Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/qiVTOWWsKJHE1qK3C6AVUwk6qXQ.roa
File: qiVTOWWsKJHE1qK3C6AVUwk6qXQ.roa (raw, json)
Hash identifier: UjngQgEtnW/30QdMWrM8tWVcrAAghZcdHWF7h/r56Jo=
Subject key identifier: AA:25:53:39:65:AC:28:91:C4:D6:A2:B7:0B:A0:15:53:09:3A:A9:74
Certificate issuer: /CN=c9b1d7c3b4ee8723336a658539aa7346f23d6772
Certificate serial: 01856B812865855355136AA9E170FA149DC0
Authority key identifier: C9:B1:D7:C3:B4:EE:87:23:33:6A:65:85:39:AA:73:46:F2:3D:67:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybHXw7TuhyMzamWFOapzRvI9Z3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/qiVTOWWsKJHE1qK3C6AVUwk6qXQ.roa
Signing time: Sun 01 Jan 2023 04:05:04 +0000
ROA not before: Sun 01 Jan 2023 04:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43528
IP address blocks: 193.201.192.0/22 maxlen: 27
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:28:65:85:53:55:13:6a:a9:e1:70:fa:14:9d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b1d7c3b4ee8723336a658539aa7346f23d6772
Validity
Not Before: Jan 1 04:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa25533965ac2891c4d6a2b70ba01553093aa974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0b:00:c9:3b:b4:75:9f:ae:d1:88:e5:d9:e5:
86:64:62:6c:da:20:8c:df:28:b6:1b:a1:ca:79:3f:
e0:04:e1:cf:61:97:10:fe:11:6e:5e:0d:40:65:2d:
43:da:9c:37:1a:8e:ea:c5:1d:37:09:3b:0b:4d:d9:
95:0d:51:b7:5c:24:a0:e8:ef:b1:02:71:f7:ee:47:
21:42:93:6d:f7:0e:a2:b6:bb:ef:09:85:f5:6e:ad:
5d:c1:d0:37:13:33:94:2b:21:56:04:9f:48:ec:31:
08:4a:9b:a9:f0:63:36:1a:80:30:0d:2e:8e:f6:a4:
40:7e:c1:83:f3:b3:af:3c:de:28:67:53:86:66:42:
f3:a6:00:dd:0b:ab:f5:ee:ae:17:c6:03:7c:0c:a0:
28:7b:74:ff:d0:af:3e:22:34:4e:8a:ff:15:0b:81:
c9:d4:ab:cc:b9:59:08:7b:61:56:7f:aa:ea:9d:68:
90:11:e5:7c:33:0a:57:8c:8f:cc:69:78:7f:8c:dd:
c6:36:e7:ff:85:26:f3:1d:51:1c:b1:fa:ab:50:ee:
82:b0:8a:88:c2:1f:63:df:a1:da:94:f3:2f:9e:63:
a0:e1:b4:09:16:d5:6f:cc:50:7e:da:d4:16:1c:2c:
c6:e9:0a:f3:2b:44:a1:c8:41:26:a7:c1:07:32:83:
b3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:25:53:39:65:AC:28:91:C4:D6:A2:B7:0B:A0:15:53:09:3A:A9:74
X509v3 Authority Key Identifier:
keyid:C9:B1:D7:C3:B4:EE:87:23:33:6A:65:85:39:AA:73:46:F2:3D:67:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybHXw7TuhyMzamWFOapzRvI9Z3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/qiVTOWWsKJHE1qK3C6AVUwk6qXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.192.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:f2:7d:37:a2:d3:fe:1a:05:19:fc:64:4f:fd:e8:8a:c6:9a:
a3:af:21:da:61:ae:ef:7e:64:dc:3c:5d:83:8a:2b:30:be:9f:
94:c7:e8:e3:f3:32:f3:f2:2c:9b:f2:cc:ad:88:1a:13:cd:4a:
28:1d:34:be:56:35:7d:db:2d:c5:2e:ac:8f:93:22:1b:73:49:
63:eb:d0:0f:6a:60:fc:b3:88:ed:91:fe:f0:b6:40:1d:91:83:
fb:b0:96:b2:0c:3f:26:e2:d9:2e:3d:db:dc:72:33:24:4e:2b:
e8:f2:f8:6d:f0:30:91:09:cc:00:b2:51:99:38:13:70:61:84:
23:3d:48:ba:ba:bd:25:ec:e5:14:d9:40:6f:d5:9a:71:b2:53:
e0:74:18:a7:68:14:8e:ef:3d:eb:88:5b:d1:fd:9f:7b:7b:6a:
2f:f7:e3:c1:89:12:68:72:61:e3:56:35:2f:b9:c6:52:24:7a:
ed:f2:81:79:98:bd:b0:07:00:86:a4:82:2a:1f:84:b0:15:9e:
fc:6a:e0:9f:80:42:78:22:d5:33:7a:85:ad:b7:3f:4c:08:2c:
eb:95:a7:b2:fd:7e:72:47:4e:dc:58:cb:0f:50:bc:c0:04:3d:
7b:12:de:57:a0:4e:20:7d:5e:96:7f:1c:08:de:14:50:5e:98:
57:8f:a7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:01:03 2024 by rpki-client on console.sobornost.net