Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/rHKp7MoR1PeH1Gq0hQ56KKokieE.roa
File: rHKp7MoR1PeH1Gq0hQ56KKokieE.roa (raw, json)
Hash identifier: X8wG/rsCXa/WxN6c0ctYrhREn/sWse61fwMktFennDM=
Subject key identifier: AC:72:A9:EC:CA:11:D4:F7:87:D4:6A:B4:85:0E:7A:28:AA:24:89:E1
Certificate issuer: /CN=3044e60bb97132ea849a53fc554bbbc63948b016
Certificate serial: 01856E1458E05608EEBC3B56F2692847D0DF
Authority key identifier: 30:44:E6:0B:B9:71:32:EA:84:9A:53:FC:55:4B:BB:C6:39:48:B0:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/METmC7lxMuqEmlP8VUu7xjlIsBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/rHKp7MoR1PeH1Gq0hQ56KKokieE.roa
Signing time: Sun 01 Jan 2023 16:05:05 +0000
ROA not before: Sun 01 Jan 2023 16:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207543
IP address blocks: 193.228.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:58:e0:56:08:ee:bc:3b:56:f2:69:28:47:d0:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3044e60bb97132ea849a53fc554bbbc63948b016
Validity
Not Before: Jan 1 16:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac72a9ecca11d4f787d46ab4850e7a28aa2489e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:58:07:4b:55:e4:69:8a:b9:86:87:44:d2:14:
1e:a5:59:6d:61:05:0c:e3:01:26:1b:e7:9e:99:aa:
b6:70:94:71:5d:b2:f5:f1:56:a0:01:ca:c3:df:cb:
2e:e9:1a:42:59:c2:33:dd:47:bd:34:a7:96:2c:cf:
8b:6a:78:04:70:11:ca:bf:c6:03:49:51:91:7a:4e:
95:27:ce:bb:a0:5e:58:48:2c:a3:87:cd:d9:3d:d8:
59:3c:3e:cc:82:a7:6a:d7:61:f1:6d:4b:49:47:7e:
c2:5d:9f:7d:dd:1a:4e:ea:36:19:b5:2c:94:19:1f:
a2:4b:4a:2b:88:90:73:72:d5:ba:78:b8:1f:46:ed:
d4:b5:85:6e:eb:f5:78:93:ef:55:71:dd:68:1d:7d:
01:21:1c:1c:c8:15:8e:01:69:d0:14:03:aa:b7:ae:
94:6d:cc:fa:a3:07:e2:b0:f7:8c:e8:5b:39:57:75:
a0:4e:5f:5f:ce:a5:91:ee:6b:3c:7c:92:cf:21:df:
01:cb:c7:e3:b1:9a:7c:9f:47:51:7a:df:f1:b9:c3:
76:d8:dd:8c:cc:89:3c:f1:79:b3:52:8f:60:07:b4:
28:ec:62:dc:0c:0b:59:89:76:da:92:8c:02:63:2a:
0e:97:3a:32:23:6d:fa:09:84:06:d5:fc:6c:29:9a:
eb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:72:A9:EC:CA:11:D4:F7:87:D4:6A:B4:85:0E:7A:28:AA:24:89:E1
X509v3 Authority Key Identifier:
keyid:30:44:E6:0B:B9:71:32:EA:84:9A:53:FC:55:4B:BB:C6:39:48:B0:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/METmC7lxMuqEmlP8VUu7xjlIsBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/rHKp7MoR1PeH1Gq0hQ56KKokieE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/eef70e-820c-45b1-ab19-431f91da4e28/1/METmC7lxMuqEmlP8VUu7xjlIsBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.11.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:36:4a:73:f2:de:d7:d9:3f:29:99:98:b6:d0:f6:59:a9:4f:
30:dd:e7:9d:f8:e1:89:50:d8:f9:93:19:39:3e:ee:88:78:1e:
11:32:f5:6d:c2:9a:a4:16:3e:df:ef:97:db:24:3b:d6:e6:ab:
a2:ea:6f:92:26:a9:43:1d:d7:5f:cb:3d:05:4d:a2:a4:7b:0b:
b0:19:59:97:5d:66:48:3b:74:fd:a9:d2:e4:d6:7f:45:c8:8d:
77:89:59:d1:50:a6:94:82:0d:ed:76:62:59:bd:89:11:7f:c0:
dd:3e:8d:b3:2a:c9:09:cd:b4:15:3d:d2:a7:db:c0:7d:80:0b:
6f:23:ae:b9:71:87:87:be:3b:28:36:f6:3f:2e:8d:7a:53:8a:
7c:d0:4b:1e:14:82:8e:00:da:ba:b6:7b:09:b0:ca:2a:b0:c0:
af:f6:3f:e9:7f:7e:5a:54:e9:3d:fc:39:c2:c5:b6:cd:6d:fd:
74:f4:1b:fb:a0:fd:ca:b4:76:d9:6c:82:e8:e8:ff:f2:77:7c:
f5:d5:0d:81:57:78:40:58:3a:36:b3:b2:4d:c6:23:94:3b:dc:
56:10:e0:91:24:fe:2d:a3:32:91:42:ec:92:16:94:82:be:3e:
88:ad:ad:3f:d5:67:5b:5b:1b:44:58:02:f6:f0:7b:ac:4e:f7:
5a:e1:76:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:45 2024 by rpki-client on console.sobornost.net