Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/cBOWloG23IQfFWP7cLQnkO3981A.roa
File: cBOWloG23IQfFWP7cLQnkO3981A.roa (raw, json)
Hash identifier: SZ4Y7WrtTBB3aMWfaAARUZjtVTUBkMLNKjF3zXPOE0Q=
Subject key identifier: 70:13:96:96:81:B6:DC:84:1F:15:63:FB:70:B4:27:90:ED:FD:F3:50
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01889B945FA72E05A3CB5ED1BC3DC1C0D701
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/cBOWloG23IQfFWP7cLQnkO3981A.roa
Signing time: Thu 08 Jun 2023 15:16:12 +0000
ROA not before: Thu 08 Jun 2023 15:16:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 86.106.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 10:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9b:94:5f:a7:2e:05:a3:cb:5e:d1:bc:3d:c1:c0:d7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jun 8 15:16:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7013969681b6dc841f1563fb70b42790edfdf350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1b:35:f6:43:50:78:7b:9a:8c:5c:d2:c2:5a:
ad:b7:9e:29:46:89:37:de:62:89:fe:95:6b:6c:08:
52:8a:f0:25:b0:62:d4:46:2f:91:8a:72:23:aa:d3:
ee:8d:24:ce:e7:d9:a5:8f:b8:fe:82:9e:f9:99:69:
84:22:c7:c8:52:e0:5a:7e:4a:b2:d8:2b:70:02:a7:
31:11:32:12:ad:ef:d8:a3:36:ca:de:e1:e6:a4:98:
f5:c2:ef:66:25:2b:0d:86:4c:a7:d6:90:e1:27:4e:
32:3d:7d:a7:34:c8:50:e3:55:f9:5f:ec:53:b6:9f:
ae:76:10:b2:7d:6b:fc:c3:42:7d:29:01:43:90:fb:
da:33:0f:fe:85:80:63:aa:4c:15:a4:b7:2d:20:5e:
39:6a:b6:8a:2a:04:9e:a2:bd:8d:df:48:48:58:66:
00:32:15:e5:29:f0:a8:2e:48:46:0a:a2:4f:d0:31:
36:be:c1:2c:0c:51:f8:20:a9:b7:37:00:db:ad:22:
4c:fa:25:76:67:36:89:dc:19:61:e9:86:84:72:0d:
a9:72:3a:9f:ea:7b:00:5e:73:45:5f:9c:9b:df:4c:
dc:1c:36:0b:53:33:8e:81:10:bb:16:0a:22:23:d6:
f7:82:56:f3:e2:bd:2a:6f:cd:98:47:de:c2:2a:68:
06:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:13:96:96:81:B6:DC:84:1F:15:63:FB:70:B4:27:90:ED:FD:F3:50
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/cBOWloG23IQfFWP7cLQnkO3981A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.97.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:a5:c9:a2:64:b3:c2:5d:48:d3:fd:ae:4a:28:19:b0:c6:76:
e4:b4:2e:f7:19:32:a8:58:17:c8:2b:9e:50:6b:1a:45:52:d3:
4c:32:ab:86:ac:1e:c5:60:bc:3f:01:9e:8e:8f:ad:f9:2b:b1:
4d:ca:0a:c7:6e:c8:8b:ca:27:29:6c:7a:c5:c3:17:f8:eb:f0:
7e:f7:5d:81:3c:be:74:76:b9:ec:61:2a:72:c4:d9:86:72:50:
3f:cf:05:43:2c:25:7a:d9:c2:cb:a2:5d:da:cf:e5:58:43:d9:
26:ba:6d:3f:fd:6b:9e:eb:f0:17:86:7b:a6:99:4b:e1:a6:30:
5c:18:29:b5:81:67:24:fa:ff:b9:37:63:7e:23:fe:59:02:cf:
ee:eb:82:bb:15:ae:61:22:f7:9f:c7:fd:3a:8e:4a:dd:4b:9f:
d2:93:2c:1e:1a:2a:70:80:03:cd:f4:61:26:19:8a:76:05:1b:
10:f7:a6:77:46:1c:11:90:e0:58:a6:2f:4c:e8:97:c9:89:e9:
94:93:ec:db:10:31:ba:8a:1f:9d:ab:48:4a:1c:e3:dd:7f:be:
4e:5a:d7:75:a3:0e:28:78:42:15:b4:14:d3:31:2f:b9:62:01:
23:dc:36:98:df:03:d5:72:2f:4a:b9:c0:23:36:fe:63:2e:cb:
10:c4:15:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org