Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/k6ui6mZ6izrZcAeCEgG5bS7MgXs.roa
File: k6ui6mZ6izrZcAeCEgG5bS7MgXs.roa (raw, json)
Hash identifier: ua4ZZQdGRJS+g4MZHT1cMbZm46iGig27J6gusopyATA=
Subject key identifier: 93:AB:A2:EA:66:7A:8B:3A:D9:70:07:82:12:01:B9:6D:2E:CC:81:7B
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 01856F66FFA7473AF7C593638A7FE601BDAE
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/k6ui6mZ6izrZcAeCEgG5bS7MgXs.roa
Signing time: Sun 01 Jan 2023 22:14:59 +0000
ROA not before: Sun 01 Jan 2023 22:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58909
IP address blocks: 188.42.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ff:a7:47:3a:f7:c5:93:63:8a:7f:e6:01:bd:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: Jan 1 22:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93aba2ea667a8b3ad97007821201b96d2ecc817b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ec:ed:2d:6a:b9:6b:38:5d:da:c2:ed:74:ee:
92:42:be:84:7c:e5:ac:d9:77:c7:26:53:d7:90:4e:
53:5b:2d:ab:b3:db:92:f7:27:3e:0b:e1:20:5c:ef:
95:04:79:9e:32:09:12:31:15:3b:2a:f9:15:58:3b:
e4:a8:91:7b:f3:50:bb:e6:d9:c0:31:b5:14:9a:74:
d7:c8:0e:b0:91:0f:de:6d:ad:19:da:a8:d5:f3:75:
f7:78:d0:02:fb:8b:4b:d1:83:19:59:99:15:05:67:
34:cf:80:6a:10:bb:53:d2:c8:00:ac:51:94:c5:f7:
c6:64:04:b5:b2:97:23:f8:c0:bd:11:2e:69:69:5a:
6f:37:77:8d:2f:9e:88:39:0b:15:d5:97:8b:b8:7f:
31:94:ba:e2:b4:a5:bf:38:90:8b:4b:48:80:2f:8b:
89:50:17:4d:69:30:26:36:55:f0:86:c1:c9:11:b5:
c9:91:a3:4b:5b:84:76:3a:01:0e:38:af:14:f6:95:
3e:4c:8c:a6:8d:f4:65:57:9d:bb:c2:92:88:a5:66:
ec:6e:c6:86:f3:7e:b2:d4:3b:f1:41:03:7a:74:46:
a8:b0:58:c6:45:55:65:2a:07:a0:9f:3f:40:f6:58:
98:e6:bd:6d:e8:81:9f:01:e6:ac:84:c7:0e:f3:d6:
88:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:AB:A2:EA:66:7A:8B:3A:D9:70:07:82:12:01:B9:6D:2E:CC:81:7B
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/k6ui6mZ6izrZcAeCEgG5bS7MgXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.42.96.0/23
Signature Algorithm: sha256WithRSAEncryption
90:24:fc:d3:a4:50:30:00:35:28:5b:45:95:fa:5b:a6:b7:77:
b7:2e:d4:16:43:27:f9:2f:69:3c:a0:ea:38:ae:50:35:9e:7b:
05:06:de:89:07:a3:a5:33:ed:b6:3a:b3:6d:60:37:46:bc:e4:
c4:04:e6:13:2d:96:46:4c:aa:89:42:58:7e:1f:08:3b:9f:df:
b2:68:e7:9e:b7:79:0e:c2:df:93:65:62:59:74:81:96:80:c9:
c8:8e:29:87:76:8b:35:90:88:91:94:7b:51:8e:b0:98:a7:a5:
8b:9e:e4:be:09:2f:c8:9e:7e:5f:b4:67:4f:3c:7f:0b:08:02:
f8:da:a4:15:d6:15:d4:0f:10:2c:9d:77:27:1a:95:fc:3a:d4:
41:50:e5:84:2d:23:26:ec:18:2a:7f:4c:af:22:d0:ef:8a:5b:
84:cd:b7:8a:28:2d:d4:c9:3e:e3:0a:f4:bf:9c:d8:ad:15:24:
32:03:88:ad:f7:59:09:28:31:d6:80:c2:47:c6:d7:bc:1a:a4:
f5:c1:cb:f9:21:57:4d:23:a9:8a:1c:be:6e:dd:fd:2b:1c:bb:
e3:fa:63:ff:48:84:fe:05:1d:aa:bf:d2:01:70:2a:ca:a0:35:
b9:0c:d0:d5:f6:fc:91:e3:4a:ef:1e:3d:18:9f:b2:7e:12:9f:
57:66:5e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:14 2024 by rpki-client on console-ams.rpki-client.org