Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/qG30oDXuXbUWF4uS0MhMySMVaRA.roa
File: qG30oDXuXbUWF4uS0MhMySMVaRA.roa (raw, json)
Hash identifier: /TizrwzdBTSH1028SUh9D6Jo/MuxLzPF5us2lITbi6s=
Subject key identifier: A8:6D:F4:A0:35:EE:5D:B5:16:17:8B:92:D0:C8:4C:C9:23:15:69:10
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 01856F4B80B95CBF481456889589E996EDCB
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/qG30oDXuXbUWF4uS0MhMySMVaRA.roa
Signing time: Sun 01 Jan 2023 21:44:57 +0000
ROA not before: Sun 01 Jan 2023 21:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.134.32.0/22 maxlen: 24
193.8.128.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:80:b9:5c:bf:48:14:56:88:95:89:e9:96:ed:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Jan 1 21:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a86df4a035ee5db516178b92d0c84cc923156910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:44:a1:bc:27:0f:3c:37:ee:8f:0c:8b:fd:
49:9f:e9:8a:bc:db:43:31:66:56:22:d5:09:ff:cc:
38:2a:b6:e9:da:49:f8:5f:9e:b6:0a:29:64:6e:fe:
d9:58:4c:2e:0f:f2:0d:8c:18:43:79:a3:6d:16:d0:
ae:29:3d:ac:34:8a:58:d9:87:65:4c:fd:d2:72:7f:
c1:9c:8c:9b:88:44:73:94:fc:87:d4:a6:38:dd:06:
0b:06:85:4f:0f:45:75:4b:7f:06:0d:8b:5e:5b:b1:
0e:b2:29:ab:d5:4f:3f:71:f7:c5:a4:0b:1c:03:72:
2c:f9:0c:5d:e0:fa:4a:11:50:8f:ea:13:e4:79:bc:
93:30:1e:b6:a2:c4:9d:f6:25:eb:8e:21:56:3c:98:
bf:fd:19:e6:42:c2:ba:4f:86:06:51:4b:f2:e9:76:
9a:11:69:42:70:da:f7:aa:3e:8f:5a:6e:46:f0:ca:
e5:34:d4:06:2a:bc:dd:6c:ed:0b:a2:72:9e:72:94:
52:1d:de:36:d0:4d:89:5d:af:47:30:ba:26:f7:c8:
62:b9:c2:08:24:d0:5c:13:59:5c:30:3d:cd:e6:3b:
a1:ea:69:49:e8:84:dd:e7:9a:93:29:4c:73:9e:bc:
02:30:ad:05:11:58:61:73:57:ee:4d:d3:d0:cb:12:
5b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6D:F4:A0:35:EE:5D:B5:16:17:8B:92:D0:C8:4C:C9:23:15:69:10
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/qG30oDXuXbUWF4uS0MhMySMVaRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.128.0/23
193.134.32.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:b3:44:77:f1:a4:dc:80:6e:f5:05:bc:d6:93:de:62:5a:c5:
5c:fa:10:f7:8f:70:bf:07:60:79:34:d2:b3:43:11:a3:9a:fc:
18:19:6b:52:ba:a6:88:eb:94:2a:e8:54:c4:3b:9b:81:2c:ce:
5b:22:7c:18:32:6f:8e:24:07:64:b4:da:a3:ff:c4:12:cf:10:
aa:17:be:91:76:1c:c2:53:7c:4a:99:3f:e8:13:de:23:b1:77:
0c:77:ee:a1:c9:89:e7:d9:88:c9:b1:a4:70:03:c1:23:22:8d:
f0:84:d9:f2:45:8d:96:b9:f0:e4:97:8d:9e:57:84:83:bc:19:
0a:18:06:16:79:7e:c3:59:ac:d8:b7:a6:f7:e2:56:51:8d:91:
f2:03:43:ac:8b:3f:21:68:da:bb:5e:ea:e5:bd:cb:cd:eb:d6:
1d:36:49:b1:a1:3c:ae:62:fb:e6:55:5b:86:22:f1:3d:0f:6e:
3c:0f:08:c5:9c:4c:b5:32:0a:4d:58:c0:77:09:41:ad:3d:d8:
87:14:5a:fb:37:99:d9:5a:04:08:91:32:35:ae:02:b0:48:43:
ef:7c:4d:1c:da:39:95:7e:82:49:d5:a5:83:ef:b9:ec:f4:e0:
92:2f:91:61:b5:e3:e3:22:e8:0d:29:9d:13:7c:b6:6c:97:6e:
22:e9:45:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:48 2024 by rpki-client on console.sobornost.net