Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/64Xx3LTDooucpV_KSV6qgHwAv2g.roa
File: 64Xx3LTDooucpV_KSV6qgHwAv2g.roa (raw, json)
Hash identifier: GGBUb4DqEgql1jcnkJJsjp3De9t9h2YbfwUiQz3mlYk=
Subject key identifier: EB:85:F1:DC:B4:C3:A2:8B:9C:A5:5F:CA:49:5E:AA:80:7C:00:BF:68
Certificate issuer: /CN=0b5a5eca6cd38e921b5a14570854adb4a3b69238
Certificate serial: 018572D5CB33E357474861C04489D583D781
Authority key identifier: 0B:5A:5E:CA:6C:D3:8E:92:1B:5A:14:57:08:54:AD:B4:A3:B6:92:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1peymzTjpIbWhRXCFSttKO2kjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/64Xx3LTDooucpV_KSV6qgHwAv2g.roa
Signing time: Mon 02 Jan 2023 14:14:51 +0000
ROA not before: Mon 02 Jan 2023 14:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1930
IP address blocks: 192.207.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 13:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:cb:33:e3:57:47:48:61:c0:44:89:d5:83:d7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5a5eca6cd38e921b5a14570854adb4a3b69238
Validity
Not Before: Jan 2 14:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb85f1dcb4c3a28b9ca55fca495eaa807c00bf68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:c4:17:24:37:a6:29:bd:c4:9e:0e:fd:62:
c4:12:41:f1:c5:db:0f:95:34:15:3f:6f:a5:4c:88:
98:16:63:94:d5:b4:e7:66:0d:9a:16:87:82:3e:b2:
79:b4:98:ed:1d:ec:dd:42:23:78:a5:72:44:91:2f:
56:ad:67:6f:1c:fb:fb:2e:c8:88:f4:f3:81:89:7a:
99:7a:a4:be:76:03:1c:af:8d:45:81:9d:bd:55:68:
83:ed:ee:19:af:27:b6:dc:dd:c0:b1:4a:ee:11:1d:
79:80:09:fe:75:04:86:c2:80:81:fe:06:26:3a:8e:
7e:ec:b0:e5:58:fa:43:8d:6c:e2:71:4d:4d:50:55:
dd:13:66:00:6c:97:a0:0f:4f:2a:3d:e1:2f:91:d7:
aa:c4:9d:12:08:f4:fa:e6:14:31:03:03:9b:ac:04:
fd:67:49:24:cb:71:1a:48:9d:12:51:83:eb:f9:f5:
da:49:7f:75:b5:3d:6d:21:6d:f4:d0:eb:7e:2d:ff:
ad:ac:15:16:6b:cb:21:b1:8f:2f:8c:07:35:7b:c1:
0b:29:28:fa:10:d3:d7:23:45:ee:c3:b6:01:b9:c9:
03:6a:88:9d:75:6a:c4:99:6f:c6:7a:d9:7e:59:6c:
ec:94:23:6e:14:bd:a9:aa:52:62:46:0d:21:f1:81:
75:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:85:F1:DC:B4:C3:A2:8B:9C:A5:5F:CA:49:5E:AA:80:7C:00:BF:68
X509v3 Authority Key Identifier:
keyid:0B:5A:5E:CA:6C:D3:8E:92:1B:5A:14:57:08:54:AD:B4:A3:B6:92:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1peymzTjpIbWhRXCFSttKO2kjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/64Xx3LTDooucpV_KSV6qgHwAv2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc4e4d-ae22-4147-ac87-e0d914c1cb50/1/C1peymzTjpIbWhRXCFSttKO2kjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.207.196.0/24
Signature Algorithm: sha256WithRSAEncryption
64:4d:45:56:43:39:7e:de:cc:32:b2:4d:0d:03:98:90:79:60:
b1:9a:71:21:10:98:ee:00:ae:cf:02:08:e4:ba:f1:a9:bf:b8:
45:e1:1a:38:9f:8c:33:6b:9e:42:8b:f6:29:dd:ca:4b:7f:79:
12:a3:3f:91:26:62:1e:68:79:b3:6f:8e:43:d1:ff:a1:8d:3d:
27:40:1b:68:47:b8:a7:af:d4:19:bf:88:0a:b5:ca:f6:7e:37:
26:b8:02:05:e0:eb:26:f2:7f:ca:d6:09:5e:70:a1:b4:b9:75:
fb:81:85:36:07:99:bc:48:46:b1:30:99:09:fe:af:54:da:a5:
22:03:64:bc:5c:d4:92:ea:46:69:cd:6a:a9:9e:40:75:41:61:
9a:92:7c:47:36:5f:a5:b4:fb:f1:f2:95:39:68:91:fc:d7:2f:
55:0b:d9:d1:99:35:87:d4:7e:bb:b8:8e:c9:c2:1c:71:ea:df:
e0:dc:60:17:89:7b:fc:fe:6a:f4:9c:1a:b8:33:3f:d2:3b:d3:
0b:6a:61:1d:d7:13:06:12:96:ba:70:76:15:93:40:ca:ed:54:
5d:b3:53:8d:15:1f:cf:86:2a:e1:b4:89:c9:22:43:b4:ec:68:
ef:ab:ee:40:38:f7:11:80:e7:3f:2e:de:b7:46:8d:3c:01:8f:
0b:ef:74:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:00 2024 by rpki-client on console-ams.rpki-client.org