Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/kRdqhlCp4YdXKK2obFw0vkRHxc8.roa
File: kRdqhlCp4YdXKK2obFw0vkRHxc8.roa (raw, json)
Hash identifier: 04twc1XSgGpfFyJN/Ciw4Qkf7pC/iUKFa3K+4KiyqL8=
Subject key identifier: 91:17:6A:86:50:A9:E1:87:57:28:AD:A8:6C:5C:34:BE:44:47:C5:CF
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01856EA6A70D35AAEC628E0CE809A43B8273
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/kRdqhlCp4YdXKK2obFw0vkRHxc8.roa
Signing time: Sun 01 Jan 2023 18:44:53 +0000
ROA not before: Sun 01 Jan 2023 18:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24768
IP address blocks: 188.208.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 Mar 2023 09:52:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:a7:0d:35:aa:ec:62:8e:0c:e8:09:a4:3b:82:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Jan 1 18:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91176a8650a9e1875728ada86c5c34be4447c5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:df:da:ce:f5:23:6e:a5:21:56:49:41:1f:74:
97:43:d3:87:98:ea:86:0d:9a:ae:5c:6d:5a:d2:99:
32:75:0b:a0:bc:f6:10:af:27:f0:c1:ac:3e:d9:30:
0a:b4:f9:b5:ad:18:fa:c6:ba:4d:64:2b:e8:8a:d8:
a8:62:01:61:66:e5:6e:38:3d:c5:1e:0f:dc:cb:ab:
8b:62:d0:5d:be:e7:4a:95:d1:d7:da:15:2e:96:70:
37:55:c0:b7:4a:90:7d:dd:8a:af:4c:21:8a:62:0e:
cc:87:18:0b:66:c7:27:9a:28:75:bd:f3:c5:5c:6b:
6d:ef:27:a8:60:10:00:5e:30:14:57:60:42:7e:7a:
3c:a6:d9:07:e8:10:c8:70:11:83:f8:c1:3e:45:3a:
e0:aa:8a:8f:c3:2c:32:d7:de:57:b9:ef:42:31:66:
88:17:d6:e1:ea:6e:7c:8c:38:2a:28:0e:7f:2c:96:
87:1c:f9:7f:58:73:3d:fe:22:7c:c3:e9:c5:43:02:
66:47:15:81:d0:27:eb:7b:e5:f2:0d:de:5b:e9:02:
0d:99:79:1c:d0:b4:19:6d:23:8a:2d:31:1b:1a:0c:
63:f0:34:38:3c:95:b2:51:97:77:d6:a8:e5:b8:d2:
26:47:90:43:24:18:48:57:34:09:f2:74:09:de:d6:
a8:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:17:6A:86:50:A9:E1:87:57:28:AD:A8:6C:5C:34:BE:44:47:C5:CF
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/kRdqhlCp4YdXKK2obFw0vkRHxc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.143.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6d:c1:0a:ca:ab:6d:62:cc:05:33:7d:77:73:ba:48:67:ce:
74:4d:26:be:b9:90:fb:30:7a:18:4c:c6:a3:67:69:c8:25:95:
90:b6:02:23:19:aa:09:2f:4e:c1:44:d9:40:03:93:0f:54:d1:
8c:cf:e9:4a:ae:22:15:42:e0:fe:70:3f:a0:50:dd:4a:5f:88:
92:4f:7d:a2:b7:2c:0b:db:a9:cd:2b:5a:6d:50:6c:a1:03:3e:
76:4f:70:56:dd:23:c5:51:1c:2c:28:40:7c:77:00:03:b3:fb:
ee:17:d5:2a:af:6b:5b:a4:89:56:7b:ac:d4:15:2f:94:89:9e:
47:d7:c7:f8:ac:06:7f:42:be:6b:dc:fa:b3:4b:5d:1f:28:24:
e0:9b:ed:5a:ed:17:e1:ff:f9:3a:8d:ab:3f:f3:b9:ab:a7:f6:
54:d8:59:bb:d5:d0:e3:0a:73:06:45:e3:09:31:e1:e4:33:c0:
42:32:3c:b6:94:8d:ff:d3:3d:15:03:3e:57:dc:57:ef:d3:1a:
ba:db:33:0f:89:e7:91:72:11:93:cc:c5:9a:82:c6:97:05:5c:
87:de:14:8e:2b:2c:d6:23:3e:86:4d:e3:42:21:47:f6:a4:c9:
06:1c:54:38:4f:0d:cc:aa:14:ad:4b:c1:48:38:ac:d0:a2:7d:
8b:06:66:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org