Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/rbVMnzOVtNiZYUEFpqp3GFzbUVo.roa
File: rbVMnzOVtNiZYUEFpqp3GFzbUVo.roa (raw, json)
Hash identifier: 71fX1KlIyVuWuCXla5rIJ2P1PbQq2Ezs5EpK+Lti87E=
Subject key identifier: AD:B5:4C:9F:33:95:B4:D8:99:61:41:05:A6:AA:77:18:5C:DB:51:5A
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018AAC2350FEC9CEC56F866D6F1F3B6A0481
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/rbVMnzOVtNiZYUEFpqp3GFzbUVo.roa
Signing time: Tue 19 Sep 2023 06:31:50 +0000
ROA not before: Tue 19 Sep 2023 06:31:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.239.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Sep 2023 18:46:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:23:50:fe:c9:ce:c5:6f:86:6d:6f:1f:3b:6a:04:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 19 06:31:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adb54c9f3395b4d899614105a6aa77185cdb515a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0b:a5:67:3b:72:e7:c2:18:f4:fd:7e:ad:25:
a6:ea:9c:8b:db:f2:9e:8b:50:9d:44:36:df:7c:01:
b7:bf:c6:e0:0e:54:bd:c7:f2:5d:b1:f7:b8:e5:9f:
8c:e2:fd:ef:11:dd:20:10:eb:8b:36:53:11:35:24:
f5:10:30:ad:b4:2c:83:5f:ed:2f:63:1b:76:f8:60:
c2:95:49:3a:77:f9:c5:a6:07:bb:1d:e0:5a:3a:72:
e5:9f:b8:d1:81:01:b7:b4:da:78:67:20:7a:7b:ad:
2d:db:83:87:85:92:d7:88:90:33:92:b8:a3:e0:35:
43:48:b4:ac:1b:13:ed:9f:27:d3:73:6b:96:6d:3e:
8f:41:6f:26:c0:c4:c5:4a:74:77:31:ae:ce:ba:81:
55:41:dd:6c:c6:43:3a:31:45:0b:1d:7d:81:05:55:
09:87:ee:02:cf:53:a7:be:ef:27:60:5b:04:e3:b3:
30:a7:14:27:28:6d:0a:b9:79:59:44:3e:84:34:f3:
96:02:3e:b9:3f:59:68:42:42:ff:f4:76:42:83:a6:
c5:19:73:c6:b2:15:aa:bf:f4:c5:9b:9a:ec:9d:88:
72:ec:ed:a4:b8:00:b7:64:20:58:5d:e3:4c:c7:12:
33:dd:05:2d:5c:c4:9f:5d:c1:63:a2:e1:57:8f:92:
cb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B5:4C:9F:33:95:B4:D8:99:61:41:05:A6:AA:77:18:5C:DB:51:5A
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/rbVMnzOVtNiZYUEFpqp3GFzbUVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.196.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b0:51:f6:e8:f3:81:3c:21:c1:86:99:2f:4a:2c:aa:45:45:
c4:9d:c0:93:6d:0c:f0:8d:af:34:a1:01:cd:ed:88:6c:3b:1c:
42:63:2e:97:eb:79:b5:79:83:6e:45:68:79:26:c7:29:81:76:
6e:af:a4:5f:e0:3a:1c:ba:e0:09:ef:dc:1d:e9:7c:93:91:00:
e2:c5:cf:a2:1f:38:f0:41:cc:69:49:6f:3b:e0:5b:de:c9:65:
a5:9f:fa:62:84:b0:14:48:a8:aa:cf:f2:9a:15:70:84:d4:1e:
3b:5f:c8:3b:36:93:26:09:3b:8a:b3:1c:13:d0:5a:b5:23:e0:
ef:ac:5e:1e:38:eb:b8:e6:7b:92:97:90:f4:7a:5e:a6:f2:21:
00:08:0e:ee:2d:95:ff:dd:52:b6:34:e6:70:90:54:6e:6b:d2:
14:97:0f:be:c4:d9:2f:32:12:ea:96:d2:24:29:d7:19:32:fa:
3c:95:10:8d:d2:46:17:c9:6f:34:29:99:6b:f3:55:1f:85:61:
71:85:29:11:2e:3a:61:af:da:6e:48:ab:4e:08:6a:ab:fe:e7:
00:3b:d5:15:b7:cf:d7:4a:8a:87:4d:d6:ff:73:b0:ad:d3:d4:
b1:ac:ee:83:90:54:da:a9:f0:c3:79:cb:e0:eb:31:05:1d:7f:
03:bf:5e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:47 2024 by rpki-client on console-fra.rpki-client.org