Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/De7fEm-NbVhL9XWJzZH5iSt1wLg.roa
File: De7fEm-NbVhL9XWJzZH5iSt1wLg.roa (raw, json)
Hash identifier: K1E+eA+U8xhabh14aKnEdPR6zW6FWH5PZNJQcJpp5g4=
Subject key identifier: 0D:EE:DF:12:6F:8D:6D:58:4B:F5:75:89:CD:91:F9:89:2B:75:C0:B8
Certificate issuer: /CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Certificate serial: 01878F95AED6B5ADA60487D72C78BC699EE0
Authority key identifier: 12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/De7fEm-NbVhL9XWJzZH5iSt1wLg.roa
Signing time: Mon 17 Apr 2023 14:19:24 +0000
ROA not before: Mon 17 Apr 2023 14:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 193.222.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:95:ae:d6:b5:ad:a6:04:87:d7:2c:78:bc:69:9e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12fd558a64e97586a43dc7ee50a8d6b292365b60
Validity
Not Before: Apr 17 14:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0deedf126f8d6d584bf57589cd91f9892b75c0b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:51:a8:ad:f7:b1:f5:4b:e0:32:84:d8:28:5f:
07:f2:f4:99:b4:5a:01:25:ae:e5:1e:50:19:6e:80:
5e:74:bd:49:12:21:ae:65:24:8d:84:0d:f5:b3:4a:
9c:b9:b5:04:a3:dd:77:87:03:9b:04:12:71:df:41:
09:d6:2c:bf:f7:d5:ff:d8:81:b0:e9:3f:e9:3c:31:
ee:d6:93:c3:64:19:d5:d1:8d:d7:bb:5a:a3:c0:27:
ec:f7:40:f7:1f:2d:2c:09:bf:e6:73:98:9a:90:e7:
a7:c4:6a:a4:68:53:83:97:66:d5:f1:61:fe:09:2d:
2d:4e:61:98:c2:0f:ea:c4:b0:5f:84:0a:f3:aa:01:
1a:de:82:0e:eb:7d:b3:4b:4d:c2:b1:cd:51:c9:6a:
26:f3:75:bd:0f:8e:c1:4d:76:cc:d3:74:78:8d:ee:
04:6a:5a:00:81:b9:c7:6b:cc:fc:a4:ca:6b:12:d5:
6c:99:ed:9d:d3:c4:bd:fa:79:cf:d7:1d:59:e8:63:
c5:d9:8d:36:d9:2b:c0:04:c9:ee:3c:5a:27:7f:a1:
27:94:95:34:b1:bf:5b:6d:70:40:0a:e6:fe:5f:ca:
bb:01:57:e8:9b:44:fb:19:e5:d0:8b:fe:13:51:2e:
3c:8d:83:95:06:ee:39:bd:da:c6:a4:6f:ba:69:74:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EE:DF:12:6F:8D:6D:58:4B:F5:75:89:CD:91:F9:89:2B:75:C0:B8
X509v3 Authority Key Identifier:
keyid:12:FD:55:8A:64:E9:75:86:A4:3D:C7:EE:50:A8:D6:B2:92:36:5B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ev1VimTpdYakPcfuUKjWspI2W2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/De7fEm-NbVhL9XWJzZH5iSt1wLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af96df-a4d5-48f9-ac0c-24d8e747c38f/1/Ev1VimTpdYakPcfuUKjWspI2W2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.139.0/24
Signature Algorithm: sha256WithRSAEncryption
28:e8:b9:fe:ab:86:4f:9c:49:0a:27:d9:bf:53:e2:d9:87:27:
65:16:28:eb:5d:6d:91:f9:8d:df:2c:90:b3:35:67:24:3b:f6:
40:32:17:a2:a3:6e:d5:d1:5e:0d:8a:0d:ff:c8:85:1a:a0:61:
66:a0:6c:0e:84:e8:b9:bc:43:0f:55:1e:48:4d:3d:3e:b8:21:
04:72:19:78:20:9f:d1:9e:a2:37:be:f7:b2:35:00:bb:60:d6:
5e:2d:79:a1:85:0a:cd:23:99:e0:01:36:87:d9:97:b0:a8:73:
7e:87:87:79:f8:75:cf:68:12:7a:64:4f:af:df:05:75:23:c1:
1a:ca:15:6a:7e:66:42:32:3c:bd:33:31:57:7e:01:67:78:8e:
bb:d5:6a:77:9e:a6:33:56:45:64:96:f8:90:69:8b:ef:51:f1:
b6:8a:9d:53:83:ad:53:83:24:e5:f2:09:16:23:c0:d2:55:b2:
d1:08:43:2e:cb:83:3e:8f:03:50:99:d7:69:c5:8e:47:e1:ca:
5b:7f:15:95:0d:1b:89:f7:d9:9b:c9:94:c2:e1:2e:70:1b:63:
2c:82:8f:5a:c0:d5:f6:a1:d1:c1:e0:78:f7:42:a1:01:17:58:
95:be:51:fe:6f:a8:8c:c6:33:d1:6e:e7:2e:bb:95:ca:bb:b8:
e0:71:62:b1
-----BEGIN CERTIFICATE-----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Generated at Wed Oct 4 13:01:19 2023 by rpki-client on console-fra.rpki-client.org