Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8BRgU03wO8cNgHwQwDsYxT4VyKA.roa
File: 8BRgU03wO8cNgHwQwDsYxT4VyKA.roa (raw, json)
Hash identifier: LYu4N0IQdyhwlA27igl3sxtzC2zrx6But79GN/anFSM=
Subject key identifier: F0:14:60:53:4D:F0:3B:C7:0D:80:7C:10:C0:3B:18:C5:3E:15:C8:A0
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0188BA13DAB8F9F44FECD8639DFA5BAB078C
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8BRgU03wO8cNgHwQwDsYxT4VyKA.roa
Signing time: Wed 14 Jun 2023 13:24:03 +0000
ROA not before: Wed 14 Jun 2023 13:24:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 109.71.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 14:19:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ba:13:da:b8:f9:f4:4f:ec:d8:63:9d:fa:5b:ab:07:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jun 14 13:24:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f01460534df03bc70d807c10c03b18c53e15c8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2c:b1:c5:82:66:e1:81:be:ae:c2:c5:f3:67:
41:8a:dd:fe:a4:d1:98:0a:6e:15:ed:aa:c3:0a:b8:
8f:7c:3d:50:bc:f4:54:e6:de:64:9b:32:8a:c2:aa:
35:89:e4:6b:91:6d:28:d9:4f:03:99:52:d5:d3:cf:
bb:9b:5b:1a:ab:36:a7:f3:bf:c7:29:d1:d5:70:4d:
1c:f0:fb:0d:27:8c:0a:fb:cc:72:6d:da:de:c2:7d:
38:13:8e:53:3f:02:9f:b1:79:ff:df:a9:cd:bb:c5:
ae:c7:cb:50:55:d1:f1:5f:d2:fa:21:e4:72:ab:85:
2d:a0:cd:20:bd:48:9b:27:a6:e1:cf:7a:38:be:2f:
43:5e:d3:b4:ea:0d:da:8e:18:aa:de:80:1a:91:31:
1c:13:0a:4b:68:25:a7:24:9a:fe:ce:77:10:3c:09:
1f:9c:53:b4:76:ca:27:2d:54:b2:11:6b:95:39:2e:
71:a7:be:ca:8d:e7:e4:fb:be:d9:b1:d7:9b:00:bc:
69:b2:68:5c:6b:81:81:47:cc:73:ed:32:2d:aa:5c:
e1:6a:c6:34:c7:3f:7b:02:df:5e:82:a6:91:f1:a1:
6b:4a:de:8b:a8:94:ac:6f:73:84:fa:1c:c6:0c:9f:
0b:f1:75:69:5c:bb:be:94:69:7a:fc:87:7d:cd:50:
b8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:14:60:53:4D:F0:3B:C7:0D:80:7C:10:C0:3B:18:C5:3E:15:C8:A0
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8BRgU03wO8cNgHwQwDsYxT4VyKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.254.0/24
Signature Algorithm: sha256WithRSAEncryption
65:31:8b:16:f0:95:39:60:99:d2:d8:64:e4:87:68:fe:03:6a:
95:b6:5e:d9:82:cc:fb:df:04:8e:34:1f:9a:c1:62:b3:53:be:
33:02:d1:91:e0:ee:0e:3b:c4:a7:d8:20:a5:95:84:3b:c0:c6:
4d:97:85:bb:65:0a:69:72:a1:bd:4f:ec:d9:59:2b:d5:60:1e:
22:34:86:16:79:a6:2d:5e:b0:e9:3e:06:0c:c9:c9:a2:45:a4:
ab:4d:42:8c:4e:30:7a:01:32:4d:fc:70:27:36:a0:7c:80:17:
07:14:2c:3b:a8:be:e8:c8:7e:8e:8b:46:32:09:af:bc:b5:53:
62:83:08:6e:4f:36:12:12:8f:53:b9:8f:6e:f9:40:06:ff:7a:
50:f9:b8:15:5a:03:21:a3:94:dc:76:af:c1:01:c5:eb:41:20:
b7:0b:2e:b1:58:d4:b7:6c:86:23:19:b4:92:88:e5:15:93:48:
9f:c1:df:e7:39:fb:c5:66:59:46:02:95:41:85:f9:b7:05:9f:
3f:69:a1:9c:b1:2b:6b:5e:c2:63:28:8e:55:fb:05:80:b4:41:
fe:d7:2f:9c:02:dc:83:d7:97:df:96:36:91:a2:ef:6c:d8:a6:
51:f0:41:7d:5b:64:8d:21:8b:91:04:a7:a6:75:bf:71:1c:f0:
fd:ce:56:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org