Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bb1396-9c05-4e17-bbc5-77660501c478/1/p06kmIlmIW0BjO7NbnyGENaPlME.roa
File: p06kmIlmIW0BjO7NbnyGENaPlME.roa (raw, json)
Hash identifier: zdhXvggIKu3nbKUb0ZA3W3P2iNlMNTIa0cX90XODbt4=
Subject key identifier: A7:4E:A4:98:89:66:21:6D:01:8C:EE:CD:6E:7C:86:10:D6:8F:94:C1
Certificate issuer: /CN=dedf9a671bcf1789c1b5ac3630c741be560dada0
Certificate serial: 01856D4ACFD16F5636B4E0BD86EEFC2DB435
Authority key identifier: DE:DF:9A:67:1B:CF:17:89:C1:B5:AC:36:30:C7:41:BE:56:0D:AD:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3t-aZxvPF4nBtaw2MMdBvlYNraA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bb1396-9c05-4e17-bbc5-77660501c478/1/p06kmIlmIW0BjO7NbnyGENaPlME.roa
Signing time: Sun 01 Jan 2023 12:24:57 +0000
ROA not before: Sun 01 Jan 2023 12:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31497
IP address blocks: 193.16.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:cf:d1:6f:56:36:b4:e0:bd:86:ee:fc:2d:b4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dedf9a671bcf1789c1b5ac3630c741be560dada0
Validity
Not Before: Jan 1 12:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a74ea4988966216d018ceecd6e7c8610d68f94c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:06:6f:53:3d:07:e2:93:17:37:4c:f2:70:
7f:03:cb:d8:3d:b2:b1:db:db:d3:12:c7:86:eb:36:
30:e1:9d:96:22:a1:f2:c6:d7:5a:99:d5:e4:9f:08:
eb:81:5f:cb:0c:d9:b4:89:1f:71:76:71:6b:14:59:
16:30:d0:d0:4d:11:e1:00:3d:f6:d1:9a:72:d9:ba:
6b:65:50:a6:a8:a3:b4:31:de:a9:9a:6c:d0:69:42:
d2:b8:24:e8:39:c2:31:05:b0:ca:2e:73:a1:ee:bc:
89:4a:40:9d:8d:45:e2:e8:31:3b:42:83:27:ad:80:
2d:ee:6b:84:37:2b:a3:e2:08:9d:7b:6c:34:e6:32:
e6:cc:40:25:b8:d9:57:27:a3:53:58:6e:e2:8b:bf:
b1:fc:86:6f:ec:de:0d:40:26:d9:d3:d8:bf:fc:bc:
21:21:46:48:30:d4:e8:d9:c5:68:ca:71:00:19:5c:
43:95:0a:20:68:35:b7:11:26:2a:6a:e4:31:a9:f4:
68:e8:f1:f0:84:8c:2d:44:39:d7:c6:23:26:3b:9a:
09:75:18:7a:52:19:cc:21:38:b7:e5:c0:db:48:30:
4f:32:ea:fb:85:0f:42:b2:09:eb:b5:8b:13:35:23:
88:c7:3b:6b:14:84:2e:56:4e:ee:c0:32:b6:86:2f:
9b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4E:A4:98:89:66:21:6D:01:8C:EE:CD:6E:7C:86:10:D6:8F:94:C1
X509v3 Authority Key Identifier:
keyid:DE:DF:9A:67:1B:CF:17:89:C1:B5:AC:36:30:C7:41:BE:56:0D:AD:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3t-aZxvPF4nBtaw2MMdBvlYNraA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bb1396-9c05-4e17-bbc5-77660501c478/1/p06kmIlmIW0BjO7NbnyGENaPlME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bb1396-9c05-4e17-bbc5-77660501c478/1/3t-aZxvPF4nBtaw2MMdBvlYNraA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.103.0/24
Signature Algorithm: sha256WithRSAEncryption
15:3e:34:f4:cc:1c:a4:f5:bd:4a:99:76:8d:81:d1:d0:63:ee:
b4:57:78:c6:75:52:09:bb:8c:39:28:54:7c:9e:9f:d7:f5:3b:
c4:64:1b:e6:06:4a:73:76:41:90:f0:54:57:2d:f3:33:92:78:
95:e1:f1:5c:0f:d1:bc:0e:ca:31:f3:49:b8:04:32:6c:e1:53:
0e:1d:a7:bb:7c:0d:87:4f:67:73:8e:89:66:0c:3f:55:49:c0:
94:80:4b:e2:15:ab:6c:30:51:92:7f:9d:4a:2e:5a:0e:07:d0:
fd:df:27:49:73:02:7f:3d:bf:2e:f0:f8:1f:ca:d1:ed:94:a4:
99:9a:4d:dd:9a:55:7d:dd:36:b5:fb:07:65:74:f6:15:32:81:
40:66:9f:bf:10:52:c1:3a:81:a4:ff:6c:8d:cb:b2:aa:4f:3f:
68:3e:f5:7c:ee:8f:80:b6:df:00:ad:3b:19:26:6e:b0:ab:78:
68:7c:f0:6e:c9:6d:b1:50:59:1e:28:63:9e:29:38:df:5f:02:
36:b2:89:60:02:3a:35:af:d4:74:36:7e:ec:54:17:32:28:b7:
77:04:9a:77:85:c3:d1:ef:51:d0:47:a9:c3:22:42:ed:78:e5:
39:41:e3:9f:fa:78:e7:64:5b:e1:da:f4:61:64:18:70:a9:21:
77:9e:7a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:55 2024 by rpki-client on console.sobornost.net