Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Ka5v8HyBvUEm8XebPwiviIXlyP8.roa
File: Ka5v8HyBvUEm8XebPwiviIXlyP8.roa (raw, json)
Hash identifier: 30vpA2mZygeEmAZF9ssBHPhk6J4uQF5Joy/ATC3zf0M=
Subject key identifier: 29:AE:6F:F0:7C:81:BD:41:26:F1:77:9B:3F:08:AF:88:85:E5:C8:FF
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEDB59DAF0FC47D01FC9F9B78D71E5
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Ka5v8HyBvUEm8XebPwiviIXlyP8.roa
Signing time: Sun 01 Jan 2023 06:04:53 +0000
ROA not before: Sun 01 Jan 2023 06:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207033
IP address blocks: 188.114.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Feb 2023 10:40:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:db:59:da:f0:fc:47:d0:1f:c9:f9:b7:8d:71:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ae6ff07c81bd4126f1779b3f08af8885e5c8ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b2:ee:d4:20:f5:53:44:93:c8:06:73:07:c1:
80:b0:b5:a8:f1:49:38:8e:44:9d:31:90:1f:69:5d:
e2:45:e1:cb:00:50:c9:2e:98:1f:df:8a:93:87:fb:
08:f8:cc:9d:b8:d9:f1:43:84:95:47:f8:fd:a9:0e:
61:94:0d:3b:39:42:d9:52:f1:97:c5:1e:d7:d4:6c:
a2:ac:fc:f9:7e:50:fb:13:21:23:9b:5e:92:18:a8:
ee:ed:28:f2:2c:c9:34:e8:23:e3:ab:65:81:bd:7d:
3e:a1:cd:45:70:ed:7a:ec:c8:eb:60:85:be:b9:6a:
76:b2:94:f0:39:bd:4f:a0:1e:eb:b1:7a:47:5e:73:
dd:23:1c:a3:d1:c9:dd:ba:8d:e0:5c:c7:7f:29:96:
b9:64:3d:a9:11:0c:f5:6e:a9:96:48:59:b8:5b:f1:
ea:31:17:8a:ec:89:1c:bf:31:58:08:23:0b:57:20:
ea:0c:db:ec:1b:0d:d4:3b:45:a5:e7:bc:76:65:4f:
7a:bc:a5:d1:12:a4:84:34:5b:95:84:ee:a0:5b:07:
a8:91:f2:93:e1:e5:96:30:b6:c7:42:aa:bf:4f:82:
f3:ed:be:d5:fd:3d:12:b5:a6:22:e0:46:01:48:ad:
7c:76:72:88:81:8d:05:22:f1:2f:92:9b:7b:84:19:
b2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AE:6F:F0:7C:81:BD:41:26:F1:77:9B:3F:08:AF:88:85:E5:C8:FF
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Ka5v8HyBvUEm8XebPwiviIXlyP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.68.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ed:d1:1f:b7:1a:9a:09:28:4d:27:84:4e:aa:3a:a4:22:8b:
10:c5:91:cb:37:66:3e:fd:94:44:ee:84:e3:dc:71:ca:b3:02:
f4:f2:31:a8:31:66:ec:e0:0c:f0:99:6e:50:e4:14:af:aa:ec:
0e:47:89:92:e4:e0:b7:df:28:60:2c:de:36:27:27:28:54:2f:
ac:ca:33:c8:f1:37:ed:bf:f9:e6:44:f7:fb:b7:35:dd:14:98:
78:c6:59:b5:80:6f:ab:1d:43:58:a7:78:d2:63:94:2d:0f:fb:
f3:56:7f:6a:c2:a7:ef:99:d7:50:70:68:4b:a0:6d:d3:1e:d6:
5f:92:3e:9f:3a:9d:f7:99:90:d5:d4:97:8e:ca:60:de:9b:7e:
e7:4c:b3:63:e1:f7:54:77:51:a2:bd:e4:20:3f:89:90:09:55:
27:38:88:fb:c7:95:46:47:0e:e9:79:31:71:46:6f:7f:19:5e:
75:be:b3:dc:24:97:4e:e6:ca:cb:0a:4b:e0:23:2d:9c:e1:fd:
15:d8:47:ef:4f:1b:b7:cd:40:35:bf:50:f7:22:b3:48:56:5e:
6d:b6:09:d3:d3:80:fc:d9:44:04:9f:32:15:4b:d4:eb:3d:ee:
7a:13:22:c1:cd:83:b2:03:38:f5:d0:e1:53:cb:06:81:d9:7d:
e7:78:87:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org