Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bltgWgE7Gzp3qIPEkwEMJdaY5ZA.roa
File: bltgWgE7Gzp3qIPEkwEMJdaY5ZA.roa (raw, json)
Hash identifier: qPa1muMhlUgTAmu/Rn+8vDNKV368XV0ikSaMQd7itnM=
Subject key identifier: 6E:5B:60:5A:01:3B:1B:3A:77:A8:83:C4:93:01:0C:25:D6:98:E5:90
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CB4C4FFB281C00FF6069B9ED6CF754980
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bltgWgE7Gzp3qIPEkwEMJdaY5ZA.roa
Signing time: Fri 29 Dec 2023 08:50:58 +0000
ROA not before: Fri 29 Dec 2023 08:50:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201409
IP address blocks: 93.123.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b4:c4:ff:b2:81:c0:0f:f6:06:9b:9e:d6:cf:75:49:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 29 08:50:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e5b605a013b1b3a77a883c493010c25d698e590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:64:d6:cf:e3:5e:e1:c4:be:27:cb:39:30:66:
81:4c:99:5e:17:c4:9d:09:4a:6a:84:10:9a:f8:e3:
55:31:a4:d2:4b:1c:89:aa:6b:4a:23:3d:e4:28:bf:
4e:97:43:fe:e6:f0:bb:d1:60:79:e2:8a:ba:13:61:
3c:80:cf:c3:d6:ad:35:23:ea:9c:dd:a0:78:d1:c7:
2b:50:49:d7:d8:de:c2:5e:44:3d:a0:3d:7e:8d:17:
62:de:72:53:2a:54:bc:5e:47:21:ef:52:b8:f8:50:
a7:ea:39:da:61:ad:60:54:79:de:9b:c1:dd:d3:a8:
c3:0a:4f:2d:bb:d8:7f:3c:ef:0c:1b:ef:05:da:90:
f9:e8:95:8c:62:fe:63:a3:cd:02:46:16:b8:e7:96:
b8:df:42:3e:fa:ac:7e:3f:0e:d6:3c:d7:b7:22:45:
b7:8f:2d:71:6b:dd:64:3a:ae:31:03:c1:6f:d1:95:
73:dc:7d:5c:a9:8b:63:8d:a4:48:e0:79:36:7e:6b:
fd:23:e2:e0:5b:fb:c5:df:e9:1f:41:f1:00:cc:84:
c7:56:cb:e6:5f:f1:5e:39:19:d7:d6:6d:8b:c9:22:
89:a6:96:ad:e3:f2:7e:2e:18:2c:95:16:38:07:c3:
c2:4c:aa:81:70:f2:6a:0e:6b:6b:4a:c3:2e:42:9a:
65:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5B:60:5A:01:3B:1B:3A:77:A8:83:C4:93:01:0C:25:D6:98:E5:90
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/bltgWgE7Gzp3qIPEkwEMJdaY5ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.123.118.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d9:3e:20:40:2f:47:38:6a:ae:82:18:b6:4a:63:d3:6b:a7:
9e:79:83:11:f1:e4:6e:2e:c1:b0:ec:78:1b:2b:15:0b:90:27:
02:98:60:14:47:43:0c:91:9d:ef:b2:ef:0d:c9:fe:81:4c:20:
89:c0:81:85:36:f8:0b:10:ad:43:41:d7:5e:90:f0:65:ad:1f:
84:db:fa:6a:46:64:9f:86:6c:4b:77:87:aa:40:bb:ca:13:95:
c0:81:2b:14:09:3b:be:2e:57:5a:03:2a:b0:49:ec:1e:32:37:
d6:c0:25:f1:8e:13:4f:30:29:b3:12:48:25:c9:d2:e6:cc:70:
7b:8a:0d:b3:b0:41:cf:19:29:56:80:84:a5:2d:c4:7f:f6:b9:
d0:9a:52:0a:81:0d:ca:8e:d2:55:13:28:75:9d:9f:38:1e:d8:
22:59:b9:cd:d4:cd:d1:48:43:07:17:61:ad:be:c1:6d:0d:a2:
a3:46:0e:5e:fb:e8:72:8e:f5:97:b7:a3:a6:92:23:ea:34:28:
e3:7e:a9:7a:7d:b1:89:96:a9:5f:29:01:d7:4e:3e:e2:63:76:
7c:c8:52:1a:e6:7d:b7:03:08:00:ed:2e:fd:eb:16:8a:2f:91:
b8:e6:bf:bc:d6:61:66:59:04:20:64:8a:47:92:c1:61:20:35:
34:87:fc:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:15 2024 by rpki-client on console-fra.rpki-client.org