Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/D_3lIcRwd-IkaqSXVvWCT0PHYr0.roa
File: D_3lIcRwd-IkaqSXVvWCT0PHYr0.roa (raw, json)
Hash identifier: cwmDnBqHPiEp1adavoLj7b87sQPw7aM25F1728cXRbk=
Subject key identifier: 0F:FD:E5:21:C4:70:77:E2:24:6A:A4:97:56:F5:82:4F:43:C7:62:BD
Certificate issuer: /CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Certificate serial: 01857270051D90A9E3B82E3CAE6CABF351E3
Authority key identifier: D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/D_3lIcRwd-IkaqSXVvWCT0PHYr0.roa
Signing time: Mon 02 Jan 2023 12:23:41 +0000
ROA not before: Mon 02 Jan 2023 12:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.17.178.0/24 maxlen: 24
195.234.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:05:1d:90:a9:e3:b8:2e:3c:ae:6c:ab:f3:51:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d27b877f899341269bec67c6e3a0a888ba7ae98d
Validity
Not Before: Jan 2 12:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ffde521c47077e2246aa49756f5824f43c762bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7e:42:84:99:e7:bd:b5:b9:2b:82:0e:65:5f:
5e:41:ac:39:2c:65:0d:1f:fb:b6:25:1b:cc:f7:c9:
f6:08:5c:f9:11:2c:9c:3b:80:65:ea:00:12:53:51:
b4:66:60:04:80:98:b7:df:d3:cf:01:c9:23:9f:02:
49:77:04:7f:19:7e:ce:92:75:40:9d:b1:cc:76:0d:
43:20:a5:fb:2f:7c:e5:94:44:b9:e8:35:3c:9a:e4:
07:10:8b:5a:d8:a0:a0:59:8a:71:3f:56:31:10:dc:
85:7a:6b:b4:01:f2:1f:65:d0:3e:39:90:6d:37:60:
39:9a:38:b8:86:4e:07:1d:37:93:20:10:d8:67:83:
c8:78:42:e1:0c:3e:61:35:9e:f7:ef:13:f5:ac:da:
5e:58:15:92:16:5b:77:1c:3f:af:d9:8c:07:8a:84:
eb:13:99:e6:ca:df:09:2d:bd:d6:de:fc:e0:7a:b3:
a5:5f:f0:53:f1:7b:93:94:96:36:4f:b3:09:45:39:
82:c2:14:4e:08:8a:d4:a3:8a:c5:4e:0f:0c:0d:08:
e3:de:d7:44:5d:a6:1c:36:87:0b:69:a2:58:30:7f:
54:13:e1:64:3a:9e:9e:ea:39:24:67:f9:22:94:49:
d7:8d:40:8c:76:b6:02:a9:de:8a:4d:f8:90:f2:65:
ec:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FD:E5:21:C4:70:77:E2:24:6A:A4:97:56:F5:82:4F:43:C7:62:BD
X509v3 Authority Key Identifier:
keyid:D2:7B:87:7F:89:93:41:26:9B:EC:67:C6:E3:A0:A8:88:BA:7A:E9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nuHf4mTQSab7GfG46CoiLp66Y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/D_3lIcRwd-IkaqSXVvWCT0PHYr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/445ed0-48b3-408e-a1bc-9979df52b018/1/0nuHf4mTQSab7GfG46CoiLp66Y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.178.0/24
195.234.34.0/24
Signature Algorithm: sha256WithRSAEncryption
74:9b:4a:85:51:76:82:1b:ae:9c:df:05:28:c6:f5:42:9a:38:
af:21:ee:d1:21:d4:c8:db:f5:f6:0b:8d:15:37:ea:8b:58:b4:
03:02:10:bb:a4:25:77:e0:78:ec:3f:6a:45:66:20:6e:73:58:
93:ff:5f:38:64:d2:e4:4d:6f:4d:9b:ce:b7:50:d7:ad:30:76:
17:0e:e5:40:71:10:5a:06:49:c6:e5:9d:18:61:a1:6d:db:64:
db:4a:14:a6:29:dd:b2:d8:ab:73:56:66:4c:cf:e5:4b:1d:2d:
f6:e7:cf:0d:57:5f:b5:e0:3b:13:0e:f1:9b:df:26:b4:dd:6f:
c3:49:63:7c:b7:28:7a:f7:8d:32:07:33:f0:a0:d1:7e:32:e4:
71:a1:87:73:e1:b8:1b:5c:35:09:78:e4:86:a4:d3:16:82:37:
45:4a:bf:ab:96:91:cc:1c:20:b6:ea:5c:47:d7:b9:d6:27:3b:
97:b7:db:d5:60:03:22:3c:4b:95:5a:2a:79:ec:00:36:fe:f8:
fc:3b:ce:33:8a:a0:36:14:71:c3:d2:bf:0a:3a:f6:5e:b2:5f:
1d:75:8b:fc:83:89:9d:f4:ea:22:ea:e3:36:90:ee:ff:a6:14:
17:c3:f4:c5:d1:c7:17:7b:92:df:90:db:76:14:04:44:92:1e:
97:fd:a4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:31:04 2024 by rpki-client on console-ams.rpki-client.org