Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/02z77X--dOaE14qv0BoAc8sNvXk.roa
File: 02z77X--dOaE14qv0BoAc8sNvXk.roa (raw, json)
Hash identifier: zMIqC5ZKbJlLs+1AoNDXEv1DY2AkTaRBkQdSDVJyAkQ=
Subject key identifier: D3:6C:FB:ED:7F:BE:74:E6:84:D7:8A:AF:D0:1A:00:73:CB:0D:BD:79
Certificate issuer: /CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Certificate serial: 01878F95AF6052CD60E35C3CE9D51A6D02A1
Authority key identifier: 12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/02z77X--dOaE14qv0BoAc8sNvXk.roa
Signing time: Mon 17 Apr 2023 14:19:24 +0000
ROA not before: Mon 17 Apr 2023 14:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 193.222.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:95:af:60:52:cd:60:e3:5c:3c:e9:d5:1a:6d:02:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Validity
Not Before: Apr 17 14:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d36cfbed7fbe74e684d78aafd01a0073cb0dbd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:10:e4:32:1c:f4:42:ab:10:ac:93:6b:55:e7:
da:04:30:2c:55:f5:e0:55:87:de:bc:7a:3a:6d:26:
86:ba:d8:cf:b8:25:10:e9:9b:37:12:12:75:15:26:
ba:29:f6:51:8d:82:ec:96:2f:b5:c7:e6:56:47:60:
aa:45:14:03:54:5d:e5:3f:5b:11:6d:65:69:8d:42:
37:67:8e:0f:9b:b0:bc:1e:20:56:a3:b2:ec:dc:49:
14:6b:b3:a2:6f:dc:ba:8c:08:7d:b4:91:36:88:92:
33:c2:51:09:e9:ea:58:e0:37:db:bf:e4:a2:9b:f3:
ee:21:ec:15:91:4e:5a:d1:05:8e:08:93:66:3b:a2:
52:17:41:0a:60:08:03:74:dd:ee:53:81:9a:84:2a:
44:73:2b:91:a7:84:40:5c:71:12:11:f7:b3:c7:e0:
86:6d:9a:a1:35:fb:32:79:2c:62:a6:56:b9:84:11:
64:d9:4e:40:53:7e:73:d7:5e:53:0c:9a:e8:8c:2c:
d7:d6:12:be:30:69:34:76:4b:0e:b3:fb:9b:8b:0e:
ab:08:49:8f:41:d8:7b:7a:7a:d3:7e:6d:95:d9:ea:
15:9c:32:b0:b9:89:6d:b1:fc:46:08:69:57:d3:d2:
08:b1:ac:1f:e5:c3:5d:04:56:3b:65:3c:93:fc:1a:
7d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6C:FB:ED:7F:BE:74:E6:84:D7:8A:AF:D0:1A:00:73:CB:0D:BD:79
X509v3 Authority Key Identifier:
keyid:12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/02z77X--dOaE14qv0BoAc8sNvXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.111.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6b:e1:6f:d3:02:e3:9f:5d:00:7b:5a:88:15:ec:2a:74:36:
4a:de:25:cf:7a:b6:0c:cd:3d:a7:3c:87:6d:2d:ca:fa:79:02:
31:e2:56:b9:0b:2d:16:6d:83:16:c6:4e:f4:55:4a:31:4d:3d:
ee:6f:5e:c6:39:53:e9:b3:02:ba:9e:1e:3e:47:b7:59:0e:74:
d4:9f:23:ad:c3:d6:ba:45:e4:db:0a:44:2a:18:6f:b6:11:5a:
8d:be:bb:4c:bd:b5:e9:d4:e7:68:cb:61:5d:02:2f:f5:87:56:
ca:7a:32:60:3e:42:14:c6:9a:ac:cd:30:4b:f5:1a:01:2d:dc:
2c:2e:d1:26:31:cc:84:47:84:98:5f:1d:2f:4f:af:41:a8:8f:
06:ba:9c:95:2a:bc:2c:00:bf:0e:0c:c8:18:9c:f7:75:9e:0a:
df:cc:53:b1:8d:62:f0:32:58:88:e4:35:3c:e5:d1:a0:db:44:
86:88:e7:43:1a:32:9d:d1:0e:4d:93:21:24:e0:d9:14:3e:41:
85:b3:01:e4:12:85:6b:15:5f:40:30:17:89:94:8e:8c:ba:cc:
4f:39:d8:4e:b8:c2:f6:c3:ce:9a:2f:04:73:b2:f9:72:33:6e:
b4:fa:ee:cf:99:e2:92:e2:a5:d9:27:24:e8:23:d8:aa:85:cc:
79:24:bb:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 13:01:19 2023 by rpki-client on console-fra.rpki-client.org