Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/lSbLbCNjO_9BPk5vGBjl3ZqadOk.roa
File: lSbLbCNjO_9BPk5vGBjl3ZqadOk.roa (raw, json)
Hash identifier: B6X5BMlR3oltVhyILeXIXSBuKvev9tdtRfTjBMfpNcQ=
Subject key identifier: 95:26:CB:6C:23:63:3B:FF:41:3E:4E:6F:18:18:E5:DD:9A:9A:74:E9
Certificate issuer: /CN=16058d28430c4e49e61a58af4fd7a6f656edfd9e
Certificate serial: 01856B0A2F5240663D7A419E53C39CED6AE2
Authority key identifier: 16:05:8D:28:43:0C:4E:49:E6:1A:58:AF:4F:D7:A6:F6:56:ED:FD:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgWNKEMMTknmGlivT9em9lbt_Z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/lSbLbCNjO_9BPk5vGBjl3ZqadOk.roa
Signing time: Sun 01 Jan 2023 01:55:07 +0000
ROA not before: Sun 01 Jan 2023 01:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211385
IP address blocks: 193.107.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:0a:2f:52:40:66:3d:7a:41:9e:53:c3:9c:ed:6a:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16058d28430c4e49e61a58af4fd7a6f656edfd9e
Validity
Not Before: Jan 1 01:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9526cb6c23633bff413e4e6f1818e5dd9a9a74e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:0a:90:0f:d0:76:42:36:10:3a:01:66:50:
3f:6f:56:6d:62:f3:33:a4:cc:38:cb:75:dd:aa:61:
27:2a:88:1f:a9:87:45:f0:e7:a6:29:3c:e0:e9:9d:
a0:07:11:da:db:3c:b9:1f:2b:2a:52:f6:e0:54:14:
c3:2d:2f:ae:db:0f:0b:d7:68:98:f4:fd:08:94:89:
74:25:4c:cf:53:a9:29:6f:90:09:a2:cb:5f:74:97:
a5:18:54:d7:9f:8c:94:5c:04:f6:ff:d8:34:64:05:
21:9e:8b:75:12:14:b4:16:1c:49:f1:57:66:85:0e:
01:2e:a2:83:4d:e9:e9:00:40:3d:ac:38:8f:2a:52:
24:a4:28:2f:f9:28:9f:ef:bd:88:1e:94:93:16:a4:
26:15:a7:5c:38:18:bd:31:e7:3b:cd:ce:3b:28:35:
7c:38:05:74:8c:0d:43:22:68:5d:db:76:21:5d:44:
8f:9a:ac:d0:ab:5e:d1:3a:5a:22:5e:d5:ae:6c:cf:
e5:ff:ad:40:09:46:c9:27:92:cd:68:f3:17:6f:5d:
32:63:ad:89:b3:c7:d5:7b:9a:16:47:2d:95:a1:b1:
6e:e5:09:1d:96:25:bc:b3:67:53:8d:95:56:e7:1c:
c4:b0:50:25:a8:f1:ad:6e:9f:13:df:31:6e:9a:66:
fd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:26:CB:6C:23:63:3B:FF:41:3E:4E:6F:18:18:E5:DD:9A:9A:74:E9
X509v3 Authority Key Identifier:
keyid:16:05:8D:28:43:0C:4E:49:E6:1A:58:AF:4F:D7:A6:F6:56:ED:FD:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgWNKEMMTknmGlivT9em9lbt_Z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/lSbLbCNjO_9BPk5vGBjl3ZqadOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/FgWNKEMMTknmGlivT9em9lbt_Z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.12.0/24
Signature Algorithm: sha256WithRSAEncryption
58:3b:e8:76:b4:1d:ee:58:36:b3:a9:b8:57:9f:a2:6b:19:e8:
14:26:20:a9:6c:81:f1:c0:fb:d1:fd:0a:bf:28:20:f2:29:b5:
14:64:98:4e:2b:b0:76:cf:27:60:68:b4:7d:8e:78:57:6a:0e:
74:c9:09:b6:4a:ab:f9:73:76:ca:57:8a:a2:86:26:ed:18:31:
e7:6a:7c:ea:40:d7:52:79:6f:6c:75:74:c2:53:76:08:16:b4:
52:e9:45:00:27:26:9c:47:21:c5:c1:7f:1a:5c:5f:52:07:a9:
98:0c:1f:b4:56:66:15:10:60:c8:c1:94:52:be:76:13:92:6c:
71:e0:5c:c0:1a:14:c6:b2:64:df:85:5b:e8:d7:e7:90:10:3e:
9f:5a:12:1e:22:33:cf:13:bb:34:6f:de:40:df:31:20:ce:12:
66:a9:60:11:64:82:bb:d7:78:fa:02:ef:96:13:30:64:8b:63:
e1:ca:d3:25:c7:3d:56:50:6d:52:46:e7:56:9c:30:1d:79:67:
98:7e:cd:6e:67:81:5c:ec:1d:c0:1e:09:d0:0e:44:1c:84:63:
a9:37:b9:09:92:5d:6b:ee:71:40:7c:67:e2:df:86:3f:ee:a4:
58:5a:1e:4a:bf:52:b7:fa:05:16:1c:a9:e4:3d:32:12:86:42:
16:2d:5e:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:13 2023 by rpki-client on console-ams.rpki-client.org