Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/bDaqhdEo7ir33M68jVBWGZ0Ivko.roa
File: bDaqhdEo7ir33M68jVBWGZ0Ivko.roa (raw, json)
Hash identifier: pEaqSvd1V0rwZoCIr5sRobj7BYyzir3jxUFTa65QOyw=
Subject key identifier: 6C:36:AA:85:D1:28:EE:2A:F7:DC:CE:BC:8D:50:56:19:9D:08:BE:4A
Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108
Certificate serial: 018571F0D6BD4B507C143A5A74E5DCB4F0C0
Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/bDaqhdEo7ir33M68jVBWGZ0Ivko.roa
Signing time: Mon 02 Jan 2023 10:04:47 +0000
ROA not before: Mon 02 Jan 2023 10:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8841
IP address blocks: 193.220.216.0/22 maxlen: 22
193.220.208.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:d6:bd:4b:50:7c:14:3a:5a:74:e5:dc:b4:f0:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896a82a725ed22bb46847ae568912078de25c108
Validity
Not Before: Jan 2 10:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c36aa85d128ee2af7dccebc8d5056199d08be4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9c:b7:fc:e7:72:96:25:1f:c4:7b:99:eb:8f:
08:34:e9:46:96:2b:e4:a4:f0:4b:3e:5d:6e:3b:ee:
2e:fd:d3:8b:2f:44:26:ec:00:6b:58:42:1b:f1:bc:
3c:ff:2c:e1:d6:19:d4:a7:c9:f6:92:94:f8:66:60:
d0:c1:e6:06:6c:42:a3:e9:e1:69:68:d3:d1:d4:87:
dd:b0:f7:d1:2c:20:e7:be:fa:20:e6:2f:6a:62:f4:
23:3f:ed:b9:6c:dd:f7:40:21:e4:0e:31:67:04:bc:
ef:71:52:e1:ea:6a:2c:de:53:19:bf:fa:c8:02:c0:
80:73:34:09:24:b3:ca:a5:c5:9a:4b:b6:00:dc:91:
f3:1e:00:d5:13:d6:5a:2d:ec:04:08:bc:54:3b:f0:
d9:53:06:29:a3:5e:b3:08:88:85:81:4f:3c:11:3f:
48:f5:a5:91:96:46:ce:5d:ee:48:8c:ec:90:e6:dd:
70:08:93:4c:60:66:00:77:59:51:a7:3a:3e:b2:2e:
c7:b9:08:1c:56:cc:6c:ca:8d:54:66:8e:26:0d:63:
db:90:08:6e:4c:95:3f:6b:ae:6b:60:61:2b:f8:ee:
71:3b:05:2d:f6:d9:23:df:58:e6:3c:94:77:76:28:
1d:59:df:48:9f:53:25:48:f3:27:f0:e7:fb:5b:8b:
30:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:36:AA:85:D1:28:EE:2A:F7:DC:CE:BC:8D:50:56:19:9D:08:BE:4A
X509v3 Authority Key Identifier:
keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/bDaqhdEo7ir33M68jVBWGZ0Ivko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.220.208.0-193.220.219.255
Signature Algorithm: sha256WithRSAEncryption
39:b7:c7:54:9b:f0:61:a2:53:f5:1b:b0:91:2a:eb:c5:ad:94:
eb:24:51:8f:dc:64:46:08:89:e1:f5:34:4d:65:cd:b8:ee:98:
09:d3:df:85:4e:e7:87:94:75:bf:98:44:b8:69:6e:9a:4d:95:
1c:e2:a5:67:cb:2f:e7:ef:f8:e4:56:cf:cb:24:07:2d:7d:03:
ff:3f:e4:26:d5:4d:43:ee:cc:5e:ee:d5:85:f2:7a:b1:1d:72:
03:d9:68:66:de:5c:72:66:09:09:c4:90:61:c1:81:97:d4:51:
e8:76:ba:b5:58:86:e2:37:40:d1:b2:ca:2f:7e:32:c0:fb:bf:
27:b5:76:f8:7d:c9:94:62:5d:f5:cb:80:f2:6b:e6:23:1e:0f:
66:1c:31:1a:79:6d:5a:2d:c2:50:83:c3:5d:3b:41:c6:da:42:
a7:a9:12:f6:b5:94:bf:e3:d8:c5:f0:77:0a:c7:a5:96:4f:00:
e9:76:ba:d5:58:4f:41:35:98:88:95:ad:73:f6:ed:4c:e1:65:
32:a0:28:03:b6:01:c6:42:6f:62:ba:1a:59:3a:ee:3b:9e:0c:
00:1d:5c:5f:9d:55:10:67:d8:3e:63:a3:da:82:c2:30:93:ea:
df:e9:74:fd:b2:de:8b:f4:e5:7a:20:95:cf:8b:a8:e2:06:f1:
c2:db:2b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:53 2024 by rpki-client on console-fra.rpki-client.org