Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/1hpI7l0Uo4MFuRgGy-8f_kHPmLM.roa
File: 1hpI7l0Uo4MFuRgGy-8f_kHPmLM.roa (raw, json)
Hash identifier: i1slfr+2EkfDylqPBBOCkx3/seUej+ly76toPwuqvz0=
Subject key identifier: D6:1A:48:EE:5D:14:A3:83:05:B9:18:06:CB:EF:1F:FE:41:CF:98:B3
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 01894ED07455E821F6BF2256A02A23BB2FE4
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/1hpI7l0Uo4MFuRgGy-8f_kHPmLM.roa
Signing time: Thu 13 Jul 2023 10:33:51 +0000
ROA not before: Thu 13 Jul 2023 10:33:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.43.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4e:d0:74:55:e8:21:f6:bf:22:56:a0:2a:23:bb:2f:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jul 13 10:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d61a48ee5d14a38305b91806cbef1ffe41cf98b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b3:67:15:c2:de:cd:84:f1:9d:e0:12:ef:b8:
a3:ec:5d:72:4e:2b:59:76:48:d0:4d:c2:54:aa:28:
af:2f:20:fd:ad:a0:4f:de:1e:6f:2c:03:c4:36:c6:
ba:9d:61:0b:f0:6a:1a:87:80:fb:0f:30:e1:95:2c:
a7:d5:6e:b0:af:e0:58:1c:e3:99:bb:18:aa:9a:05:
ab:0b:19:96:85:00:c8:59:f0:69:8a:d8:71:22:66:
a9:33:d2:be:75:5b:7e:60:ca:b1:85:80:d5:04:8e:
20:12:8c:f2:5d:57:ac:7a:94:59:78:c7:6f:f1:0d:
78:e1:87:38:10:18:85:84:5c:82:8c:90:b1:6b:08:
ef:03:22:23:9b:84:eb:f1:56:53:86:c9:d4:ea:d1:
55:89:30:15:64:62:ee:b4:f1:ae:ba:a0:ff:33:d0:
a5:78:52:57:8b:06:fd:5b:83:51:f7:3b:fd:77:e4:
19:a7:81:aa:ce:2f:87:8d:40:32:20:ef:27:46:1a:
96:a8:5e:2c:29:c6:b6:0e:73:06:60:4d:f6:35:98:
3e:5b:f8:7e:ce:3d:3b:a6:65:b1:3a:96:ae:03:a6:
6c:58:fa:a7:8a:05:9f:53:68:3c:a0:e5:5d:df:a4:
2c:8c:2a:fc:e7:ef:ed:a2:17:3d:c6:b0:bd:c7:5a:
33:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:1A:48:EE:5D:14:A3:83:05:B9:18:06:CB:EF:1F:FE:41:CF:98:B3
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/1hpI7l0Uo4MFuRgGy-8f_kHPmLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.138.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:2b:79:08:29:98:d5:11:dc:24:7c:16:e6:b6:b1:9d:c9:d2:
67:3f:38:98:17:10:96:24:0b:ce:ad:bc:04:3d:e9:b1:f0:49:
bf:a3:70:dc:be:3e:2f:3a:50:76:9f:3b:69:e1:a0:45:e0:cc:
ab:69:cd:5c:e9:b9:5b:53:11:1f:b9:9e:04:83:fd:1e:35:fc:
a4:23:7f:df:da:51:93:46:ad:21:b1:14:2e:21:d7:1f:88:64:
d6:d3:db:87:25:4d:70:0d:04:60:fc:5d:6a:ab:55:d7:b9:ea:
41:35:65:32:6b:20:74:31:da:5c:4d:d9:71:6b:e4:12:c4:67:
0e:2f:66:06:9b:74:eb:79:50:84:fe:51:65:53:da:ba:06:af:
76:03:24:7f:86:54:87:22:7e:80:d0:ff:99:ae:fb:9f:3f:c6:
51:35:ff:a8:40:bc:d3:31:19:85:78:ab:6c:fa:ff:1f:d3:9b:
ca:d3:3f:8c:b3:0b:c3:d7:7d:3e:fb:a7:20:0f:26:8c:ba:cc:
4e:22:b6:31:0f:e8:15:bc:74:88:a7:56:a8:4d:db:bf:7e:29:
89:a7:b8:69:3a:5c:56:a2:be:d6:d3:9d:be:a5:f8:eb:b0:0f:
90:94:e3:25:dd:3a:7e:eb:b1:35:ad:11:f6:f1:a6:ae:dd:78:
bd:13:2d:bf
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 1 01:07:51 2023 by rpki-client on console-fra.rpki-client.org