Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/DuIbrSudoVZy6fGKyXlJGbuhF3I.roa
File: DuIbrSudoVZy6fGKyXlJGbuhF3I.roa (raw, json)
Hash identifier: URx6wkqD1B4KW5ithxrcYYvFRmLFhLNUXUqYeuN9WhI=
Subject key identifier: 0E:E2:1B:AD:2B:9D:A1:56:72:E9:F1:8A:C9:79:49:19:BB:A1:17:72
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01871E81F88F86291CFC79F143EF9F6A7F11
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/DuIbrSudoVZy6fGKyXlJGbuhF3I.roa
Signing time: Sun 26 Mar 2023 15:20:46 +0000
ROA not before: Sun 26 Mar 2023 15:20:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25098
IP address blocks: 188.119.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 27 Mar 2023 13:26:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:1e:81:f8:8f:86:29:1c:fc:79:f1:43:ef:9f:6a:7f:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Mar 26 15:20:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ee21bad2b9da15672e9f18ac9794919bba11772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:46:65:9b:50:db:97:8f:74:fd:c5:57:e5:4d:
e6:bf:d1:51:36:04:48:3b:18:97:93:4b:58:39:cc:
42:a7:45:c3:92:d9:b0:cb:1a:eb:4a:6d:f5:18:10:
67:f0:74:17:e9:2d:f2:53:ba:2d:70:65:62:4c:63:
3e:52:b1:77:ff:00:26:0c:37:63:df:59:f0:65:de:
ac:1a:6e:18:a3:07:fe:79:0c:96:9e:9f:48:5c:1e:
b0:9d:ce:ce:20:cc:0f:a0:81:5e:9c:ca:d0:ea:85:
87:f3:65:6d:82:99:fc:99:83:3f:cb:f6:61:b1:15:
a8:7a:b7:5f:fc:98:00:0f:89:8f:ae:c2:09:cf:24:
8f:0b:40:92:67:b7:11:1c:33:a9:b9:b6:81:6f:4d:
cf:f3:a1:c5:f0:ad:6b:3f:19:73:3f:7b:1c:d0:89:
56:71:89:36:a9:7b:0d:49:7f:19:09:d9:36:17:ce:
3c:ff:a9:e1:6a:d7:11:55:a1:2c:9a:c3:6d:36:48:
dc:5f:55:69:af:7b:a8:e3:d0:74:40:2f:0f:06:8e:
c4:da:99:ae:00:42:13:30:e4:f4:96:28:8b:3b:f0:
9c:59:7b:29:a0:05:5e:9d:e1:91:bf:ad:71:4f:2c:
c0:a4:cf:99:d8:77:19:6a:2f:1b:9f:56:92:87:19:
66:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E2:1B:AD:2B:9D:A1:56:72:E9:F1:8A:C9:79:49:19:BB:A1:17:72
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/DuIbrSudoVZy6fGKyXlJGbuhF3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.68.0/22
Signature Algorithm: sha256WithRSAEncryption
49:a2:24:22:2c:d9:c6:00:a8:d4:d0:06:12:b9:61:f0:b4:13:
96:c3:15:08:30:e1:d1:a9:bf:68:23:b1:ad:5f:39:a1:5c:34:
93:c8:bd:b0:a0:3d:21:af:36:c9:89:5a:3c:25:69:9e:7b:28:
da:58:5b:7f:87:4f:78:b7:6b:78:fb:af:c2:d7:eb:90:3b:b8:
f7:94:b5:4e:68:a6:be:67:f7:84:4e:ed:0c:b5:e2:e9:cc:b0:
be:78:18:59:60:fe:b0:7a:14:8d:6d:c1:85:65:9a:f3:ad:68:
f9:93:c9:e6:74:94:42:38:c3:4d:c9:3d:e1:40:34:e4:e4:15:
ca:5a:db:ab:e9:26:64:4d:8d:c2:11:3a:87:fa:bd:a1:57:a4:
7d:61:c1:ec:e0:f7:57:92:99:21:89:7c:62:62:0b:08:f2:36:
1b:79:83:82:5f:33:0d:3e:10:38:c3:c8:33:79:2b:da:30:21:
5e:37:3d:2a:43:bb:2f:03:5f:b2:5d:ca:94:ef:f7:1a:36:d0:
31:46:32:07:5f:da:5d:38:1c:ea:c8:e9:62:45:e3:e8:81:3e:
3d:f7:29:48:49:d9:a6:e3:2b:3c:bb:b8:ff:ee:f1:42:47:83:
7e:11:ef:4e:2c:cb:03:ea:f1:18:96:a5:b4:d6:55:ee:ea:e1:
b6:d2:64:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org