Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/k86Z-0YnSCDHNuQg3dVBXy7f8tI.roa
File: k86Z-0YnSCDHNuQg3dVBXy7f8tI.roa (raw, json)
Hash identifier: 4xl+7DMhAqM3EEAleoZpUiqlLjeLWdIFFCSU3IEL6eg=
Subject key identifier: 93:CE:99:FB:46:27:48:20:C7:36:E4:20:DD:D5:41:5F:2E:DF:F2:D2
Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71
Certificate serial: 0185706747DAF06E9A49CE7AE619146F81AA
Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/k86Z-0YnSCDHNuQg3dVBXy7f8tI.roa
Signing time: Mon 02 Jan 2023 02:54:54 +0000
ROA not before: Mon 02 Jan 2023 02:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49081
IP address blocks: 188.92.32.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:47:da:f0:6e:9a:49:ce:7a:e6:19:14:6f:81:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71
Validity
Not Before: Jan 2 02:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ce99fb46274820c736e420ddd5415f2edff2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:23:ef:4a:3d:6b:e6:b8:21:f5:ad:ae:36:9e:
6c:c6:03:31:44:f4:5f:df:72:6a:83:6a:1d:6e:0a:
9a:81:5b:77:a3:7d:28:68:bc:58:c8:13:80:3c:08:
38:76:e4:4c:38:00:44:7e:d1:02:de:9c:d7:69:bb:
82:16:41:4d:eb:48:6b:90:54:2c:4b:5a:b4:f6:87:
f1:2f:01:e5:7c:8b:5e:d7:7c:0d:ed:8b:c7:ef:f5:
a9:57:ce:cf:fd:aa:d9:02:24:e7:b2:e7:f3:99:01:
49:f7:e9:b2:dd:9e:52:b4:f5:55:c6:60:38:8e:1e:
ea:2b:1b:7f:91:c2:2c:29:80:4d:c1:a3:f7:2b:93:
94:86:a2:6b:23:0c:f3:a3:93:45:cf:8d:0d:fa:5b:
cb:2b:1c:1a:55:8c:96:38:da:c0:3f:ce:45:bc:d8:
03:5f:dd:12:ac:45:d0:40:a0:94:48:26:9c:6a:a2:
28:74:8f:fb:5e:79:56:50:42:50:b0:fa:db:b0:4a:
f7:47:c3:73:a8:9b:1d:bf:5c:25:a5:02:f1:87:23:
e9:bc:28:c8:61:d6:fe:fa:c2:98:1c:08:d3:b1:fb:
6a:f9:01:95:19:1d:c5:3e:d2:f8:0f:86:1e:72:d5:
fa:40:3e:15:ec:89:d3:d6:5a:cf:83:71:d1:e8:a1:
b6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CE:99:FB:46:27:48:20:C7:36:E4:20:DD:D5:41:5F:2E:DF:F2:D2
X509v3 Authority Key Identifier:
keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/k86Z-0YnSCDHNuQg3dVBXy7f8tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.92.32.0/21
Signature Algorithm: sha256WithRSAEncryption
63:0d:01:45:d5:34:9c:ec:62:aa:f3:71:4e:1c:d2:10:84:b2:
40:1e:4e:2d:77:28:ba:18:39:2d:f3:8d:86:3b:7d:3e:e4:fa:
52:ca:f8:ad:b8:38:7e:e0:37:94:de:64:14:3b:3e:c9:e8:0a:
64:63:58:fc:9b:71:10:8d:d2:11:ad:13:a6:df:bf:11:b1:c0:
4c:ea:63:d2:4a:3a:24:2e:a2:37:f7:ea:a3:5b:dc:12:90:7a:
4c:2a:a0:a9:20:47:5c:ea:c8:3c:71:bf:f5:49:a0:10:25:a5:
4a:37:bb:6f:7d:42:31:3d:a1:1b:3e:64:c8:0e:f8:d8:1f:69:
51:00:0c:31:a2:6d:37:e8:41:7e:27:b7:ca:35:26:d3:1b:cf:
e4:d6:28:87:b9:be:58:4d:2c:d2:16:f0:0b:5c:a8:c9:f1:49:
4f:6c:59:7f:78:9e:24:7e:61:01:15:53:13:f3:6b:5e:92:b3:
20:d3:41:ee:3c:58:09:ae:0e:f8:ce:75:39:35:c6:96:40:f1:
90:91:85:4e:99:b1:45:98:e1:7b:e5:f2:c2:5e:13:10:09:e0:
62:10:20:6e:e2:9b:23:18:52:46:a3:9e:1c:32:9d:10:16:2d:
a2:eb:92:66:51:85:96:ed:83:5d:37:cb:10:b6:99:73:fc:21:
c9:3c:14:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:38 2024 by rpki-client on console-fra.rpki-client.org