Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/g_1ERoN8t-jGvcyH31-gtP--jQ8.roa
File: g_1ERoN8t-jGvcyH31-gtP--jQ8.roa (raw, json)
Hash identifier: n1GkDMfmlRERa/12FYh6AiNd23CbuybI45sdSiZstcw=
Subject key identifier: 83:FD:44:46:83:7C:B7:E8:C6:BD:CC:87:DF:5F:A0:B4:FF:BE:8D:0F
Certificate issuer: /CN=16058d28430c4e49e61a58af4fd7a6f656edfd9e
Certificate serial: 0188D81DC1D15C2701591AEBE481A67B34F3
Authority key identifier: 16:05:8D:28:43:0C:4E:49:E6:1A:58:AF:4F:D7:A6:F6:56:ED:FD:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgWNKEMMTknmGlivT9em9lbt_Z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/g_1ERoN8t-jGvcyH31-gtP--jQ8.roa
Signing time: Tue 20 Jun 2023 09:23:28 +0000
ROA not before: Tue 20 Jun 2023 09:23:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211385
IP address blocks: 193.107.12.0/24 maxlen: 24
2a10:f240::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:1d:c1:d1:5c:27:01:59:1a:eb:e4:81:a6:7b:34:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16058d28430c4e49e61a58af4fd7a6f656edfd9e
Validity
Not Before: Jun 20 09:23:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83fd4446837cb7e8c6bdcc87df5fa0b4ffbe8d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:64:6f:a8:5f:cc:7a:60:c5:20:3f:75:a6:ab:
76:0e:14:f6:fd:10:8f:34:3f:83:fb:87:35:83:70:
45:a7:a8:6f:09:00:e1:f5:6a:49:3e:81:a0:90:63:
89:8f:02:65:d5:17:32:7f:db:a3:e2:90:a9:bd:d0:
ad:20:1d:25:79:de:69:02:45:06:fb:aa:92:9d:40:
b2:46:f9:a6:39:56:da:dc:3a:4e:5e:43:72:91:00:
c3:7a:5f:15:a6:b0:23:17:31:14:39:25:b4:79:23:
35:f0:2b:c6:15:12:5f:b5:94:03:70:bc:ee:2d:db:
05:b5:65:d2:cb:7d:2f:a6:8f:6f:db:38:da:77:84:
a7:86:c5:af:93:e9:85:33:a5:f9:21:88:66:87:a5:
cb:45:1f:77:0f:6e:a5:8b:d8:29:97:c3:32:04:45:
0c:6d:74:7e:0e:f1:29:e2:50:b8:b5:b3:a6:b0:af:
55:53:66:71:b0:2a:0b:01:26:c8:0f:90:e0:55:cb:
72:00:ef:c4:bb:26:c7:07:4f:62:09:f4:1d:38:5f:
e5:ab:77:7a:31:fb:24:41:a6:a7:87:4f:53:c5:67:
91:8c:d8:47:b3:c5:2d:ba:98:e0:64:21:64:e6:bc:
93:13:7a:9a:e7:09:74:de:37:f5:f4:bc:bc:2b:70:
31:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:FD:44:46:83:7C:B7:E8:C6:BD:CC:87:DF:5F:A0:B4:FF:BE:8D:0F
X509v3 Authority Key Identifier:
keyid:16:05:8D:28:43:0C:4E:49:E6:1A:58:AF:4F:D7:A6:F6:56:ED:FD:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgWNKEMMTknmGlivT9em9lbt_Z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/g_1ERoN8t-jGvcyH31-gtP--jQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/FgWNKEMMTknmGlivT9em9lbt_Z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.12.0/24
IPv6:
2a10:f240::/29
Signature Algorithm: sha256WithRSAEncryption
64:02:5d:04:23:07:3a:93:cf:c0:67:77:b8:6d:2b:b1:38:f9:
01:bc:fb:33:41:7c:02:8f:26:c5:da:b2:40:07:36:23:eb:39:
b6:8b:e9:83:f6:67:97:ee:f0:bb:b0:db:14:3a:ea:d7:78:45:
0a:f7:eb:a3:8b:34:88:36:6b:fc:c8:fc:5a:29:01:f0:a6:87:
29:5b:09:a4:8c:b6:aa:6b:bb:f7:55:b4:63:c8:ba:9a:68:77:
3d:fb:cb:84:3f:13:35:9e:7b:5c:7d:f7:57:1a:c0:50:85:02:
73:be:92:dd:6e:60:0f:49:32:be:73:02:17:97:77:88:7d:dc:
6c:73:76:59:1d:6f:d9:44:c4:8e:75:1a:d6:6a:0b:67:8e:03:
cd:17:46:90:4d:10:d1:b8:31:43:32:a5:f3:51:1b:ed:f0:8b:
a7:65:67:49:f3:c2:e2:26:4d:37:aa:28:df:ec:3b:6c:5c:71:
9a:dd:37:02:56:d9:8f:70:84:0f:ee:fa:b9:a1:27:73:c6:3c:
15:2f:04:40:96:41:bc:0e:8b:9e:23:9f:10:5f:ef:bd:40:30:
62:1f:a6:3d:e9:75:c5:16:07:b6:a0:dc:c0:f8:f4:d8:2d:07:
23:82:3c:88:40:c0:be:fb:0c:52:05:87:55:6b:e4:fa:09:83:
4f:a7:01:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:39 2024 by rpki-client on console-ams.rpki-client.org