Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/73CQZmxLaN0MH576-SsS3orJnYs.roa
File: 73CQZmxLaN0MH576-SsS3orJnYs.roa (raw, json)
Hash identifier: bcdVETEWkyPNvjKX6hSuzoioSZFuheYdgVzGZAbIesk=
Subject key identifier: EF:70:90:66:6C:4B:68:DD:0C:1F:9E:FA:F9:2B:12:DE:8A:C9:9D:8B
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 018571A78F6DD9E66DB5F5B71F5B36F64A8E
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/73CQZmxLaN0MH576-SsS3orJnYs.roa
Signing time: Mon 02 Jan 2023 08:44:44 +0000
ROA not before: Mon 02 Jan 2023 08:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208122
IP address blocks: 193.43.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:8f:6d:d9:e6:6d:b5:f5:b7:1f:5b:36:f6:4a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 2 08:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef7090666c4b68dd0c1f9efaf92b12de8ac99d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:12:6b:01:7e:e1:b5:fa:a3:f0:78:77:ad:e4:
9c:a3:29:e9:6f:52:d0:a9:d0:02:f7:7e:3e:0c:6b:
2c:82:57:8f:09:52:1d:6d:a7:1e:9b:01:07:ac:d7:
74:7e:9a:d6:9a:56:e9:cf:8e:49:1c:ea:56:5d:fe:
c2:bc:9b:21:62:48:87:11:e8:0a:44:59:44:d2:5e:
d8:af:2c:bd:16:38:2a:f4:e9:a3:cc:ea:ee:ba:47:
94:92:cb:d6:20:e3:c2:55:4e:33:a0:b1:22:75:ea:
f0:4e:4a:52:52:27:ae:e3:9f:84:21:de:aa:04:74:
ff:15:ae:c8:42:aa:b1:2a:e2:c6:4a:43:9e:9b:1f:
4a:ea:e2:2a:80:11:1f:a7:54:c3:76:02:85:3d:ba:
13:00:b4:70:11:bc:fb:79:0c:64:16:44:da:4a:ef:
23:eb:6c:f2:63:cf:36:7f:74:c7:5a:94:02:c3:e5:
50:71:d7:89:5b:70:c5:f7:eb:db:8b:09:c6:d0:fa:
19:9a:fe:e5:24:02:84:b3:93:52:a4:bf:9a:86:09:
1b:14:a9:55:a1:d3:fc:40:b4:a7:e6:ca:f4:ed:8f:
b3:54:1a:9f:7b:70:64:08:b5:55:30:84:16:6f:e1:
44:03:2e:f3:ac:32:ef:13:05:98:13:a9:6f:1e:5b:
45:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:70:90:66:6C:4B:68:DD:0C:1F:9E:FA:F9:2B:12:DE:8A:C9:9D:8B
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/73CQZmxLaN0MH576-SsS3orJnYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.138.0/24
Signature Algorithm: sha256WithRSAEncryption
76:cd:cb:dc:3d:f7:08:ab:ba:e6:d7:67:48:54:ef:52:fb:6d:
1d:46:e3:13:74:76:ad:b0:9f:94:34:2a:9b:bc:ad:87:b0:63:
7b:bd:75:e9:59:4e:b3:1a:b3:9d:9e:d5:b5:f2:dc:6b:c4:3a:
7e:5c:70:1a:bc:94:22:9d:15:93:03:99:1f:5f:69:e0:75:c5:
9e:36:9e:38:d8:f6:70:1e:66:a6:ea:b8:45:07:ed:66:6b:ce:
a4:e6:11:c3:ac:37:d0:c0:10:ae:ed:f2:4c:a4:43:99:58:d0:
1c:c7:db:fe:16:0f:12:38:42:53:42:76:07:02:bc:11:bf:b0:
cb:28:95:f3:ac:27:f8:99:c2:c5:df:4f:53:ab:73:9d:d9:ca:
7f:6e:5e:52:bd:ec:3c:71:8a:ae:d0:d9:1b:78:44:37:26:b2:
0c:2d:41:3f:af:53:c8:72:c2:73:cf:66:26:06:75:c4:28:03:
63:01:7d:df:3d:6a:89:fb:0e:66:df:b6:c0:a7:48:ae:72:e5:
03:7c:b6:37:ad:63:79:d9:a1:f7:5a:8b:89:37:61:94:d2:2c:
2d:8b:b7:60:32:a4:d5:64:93:c8:50:f7:dd:0d:cb:3c:06:be:
04:1b:e1:c7:49:50:db:83:52:78:db:87:b8:38:e3:53:5f:18:
e6:8b:b6:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:30 2023 by rpki-client on console-ams.rpki-client.org