Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/1b_N-vzfKu8SDJHX_jOKZEmVkng.roa
File: 1b_N-vzfKu8SDJHX_jOKZEmVkng.roa (raw, json)
Hash identifier: tHFKHLxiSDcA6x+TnoUxdVtDJ/hSzZzyZcRCXhM6If8=
Subject key identifier: D5:BF:CD:FA:FC:DF:2A:EF:12:0C:91:D7:FE:33:8A:64:49:95:92:78
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEDD7CB2A78BF960FD1F88DFC57120
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/1b_N-vzfKu8SDJHX_jOKZEmVkng.roa
Signing time: Sun 01 Jan 2023 06:04:54 +0000
ROA not before: Sun 01 Jan 2023 06:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207838
IP address blocks: 188.114.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:dd:7c:b2:a7:8b:f9:60:fd:1f:88:df:c5:71:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5bfcdfafcdf2aef120c91d7fe338a6449959278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:40:4c:9c:36:65:e7:4f:c8:3a:bf:1d:2a:dd:
f7:5f:f2:a6:4c:e6:eb:d2:0b:b1:36:a8:68:7b:8d:
45:2f:12:40:f3:4d:fc:e2:05:64:95:29:b6:11:0d:
b1:91:45:c3:30:07:ef:27:b9:b0:10:a6:8b:3b:dd:
89:3d:31:38:60:13:df:48:70:bf:95:e8:00:ba:bc:
4e:b8:66:00:ea:fc:1c:b3:4a:6c:ae:a5:24:2f:4b:
87:e3:3f:75:2e:5e:a4:5d:59:72:0b:6c:8e:e2:e5:
c1:a1:16:b6:58:3a:f5:26:c0:09:ed:87:bf:49:85:
44:68:25:87:f7:70:e3:89:e4:b3:80:d4:e5:bd:e0:
b8:b0:4d:6e:19:aa:6c:7d:be:15:74:ae:a4:a0:76:
54:d6:3d:91:c8:27:50:58:7d:cb:09:9e:28:a6:7f:
fc:6a:27:11:13:7d:59:ab:3d:9a:2e:48:ce:71:2c:
da:e4:4d:5c:35:7e:77:a4:a9:47:95:da:4d:8a:9b:
2d:c1:3d:6c:b3:44:eb:31:6f:7b:19:20:a7:2b:ac:
b7:c6:20:0d:8b:06:24:3c:0c:90:73:f5:a3:0b:67:
36:6e:d2:f6:10:4d:0a:09:81:26:ae:12:39:92:0c:
94:96:82:4b:85:a4:dc:3c:2e:7e:4c:48:be:e9:85:
08:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:BF:CD:FA:FC:DF:2A:EF:12:0C:91:D7:FE:33:8A:64:49:95:92:78
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/1b_N-vzfKu8SDJHX_jOKZEmVkng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.91.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:53:cc:80:02:44:00:e7:ed:af:38:00:9a:13:28:b3:37:87:
99:05:50:82:b8:b9:97:ad:dc:8b:d8:fc:25:66:73:62:ee:b1:
6d:e3:93:74:c3:16:6b:c2:ce:d2:29:e0:9b:ad:f2:b5:aa:b9:
93:b3:00:c0:f2:35:f8:70:0b:cb:99:ae:1a:49:81:e7:d8:9d:
8f:a4:80:4e:4e:04:92:79:28:07:45:af:d2:7f:d5:8b:33:98:
3b:1a:a9:17:9b:18:58:14:a0:ab:5f:80:8a:62:9c:c0:e8:8b:
e2:8b:56:ba:84:71:d7:ae:c6:e6:ac:54:21:f4:75:09:ba:78:
e7:ce:45:24:d8:d1:99:5e:75:72:bc:f8:b6:4d:c5:37:a5:1e:
c9:90:a2:51:fe:15:2c:ed:80:73:ed:b6:58:9a:58:9b:ef:7b:
55:65:81:cf:dc:21:8b:7d:6b:e4:1b:db:d1:ad:74:78:cd:3e:
5d:bd:07:e5:fb:c4:a9:ad:c6:59:e1:7e:f1:c6:d6:44:f8:ae:
e7:40:89:10:53:4d:f1:e9:98:4c:e6:3d:8b:c8:13:b7:3d:2c:
e9:ba:cf:14:a7:00:a1:33:dc:30:4e:d7:2f:67:2b:87:0a:95:
97:db:be:fe:94:1f:63:29:5d:6f:d4:f4:7e:9d:d5:9f:f8:3e:
40:a6:a4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org