Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/D8gzV8gsBCSlOR4VCoMrg8nTH_s.roa
File: D8gzV8gsBCSlOR4VCoMrg8nTH_s.roa (raw, json)
Hash identifier: a/L6++RnxoP9hPaYWvp8ezZ37dagfS3f9YLx4FtwSvI=
Subject key identifier: 0F:C8:33:57:C8:2C:04:24:A5:39:1E:15:0A:83:2B:83:C9:D3:1F:FB
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01856EAA2552D68B7C9E10BE64B848C15C79
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/D8gzV8gsBCSlOR4VCoMrg8nTH_s.roa
Signing time: Sun 01 Jan 2023 18:48:42 +0000
ROA not before: Sun 01 Jan 2023 18:48:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 193.239.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Jan 2023 04:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:aa:25:52:d6:8b:7c:9e:10:be:64:b8:48:c1:5c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 1 18:48:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fc83357c82c0424a5391e150a832b83c9d31ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:98:0f:39:2f:79:62:3e:82:96:d8:f2:bb:0b:
17:13:cd:fb:35:46:79:0f:f0:e3:6e:dd:8a:23:e3:
cd:cf:17:b6:c7:ca:8c:a4:ad:c8:07:66:22:15:d2:
3d:5a:c4:7f:6f:32:ea:3c:ad:03:fd:f6:10:ec:b4:
b5:06:d0:13:d8:99:f0:e3:c1:f7:eb:20:87:f0:47:
01:11:4c:a5:9d:85:0e:82:ae:8a:b8:2b:b4:d9:0a:
b2:17:ab:ea:1b:89:f8:7a:91:e9:ce:9c:0a:10:ef:
f7:94:c8:02:5f:01:ab:e6:bf:3c:0e:46:ab:3b:6f:
54:13:30:c6:4d:d6:90:71:df:79:b9:c4:90:36:50:
ea:03:28:09:bf:9d:20:79:60:e1:fa:3f:aa:f4:bb:
43:87:c2:b1:41:9e:8d:3b:ce:22:d0:32:32:ca:b3:
a9:51:72:c5:f3:01:d4:27:2f:7c:9d:d9:c6:9c:3f:
7f:bc:7a:9f:78:11:ba:3e:56:3d:e4:da:34:18:57:
81:62:64:3c:f4:bc:8b:ea:89:7c:70:30:79:78:88:
9d:8d:39:04:55:d8:2a:2e:b9:83:42:5d:c4:f3:76:
ba:09:ff:7c:a5:fe:ed:88:e5:a6:cd:13:d3:8b:68:
eb:1b:9a:33:1c:8b:51:89:c2:1c:62:70:74:eb:a2:
5e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C8:33:57:C8:2C:04:24:A5:39:1E:15:0A:83:2B:83:C9:D3:1F:FB
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/D8gzV8gsBCSlOR4VCoMrg8nTH_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.236.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e2:9a:bd:e1:7b:c6:25:df:01:c1:84:bb:7b:fd:90:57:e9:
41:da:1e:ee:3e:65:53:01:35:8a:19:67:25:35:cb:3f:50:7a:
c4:fd:fe:31:04:ff:a2:00:4c:f4:51:dc:9e:65:5b:4c:9d:40:
8f:ee:fa:aa:16:8a:c5:b2:4c:ac:9c:2f:5e:f2:b4:2a:64:7a:
53:d2:58:6d:f8:dd:cf:21:42:11:ba:f1:77:5f:5e:56:d3:b8:
96:c8:d5:36:da:af:2b:a1:f4:e5:75:63:30:ea:77:d0:68:a9:
7e:86:5c:b3:8e:d4:aa:86:d2:f2:df:98:be:44:ac:57:bf:e5:
11:40:4e:f7:53:85:bf:ba:2a:ff:9b:2f:4f:7b:ae:5a:ad:89:
00:3a:38:90:79:80:64:55:f4:4e:0f:c4:8b:96:5c:f5:eb:3e:
83:50:2f:44:5f:b9:27:f7:df:ce:ca:0c:29:6c:83:c4:78:13:
45:0f:15:51:ce:06:eb:96:8f:c5:e2:13:54:74:1e:b9:29:0d:
a2:bb:5a:64:a7:7f:fe:1d:7b:d0:99:e4:9f:b9:16:60:3a:f7:
e0:4f:64:7f:e7:54:34:ed:2f:62:51:75:10:ad:af:8c:a7:fa:
ce:56:e9:37:2a:f4:93:42:10:96:f3:f5:9f:f4:20:5b:81:ad:
04:f2:fc:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org