:5c:c6:59:45:fc:fd:a0:f8:66:60:8d:37:1a:db:04:
78:a0:fd:46:49:54:18:b9:ad:0f:7b:a8:bf:4a:45:d3:9f:2d:
44:07:bb:57:15:e0:d7:c6:aa:49:a5:44:56:49:12:f2:42:e4:
96:7d:76:06:ea:d8:0e:2b:84:5c:37:25:4c:85:6e:5e:a5:1e:
f8:b7:6a:11:52:b3:ad:6b:a6:28:18:23:fc:54:8f:99:68:c1:
04:43:31:a6:6f:79:a8:ad:e3:9e:8e:66:e0:fb:84:34:2f:02:
43:44:8c:c1:cb:92:9e:3a:5c:94:e9:ae:b9:94:48:6c:93:6f:
85:42:3f:5a:53:b8:56:68:d6:49:84:c9:91:19:35:b7:28:5a:
a4:3d:46:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:35 2023 by rpki-client on console-fra.rpki-client.org