Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/lO-tXvMuglfNGL21h1IVHL35TzY.roa
File: lO-tXvMuglfNGL21h1IVHL35TzY.roa (raw, json)
Hash identifier: 09D3NufewNnGxDBFWSa+GBwNiqDxqhENQ0b03gwrG6k=
Subject key identifier: 94:EF:AD:5E:F3:2E:82:57:CD:18:BD:B5:87:52:15:1C:BD:F9:4F:36
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018B0E9DBFEF9FA7B5DB6FB924AAE09E86EC
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/lO-tXvMuglfNGL21h1IVHL35TzY.roa
Signing time: Sun 08 Oct 2023 09:28:21 +0000
ROA not before: Sun 08 Oct 2023 09:28:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212504
IP address blocks: 192.94.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 08:43:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0e:9d:bf:ef:9f:a7:b5:db:6f:b9:24:aa:e0:9e:86:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Oct 8 09:28:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94efad5ef32e8257cd18bdb58752151cbdf94f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:16:67:ef:7e:c3:d2:4e:86:10:3b:4e:10:48:
d9:86:44:e5:d7:bd:0a:fa:f5:80:4f:ac:bf:30:f2:
d6:f6:05:b0:4b:1e:41:c3:07:7c:49:b0:80:dd:03:
38:7c:4c:4f:c6:2d:a2:a8:21:63:d4:ba:a0:9c:10:
24:5b:a1:08:03:21:6f:d0:29:bf:df:cd:8b:35:b4:
9e:f3:d7:1c:17:b5:52:2b:04:bf:5d:8a:77:d5:db:
b8:25:28:92:83:e8:15:51:2a:d0:9e:3d:cf:cc:fb:
db:e1:12:02:79:6b:29:4c:a0:29:f1:de:95:f0:70:
20:6e:89:04:6b:9f:3e:14:bf:27:e7:0d:bb:30:4c:
fd:6b:70:20:8a:90:5b:66:d0:a8:4f:40:22:28:a1:
69:95:f9:b2:f8:10:78:35:59:63:ea:62:d5:fd:fb:
b8:db:eb:23:07:b4:43:e2:83:66:6b:ae:b8:49:10:
65:c8:ad:7b:8e:84:43:ea:3f:31:82:4c:31:a3:35:
5d:47:fb:8b:3b:4f:7a:fd:3e:c8:e8:91:3d:96:84:
71:67:a0:28:16:fa:70:0d:fd:3d:4e:c8:dc:a1:49:
94:c5:7b:c3:2a:ff:00:82:2d:e5:ea:f1:ec:7d:b6:
85:ad:6a:f8:d7:6c:08:b9:46:f5:69:53:f4:32:15:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:EF:AD:5E:F3:2E:82:57:CD:18:BD:B5:87:52:15:1C:BD:F9:4F:36
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/lO-tXvMuglfNGL21h1IVHL35TzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.94.58.0/24
Signature Algorithm: sha256WithRSAEncryption
12:8f:8c:f7:cb:a4:28:3b:c7:19:92:5b:de:7a:a7:c7:d4:72:
93:0f:4a:dd:38:70:7c:32:63:e2:bc:f6:f9:e7:8d:84:04:79:
b4:f7:1a:48:56:8d:ef:ef:d9:a5:cd:6a:13:70:70:b2:e9:19:
73:e7:e6:50:3b:2a:ea:40:05:38:0c:eb:98:7d:a7:f2:04:59:
3c:2d:4b:1a:bf:68:66:15:b3:72:48:57:c4:49:b2:5e:09:28:
d4:29:f7:99:f0:f4:6e:c1:e9:f8:7c:83:e1:1a:a4:2a:9b:71:
4c:b3:91:da:cd:ac:17:15:05:a7:9c:8d:8b:2c:d0:cd:42:43:
33:ba:42:52:51:c2:9d:bb:74:94:c7:b9:2c:d3:eb:96:4b:5e:
03:bf:77:40:b5:62:e1:6b:fc:eb:00:c1:4e:c4:58:69:24:67:
f2:ad:54:80:44:45:d8:79:69:62:b2:05:4e:c7:59:a0:40:04:
94:08:be:c1:ab:3f:d5:9a:70:58:9b:e7:65:ce:5a:8f:88:55:
93:a3:63:a7:aa:4c:c5:17:11:04:54:1f:b2:55:12:90:d0:2a:
88:a2:50:17:93:09:77:eb:c1:cb:6f:e8:cf:d7:d5:8a:b5:8a:
b4:d8:8c:9a:14:1e:ac:c1:99:f5:a5:02:0d:7c:4c:67:ac:37:
23:dd:91:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org