Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/2B6dEo5JKjWNUjx7NknZlrPw92g.roa
File: 2B6dEo5JKjWNUjx7NknZlrPw92g.roa (raw, json)
Hash identifier: KuH+TYcSfSZs/qBpuenjKLUvWnCA0LCIadDro5jgWqg=
Subject key identifier: D8:1E:9D:12:8E:49:2A:35:8D:52:3C:7B:36:49:D9:96:B3:F0:F7:68
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018B22300B7FD8E387CF4FB324AC5A0DC8DB
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/2B6dEo5JKjWNUjx7NknZlrPw92g.roa
Signing time: Thu 12 Oct 2023 04:40:55 +0000
ROA not before: Thu 12 Oct 2023 04:40:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216181
IP address blocks: 194.190.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Nov 2023 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:22:30:0b:7f:d8:e3:87:cf:4f:b3:24:ac:5a:0d:c8:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Oct 12 04:40:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d81e9d128e492a358d523c7b3649d996b3f0f768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ef:e9:79:1f:a6:8f:de:a0:bf:89:b7:fb:9d:
7e:9d:69:d2:87:2a:b9:75:3e:c6:ad:0b:86:1a:3b:
34:c9:4c:7b:1b:88:56:18:81:cc:fa:bd:97:41:e7:
e2:7a:81:dc:78:e2:01:56:79:21:3d:6d:42:63:e4:
4e:05:a1:09:05:0e:ce:7e:18:3e:a8:52:e4:fb:7b:
d7:a7:96:03:9c:d5:66:f9:ac:23:92:24:1f:c4:1f:
44:19:5d:df:e0:52:eb:57:04:fe:17:40:44:77:5f:
11:61:ad:26:c9:19:a2:89:9a:78:cd:d1:c8:8d:e2:
ce:f2:65:0d:df:10:51:0d:9d:ea:3d:c7:ff:b9:19:
06:9c:79:29:8b:0e:c7:91:1e:34:09:f2:53:8e:3a:
64:73:4c:ff:4b:d7:17:30:04:a1:74:f0:a8:a7:13:
65:67:53:07:b7:40:36:80:ee:08:d1:6b:66:05:b3:
52:36:ae:3c:41:68:98:b1:19:6d:8b:71:81:59:ed:
11:7f:38:06:0a:f8:f1:3d:94:84:89:f1:55:7f:d2:
46:3e:07:88:40:9c:c2:4d:5e:e1:da:f6:32:92:88:
d4:da:3f:07:ef:31:4e:38:cc:75:b7:cd:6a:ef:ed:
e8:08:18:7e:bb:e1:78:08:4c:07:1b:ba:69:38:dd:
bc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1E:9D:12:8E:49:2A:35:8D:52:3C:7B:36:49:D9:96:B3:F0:F7:68
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/2B6dEo5JKjWNUjx7NknZlrPw92g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.68.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c8:b2:39:11:e6:27:0c:57:ff:25:81:e7:7f:c8:a4:a0:5d:
17:3c:97:45:56:e9:92:dc:86:67:d4:f9:1e:97:ab:b6:50:2b:
52:69:e6:05:e1:99:8c:5c:1c:2e:0c:c0:43:cc:3b:b9:a0:a9:
d7:a6:1e:49:1f:53:0c:16:cd:28:a1:52:63:80:b1:fc:07:5a:
bc:84:59:8a:35:50:b3:09:29:ba:34:b0:5e:5e:73:ce:d2:ad:
a4:df:1c:48:b9:d3:7b:f1:03:e4:51:bd:ed:0b:81:5e:bc:b2:
40:e5:08:e7:93:89:09:e8:bf:7d:96:07:e8:c8:af:3d:45:41:
57:7c:1c:a1:20:90:d4:70:1c:9f:05:ec:bf:48:4e:a7:09:ca:
38:41:7c:8c:0e:a9:91:b1:ff:d6:11:e4:d8:bd:f6:a4:53:79:
c4:8d:65:9a:e8:c6:7e:c6:62:6c:77:d2:0e:1e:94:90:aa:5f:
6d:d2:71:d4:a7:17:f3:f9:62:92:9e:30:de:1a:f8:5b:db:91:
c6:ba:b8:d9:34:38:73:dd:7f:12:f8:62:0e:10:51:69:a2:ad:
6e:2b:29:70:26:75:d8:20:98:32:37:e8:2c:7f:87:de:24:21:
12:02:3b:a8:12:a6:35:d0:db:70:01:d4:22:f5:83:40:25:aa:
cf:cf:ae:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org