Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/GeR2s5uiWB-ClTSR46txb3jPyIg.roa
File: GeR2s5uiWB-ClTSR46txb3jPyIg.roa (raw, json)
Hash identifier: Ks+/O/GdU4A0fS4Rs/422UDaE3B2XLGlqjiIM/4KM3s=
Subject key identifier: 19:E4:76:B3:9B:A2:58:1F:82:95:34:91:E3:AB:71:6F:78:CF:C8:88
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 018BDE25CEEED3A4A0F3623D67F9F9C9A46F
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/GeR2s5uiWB-ClTSR46txb3jPyIg.roa
Signing time: Fri 17 Nov 2023 16:38:21 +0000
ROA not before: Fri 17 Nov 2023 16:38:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43641
IP address blocks: 193.43.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:25:ce:ee:d3:a4:a0:f3:62:3d:67:f9:f9:c9:a4:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Nov 17 16:38:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19e476b39ba2581f82953491e3ab716f78cfc888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4a:48:ea:3e:e4:7a:29:0a:c8:e4:a8:99:06:
73:f3:2f:74:1e:f3:ef:af:31:48:11:4e:f2:f5:11:
4e:62:2d:05:0c:cd:12:25:26:93:00:d3:99:6d:42:
d1:91:bf:79:05:9a:f0:80:62:e6:09:4f:91:6b:7d:
82:52:4e:65:99:1c:cc:75:86:c9:01:b9:d0:61:57:
97:80:f7:c2:4d:45:9c:08:1e:84:f1:64:f9:4c:81:
f3:35:2b:6e:a7:6a:39:29:d6:00:65:c4:74:70:db:
c6:a1:a4:7f:93:06:84:ad:92:38:59:92:fe:84:b8:
79:7b:54:e4:a2:9f:7f:bb:2f:59:ab:7e:01:ac:55:
bc:27:be:d9:e3:94:ba:56:40:08:44:51:e3:30:e0:
d0:be:7c:33:d3:55:11:ab:ac:7e:4e:d4:b4:05:dd:
41:da:86:da:2e:22:58:b0:e7:fa:91:a8:09:16:3b:
57:35:56:9e:50:0d:67:29:10:14:9f:d7:ef:95:c9:
67:27:87:9a:ef:3a:8c:27:3c:d3:b8:7d:88:a7:0a:
af:2e:09:99:8e:f4:92:ef:d6:f9:51:cc:18:26:98:
20:27:b1:38:03:93:8b:c3:5f:fa:52:81:84:dc:3b:
6c:2d:76:f5:84:be:4b:68:96:f2:3e:02:a8:8f:9a:
de:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E4:76:B3:9B:A2:58:1F:82:95:34:91:E3:AB:71:6F:78:CF:C8:88
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/GeR2s5uiWB-ClTSR46txb3jPyIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.138.0/24
Signature Algorithm: sha256WithRSAEncryption
62:aa:ef:d4:7c:f2:fb:d5:d3:f2:19:85:f0:62:f0:1e:44:62:
d8:6c:64:3f:40:e7:06:ab:7d:61:33:95:79:7f:01:de:7c:ba:
83:5c:77:7e:d0:fb:ab:85:72:39:b5:85:1b:0a:be:ed:c9:cb:
4d:bd:5d:e1:08:91:5e:1e:77:23:62:af:cb:79:f4:af:82:0c:
d3:e1:78:37:f0:13:8d:1c:9d:98:ff:5c:cc:7d:7d:ea:92:f1:
4d:77:bc:d4:f1:92:8c:f6:d8:bd:1e:c6:9c:39:0f:65:11:52:
fa:0c:f5:42:0b:94:2e:9a:8d:47:25:dd:fb:18:93:39:3e:21:
c3:23:f4:39:ab:b4:ae:bf:3c:df:63:d3:9e:3d:72:32:60:c6:
73:79:8b:6a:fc:5d:ff:1f:19:c5:14:73:10:1a:73:e3:4f:7f:
46:06:35:0a:b3:58:06:7a:d8:4f:72:ec:39:f6:db:17:38:90:
42:a7:c8:ea:6a:a1:b7:f5:5d:a8:d9:8d:7b:11:80:a8:54:cd:
9b:8d:df:ff:36:36:bd:94:93:36:f1:66:0d:d8:1c:fc:07:2a:
f1:cc:4e:73:ef:19:ed:80:04:0e:d9:07:ca:b9:b7:8c:39:c1:
18:bc:ef:77:13:65:c1:5f:cf:93:db:c5:cc:b3:26:c2:8c:a5:
4c:b6:f8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 08:47:13 2023 by rpki-client on console-ams.rpki-client.org