Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/8oIJUwOCFgMMj00jAog3vRucRxA.roa
File: 8oIJUwOCFgMMj00jAog3vRucRxA.roa (raw, json)
Hash identifier: SxRXbIzMr2JlmYm8qlbLXcXmvYwubDw7NKdiMFtdlMs=
Subject key identifier: F2:82:09:53:03:82:16:03:0C:8F:4D:23:02:88:37:BD:1B:9C:47:10
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018BAE19A4A5D9699F756605D37F7F30BB00
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/8oIJUwOCFgMMj00jAog3vRucRxA.roa
Signing time: Wed 08 Nov 2023 08:43:17 +0000
ROA not before: Wed 08 Nov 2023 08:43:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 192.94.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Dec 2023 02:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:19:a4:a5:d9:69:9f:75:66:05:d3:7f:7f:30:bb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Nov 8 08:43:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2820953038216030c8f4d23028837bd1b9c4710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:0d:14:ce:15:c2:05:8a:04:93:d8:58:ab:
cd:93:5d:30:d6:b8:e0:83:c7:c8:00:34:f1:e3:cb:
87:63:88:51:93:6a:d6:c7:5d:b7:4e:67:11:2a:dc:
8f:5d:c6:e2:b9:0d:08:28:33:ae:02:bc:45:f9:b7:
62:f8:0d:3c:d5:89:01:fd:98:8e:31:64:ef:01:3c:
d7:31:6e:70:a1:d6:ab:87:d1:e0:1c:f8:99:c4:f0:
dd:f2:e6:eb:9d:2f:05:7a:0f:b4:ff:43:eb:9d:f3:
47:89:8f:d4:58:17:25:92:2c:a1:59:50:ab:ca:4b:
eb:50:c3:53:ea:fb:a1:68:0f:60:61:0e:1b:62:2c:
dd:08:c7:2a:62:24:f5:2a:72:26:45:2f:17:53:32:
a6:c8:1d:c2:ce:a5:b2:9d:17:d7:72:aa:cc:69:3d:
8a:36:d3:c1:96:a0:e2:ac:f7:f9:88:9f:cd:16:97:
aa:a9:4e:34:84:f5:60:50:74:5a:a2:79:31:3e:58:
80:b9:b3:5d:41:ef:14:68:ed:17:95:33:ab:1c:27:
f5:b6:06:f2:38:cd:11:f7:1d:89:1c:16:24:ac:f7:
c9:8f:74:fe:8f:50:55:f3:81:a2:f0:d8:6c:1d:9c:
1a:fd:58:b9:de:3d:74:ec:d1:86:ba:d1:6d:02:9e:
1b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:82:09:53:03:82:16:03:0C:8F:4D:23:02:88:37:BD:1B:9C:47:10
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/8oIJUwOCFgMMj00jAog3vRucRxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.94.58.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:6b:c9:ec:f6:98:94:cb:60:01:23:8b:45:70:39:b8:85:27:
90:5a:3f:e6:7f:04:89:76:12:a5:17:fe:f2:34:f2:39:bc:db:
95:bb:f1:f1:69:56:18:57:4e:dd:42:a6:a0:4d:ec:b1:c2:e0:
44:95:67:62:4e:ee:0d:57:60:27:a5:c8:7a:32:a8:af:55:89:
de:15:aa:59:05:59:d6:58:60:fc:73:e6:40:e0:e1:06:06:39:
3e:ee:2e:f9:6b:54:d0:e6:f4:6b:5b:f5:62:cf:f3:5b:76:1c:
76:d8:1c:08:32:4c:c0:cd:cd:7e:7c:54:13:a9:48:3a:56:c8:
4d:3e:aa:3c:34:0a:2c:99:4d:db:7b:37:20:4e:a9:00:43:7d:
51:72:f1:eb:2d:67:c1:18:15:df:f3:f8:0c:f2:c5:9c:0b:89:
7e:52:1e:0c:40:a7:7e:1f:bc:66:0f:ff:01:fe:fe:2f:ad:8a:
9f:11:66:08:f1:e7:74:00:48:3c:92:bd:3e:76:8f:9b:ab:76:
23:42:88:1c:5c:5e:05:79:81:8a:ab:d2:e9:c2:d8:34:16:0a:
a6:1a:1e:e6:8e:63:ac:91:f8:18:fe:bf:b5:78:d3:0d:49:2a:
44:14:06:6b:a2:cd:7a:76:ae:7e:fe:3e:26:25:b2:2d:f3:72:
b6:e3:91:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org