Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/iGW2lYU64PUU9cDSXO2XKYNVocU.roa
File: iGW2lYU64PUU9cDSXO2XKYNVocU.roa (raw, json)
Hash identifier: madgXI3JwPnNsHl9kK/eKHp7UO3dOBOznL5mjhOLaw0=
Subject key identifier: 88:65:B6:95:85:3A:E0:F5:14:F5:C0:D2:5C:ED:97:29:83:55:A1:C5
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 01889842C64A9F0701FE8D777D5A6CE089D0
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/iGW2lYU64PUU9cDSXO2XKYNVocU.roa
Signing time: Wed 07 Jun 2023 23:48:12 +0000
ROA not before: Wed 07 Jun 2023 23:48:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56611
IP address blocks: 193.160.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:98:42:c6:4a:9f:07:01:fe:8d:77:7d:5a:6c:e0:89:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jun 7 23:48:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8865b695853ae0f514f5c0d25ced97298355a1c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a2:03:b4:08:a2:77:96:ac:9a:02:cc:5a:6a:
a5:8f:a5:d0:aa:d9:5b:36:c3:41:ab:20:37:ea:10:
fe:4d:ed:41:68:e7:f6:fb:47:ff:c2:3d:24:9b:e4:
23:f4:81:69:28:a3:33:4d:fc:e4:36:80:16:64:95:
cc:86:1f:00:70:9a:33:54:6d:fb:85:7a:bb:fd:64:
ab:a8:d3:bc:47:54:d9:c1:01:d0:d7:69:e2:17:d0:
d6:0d:bc:19:1c:4d:09:5b:ee:6e:32:aa:0c:a3:c0:
00:07:9a:f6:22:25:ef:59:b1:d7:38:da:6d:f1:19:
20:34:df:aa:7b:ed:7d:ad:2f:c2:df:52:e8:22:b3:
40:94:2b:21:54:da:d0:31:e9:1c:ea:2e:a3:a7:c6:
1b:84:f0:e1:65:1b:f8:87:43:f5:56:5c:55:ad:98:
9c:70:2a:69:1e:8e:65:9d:d2:fb:d2:22:99:45:81:
66:85:86:99:65:61:3d:5b:e6:52:7f:be:06:ea:4c:
86:f0:f1:59:1c:b8:87:0c:ff:a9:a8:10:bd:fd:bc:
ee:49:2f:6a:21:b4:74:3a:5d:20:1d:48:d3:3a:a4:
06:fc:90:98:14:f1:6f:8a:e7:37:5c:b8:aa:23:cf:
a1:3a:6d:bd:f6:49:63:c0:08:6e:c8:b2:75:ae:ba:
a5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:65:B6:95:85:3A:E0:F5:14:F5:C0:D2:5C:ED:97:29:83:55:A1:C5
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/iGW2lYU64PUU9cDSXO2XKYNVocU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.96.0/24
Signature Algorithm: sha256WithRSAEncryption
75:7f:99:78:f7:89:dc:ff:bd:c6:a5:88:cd:5a:14:ab:4f:cd:
0e:fc:aa:f9:26:19:f6:cb:08:2c:a2:bf:14:52:a9:44:96:7a:
79:62:78:0b:20:f8:04:2c:6c:51:65:53:4f:20:7e:5a:69:b2:
f0:09:c3:bd:95:1a:91:1f:a0:e3:54:91:5c:b5:0d:8d:19:34:
c9:fb:68:1c:a9:37:e7:ef:ef:3a:4d:4b:49:64:ff:4d:d0:6a:
b1:84:c6:f0:40:a6:18:db:2b:fa:f3:00:ae:9a:d6:fc:81:09:
1b:41:aa:fd:f3:22:b8:42:73:d7:5c:60:9e:78:c6:ec:d5:85:
1e:ef:12:c9:a0:a4:80:91:57:ce:1e:14:b1:4c:1a:0b:f0:58:
fb:f0:ff:a8:fe:e0:f3:8d:26:b3:35:13:88:45:3a:c4:32:24:
40:a3:98:16:4e:37:2b:14:1c:1e:e2:41:14:c6:78:fe:3a:ac:
e6:97:9b:86:f0:33:03:d7:56:92:51:ff:31:38:29:da:41:43:
eb:9d:d5:14:c5:07:fa:e5:94:0c:d8:df:5a:ce:0d:c8:b9:57:
fb:3b:ca:a0:59:53:f5:b2:1b:ff:0d:05:2d:ec:f3:dc:7a:b2:
db:cc:f0:98:cf:be:ad:73:b6:6a:9e:59:de:85:79:ca:8c:7b:
0f:1e:8c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org