Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203334363831.roa
File: 3139332e33322e38362e302f32342d3234203d3e203334363831.roa (raw, json)
Hash identifier: 3Gc5OLD5AITrhoKVaJwoDwhxMGKLra/6dABd3PRKDIc=
Subject key identifier: 6F:CF:FB:29:6D:6D:30:14:CB:66:2F:B5:E4:8F:3F:E8:7C:11:C3:38
Certificate issuer: /CN=000b188a1a40bd66afbda0909efa612125bc8a02
Certificate serial: 4FE8DA960602015D869E27E385BC4C0B64B6EF45
Authority key identifier: 00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203334363831.roa
Signing time: Thu 10 Nov 2022 15:37:49 +0000
ROA not before: Thu 10 Nov 2022 15:32:49 +0000
ROA not after: Thu 09 Nov 2023 15:37:49 +0000
asID: 34681
IP address blocks: 193.32.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:e8:da:96:06:02:01:5d:86:9e:27:e3:85:bc:4c:0b:64:b6:ef:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000b188a1a40bd66afbda0909efa612125bc8a02
Validity
Not Before: Nov 10 15:32:49 2022 GMT
Not After : Nov 9 15:37:49 2023 GMT
Subject: CN=6FCFFB296D6D3014CB662FB5E48F3FE87C11C338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:ce:46:3a:49:50:db:50:a0:94:f4:d0:be:
9f:2c:05:c4:9f:7e:86:c6:70:fd:1e:ea:9b:f3:d9:
a5:9f:e5:c1:29:cd:16:8a:ef:61:00:e3:1d:6e:4d:
10:a9:76:cb:1f:99:bf:a1:c4:ed:f9:35:d6:36:86:
ec:15:f0:ca:72:73:08:22:84:0d:25:80:4a:ef:7f:
ca:2d:18:bc:e6:da:fa:95:a0:60:c6:9b:b6:a4:20:
78:db:a1:18:70:8f:46:de:dc:d3:5d:1f:9f:37:00:
93:4c:97:38:d2:1a:58:1a:82:f2:46:78:24:34:39:
d8:e5:21:3a:f0:b2:27:a5:9e:33:d8:5e:a8:6a:1e:
40:f6:cf:4b:be:20:96:31:4b:f6:32:dd:54:e0:69:
75:24:ac:64:aa:1a:10:7c:18:bc:41:66:38:36:d5:
f7:2a:0a:98:b5:11:e1:ed:13:ac:55:a2:ca:35:81:
97:eb:26:88:3b:4b:98:13:e1:9c:46:47:7b:d5:9e:
08:3a:59:0f:8d:b9:33:54:22:3b:1b:70:67:f0:39:
7a:b4:88:df:dc:20:ff:61:50:e8:1a:32:65:cb:c6:
0b:18:04:92:11:05:0a:7d:eb:f1:a4:9b:58:75:c2:
40:09:08:20:d9:44:cd:47:43:ec:0b:b2:80:dc:1b:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CF:FB:29:6D:6D:30:14:CB:66:2F:B5:E4:8F:3F:E8:7C:11:C3:38
X509v3 Authority Key Identifier:
keyid:00:0B:18:8A:1A:40:BD:66:AF:BD:A0:90:9E:FA:61:21:25:BC:8A:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/4/000B188A1A40BD66AFBDA0909EFA612125BC8A02.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAsYihpAvWavvaCQnvphISW8igI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/4/3139332e33322e38362e302f32342d3234203d3e203334363831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.86.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:50:0b:aa:7f:57:18:ef:9e:99:6e:78:93:30:dd:d0:58:91:
60:56:26:25:19:11:ce:a9:77:3f:c4:ed:50:29:19:40:4f:04:
ad:56:fc:3d:39:b7:06:6d:fb:4c:94:a3:7a:f3:02:91:49:35:
06:0c:28:88:98:2f:3b:c7:b9:e4:9d:60:70:84:01:1c:38:cc:
da:45:c7:c7:81:c0:c1:ae:09:bb:8e:4a:51:8b:75:01:ef:4c:
33:e5:80:48:82:23:ec:43:76:8f:f2:a8:9a:88:29:14:9b:5b:
97:0a:8d:62:db:3a:14:8a:d0:29:6b:e9:57:8d:be:bb:6e:19:
18:b0:58:aa:aa:70:9c:fe:f9:1f:73:99:b3:cc:d9:43:2d:be:
d8:87:76:c5:16:53:67:c8:60:43:e7:49:85:db:7f:eb:84:9c:
f0:05:2d:ba:9c:d2:ac:6d:a0:d4:33:4f:2a:2e:e1:50:b5:36:
9d:bd:1c:ee:af:f7:7e:94:11:d1:cb:46:87:08:68:f3:55:94:
20:d6:4f:3c:99:45:2c:26:91:bf:df:d5:b5:57:f0:87:8a:be:
af:39:73:2b:c2:35:d6:91:c6:60:fb:ad:81:1e:c1:1a:45:7f:
4e:2b:50:26:8f:b6:66:f8:36:30:ef:15:0e:cc:26:cb:6b:b9:
99:29:49:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 19 14:40:49 2023 by rpki-client on console-fra.rpki-client.org