Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/1-8mhXUp6EijWkcDoVUdIUGArpCI.roa
File: 1-8mhXUp6EijWkcDoVUdIUGArpCI.roa (raw, json)
Hash identifier: zfuiJMNGKh+TW0kjlZavaosE4+WRGQr1QNTsNeSvDDU=
Subject key identifier: FB:C9:A1:5D:4A:7A:12:28:D6:91:C0:E8:55:47:48:50:60:2B:A4:22
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 018C90FE0E854C996ADBCDB024D223D5889D
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/1-8mhXUp6EijWkcDoVUdIUGArpCI.roa
Signing time: Fri 22 Dec 2023 10:06:58 +0000
ROA not before: Fri 22 Dec 2023 10:06:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 193.39.188.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:fe:0e:85:4c:99:6a:db:cd:b0:24:d2:23:d5:88:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Dec 22 10:06:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbc9a15d4a7a1228d691c0e855474850602ba422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0f:9b:93:64:56:78:e0:cb:ff:85:33:35:26:
7a:47:cd:b0:21:09:98:e9:9a:f5:53:26:dd:dd:69:
d3:77:a0:0d:d5:63:96:22:d3:81:77:02:16:30:99:
8b:87:cd:1d:6e:84:27:ef:34:99:cb:4f:fb:b3:66:
cb:0f:12:44:f8:76:ff:06:64:0e:fe:1a:d6:b9:e9:
6e:2a:29:b7:e3:33:20:f8:fc:6e:e4:28:f4:78:07:
56:02:f0:24:0b:38:06:a0:d4:8f:3a:52:ec:1d:56:
b8:fa:84:e6:94:16:38:38:bd:87:42:82:0b:bb:47:
fd:00:92:d4:43:8d:ac:0f:0a:0d:21:67:7f:9c:47:
d4:d7:5e:7f:64:d9:f2:c1:80:ac:20:ad:bb:5d:b8:
c3:d1:58:01:56:9e:5d:36:93:01:97:6a:b0:43:c1:
d1:ad:85:07:1b:6c:9e:c8:bf:b8:97:ed:a3:95:88:
a0:fa:8f:c6:1a:95:68:81:9c:1d:a1:b5:6f:70:a0:
26:41:e6:7d:73:7b:48:18:d6:44:77:71:08:89:1a:
f6:3a:7c:14:6a:65:48:f4:0d:56:32:47:2d:55:28:
be:85:18:5d:87:8e:d1:7d:88:2e:09:72:bc:58:9e:
ab:49:bb:4c:1d:d2:15:f5:0c:30:ef:a9:3a:01:cc:
57:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C9:A1:5D:4A:7A:12:28:D6:91:C0:E8:55:47:48:50:60:2B:A4:22
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/1-8mhXUp6EijWkcDoVUdIUGArpCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.188.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:00:4b:1e:90:e1:8e:ec:f1:d5:a5:ba:a3:04:33:61:f2:81:
eb:3b:62:a1:a5:f2:33:25:f0:e7:f4:b5:50:82:a2:90:1a:16:
1e:75:91:06:8a:b4:87:01:df:29:27:6e:4b:31:50:72:2f:ed:
36:d8:77:a0:9a:0e:69:ef:94:5f:6b:c9:ca:e4:c4:34:73:66:
ea:46:2c:bd:59:99:d1:b9:8d:db:61:56:ca:1c:fa:32:91:d0:
e2:54:fa:4b:53:a7:3b:fb:f6:e7:43:12:46:ad:83:6e:33:20:
c7:f5:fd:28:e6:90:3e:d9:1d:75:4d:57:fa:15:bd:b6:49:11:
82:07:b1:ef:36:86:80:65:dd:ef:bf:57:80:3f:94:8f:e3:fb:
82:ee:58:f7:c4:e9:0e:ec:b7:70:69:26:00:51:a5:79:77:37:
fe:69:d7:84:a5:f9:51:47:9b:6b:ed:be:b2:5e:6c:5b:91:21:
4d:4d:8a:5c:82:0e:66:c7:46:90:fc:15:ca:81:92:41:3e:ca:
e9:c0:f1:e4:e5:30:63:e0:85:4f:66:93:4d:72:b5:6e:0b:26:
21:fe:e3:af:c0:25:a7:86:a4:c5:4b:7c:89:71:d1:33:6b:a5:
c2:13:a0:cb:c7:d2:74:89:60:fc:ee:0e:24:82:6b:ed:5f:70:
e1:94:51:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:26 2024 by rpki-client on console-fra.rpki-client.org