Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/J5tXo0buzkByBDpzbv9wU9mInQ8.roa
File: J5tXo0buzkByBDpzbv9wU9mInQ8.roa (raw, json)
Hash identifier: vHibViIoeUHUDS7Z6Fzeer3r2r59yBVVEABrGksKhg4=
Subject key identifier: 27:9B:57:A3:46:EE:CE:40:72:04:3A:73:6E:FF:70:53:D9:88:9D:0F
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 01856FD4E686792199FF81B0C67BFFAB2A7F
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/J5tXo0buzkByBDpzbv9wU9mInQ8.roa
Signing time: Mon 02 Jan 2023 00:15:01 +0000
ROA not before: Mon 02 Jan 2023 00:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 193.84.128.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:e6:86:79:21:99:ff:81:b0:c6:7b:ff:ab:2a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: Jan 2 00:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=279b57a346eece4072043a736eff7053d9889d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3d:ca:ff:da:a8:57:04:52:d5:37:0c:b8:23:
b6:a3:ae:24:d3:62:94:95:9c:44:8a:bc:17:8d:80:
90:d0:2b:2d:1f:71:2c:79:52:e3:0c:83:c6:6c:05:
14:f2:70:16:8f:aa:de:aa:d8:c8:c6:7d:95:5e:da:
d9:7d:2b:91:20:47:4d:47:f0:cf:85:37:17:76:c1:
41:61:03:b0:50:33:94:4d:e3:0e:a4:da:23:27:7d:
4f:94:98:cf:d5:17:25:74:ea:a3:2d:d9:40:01:55:
1f:4e:55:ee:1f:71:1a:d1:9a:2a:e9:55:a5:db:53:
81:39:b1:7a:e2:78:21:35:a3:a9:c8:1b:01:69:22:
a1:80:f5:ca:48:1e:46:0b:e1:88:18:86:fb:b7:fa:
f8:46:c0:5e:bd:f5:e8:94:5d:8a:e0:08:c4:b6:22:
dc:1f:0b:bc:7c:72:ea:b5:fd:d3:37:65:0d:06:d0:
62:b2:41:59:b3:72:8d:2d:ad:e3:bb:14:65:e8:87:
7d:7c:1f:83:e5:d4:18:02:f4:44:4f:f3:e5:06:11:
6d:1d:d4:4e:a3:ed:75:ee:9b:d2:32:1f:a1:74:06:
65:90:52:35:04:a2:cd:b4:7e:5e:ae:78:e2:86:f6:
85:39:82:66:5c:21:2e:3c:34:90:c5:72:29:1a:2c:
7e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:9B:57:A3:46:EE:CE:40:72:04:3A:73:6E:FF:70:53:D9:88:9D:0F
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/J5tXo0buzkByBDpzbv9wU9mInQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.128.0/23
Signature Algorithm: sha256WithRSAEncryption
12:13:e0:87:4b:53:50:2e:9a:33:1e:02:52:93:98:9c:bc:b3:
38:3d:14:61:5f:8a:4a:4f:b3:cf:f6:60:87:6d:5c:52:58:15:
36:9f:51:06:93:a3:2d:37:cf:22:7e:55:42:b8:43:71:d5:19:
f6:14:ae:27:39:ba:5f:22:e1:4e:7e:ad:45:6f:dc:a2:11:6d:
ec:44:01:36:5e:48:e4:09:0a:c0:0b:9c:86:e3:54:64:00:29:
ba:7f:83:ad:be:75:6e:af:ca:74:3c:ef:b0:bf:d6:9a:c3:ae:
9e:3f:1c:dc:e9:50:00:a5:92:c3:05:63:b2:89:08:5e:d6:17:
b6:43:02:8a:4b:0a:1a:b4:7f:6c:28:7f:39:74:2c:86:3c:7c:
95:07:c5:16:ae:1c:c3:82:5d:0d:b5:26:c5:9b:68:e6:76:f6:
b8:40:35:49:f3:b8:0d:02:34:e2:a9:bc:1a:79:80:12:f7:1c:
50:2e:fc:df:c7:47:56:ce:e2:13:8d:ef:26:d7:7e:f4:6f:dd:
b5:71:8b:c5:23:ab:11:95:a5:f6:95:90:f3:fb:95:30:04:74:
42:5e:61:e4:22:1e:c2:9f:6b:d9:d1:c3:18:22:cf:9f:9e:2f:
e0:22:59:b7:fb:0e:fa:18:b1:eb:1a:c3:af:9f:7a:6d:dd:63:
a2:31:ac:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:26 2024 by rpki-client on console-ams.rpki-client.org