Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/h8IgbShUeQX78vbCtJdJWvze7iw.roa
File: h8IgbShUeQX78vbCtJdJWvze7iw.roa (raw, json)
Hash identifier: xbm5TwMpVfG0ilE3KxLboILLqMFceYYP/+qUWvEARAo=
Subject key identifier: 87:C2:20:6D:28:54:79:05:FB:F2:F6:C2:B4:97:49:5A:FC:DE:EE:2C
Certificate issuer: /CN=83646ab7062148edb8fa9b60a831c8240dcab804
Certificate serial: 01856D0A96FE1DDC957E170765053BF56C03
Authority key identifier: 83:64:6A:B7:06:21:48:ED:B8:FA:9B:60:A8:31:C8:24:0D:CA:B8:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2RqtwYhSO24-ptgqDHIJA3KuAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/h8IgbShUeQX78vbCtJdJWvze7iw.roa
Signing time: Sun 01 Jan 2023 11:14:48 +0000
ROA not before: Sun 01 Jan 2023 11:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58114
IP address blocks: 193.30.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:96:fe:1d:dc:95:7e:17:07:65:05:3b:f5:6c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83646ab7062148edb8fa9b60a831c8240dcab804
Validity
Not Before: Jan 1 11:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87c2206d28547905fbf2f6c2b497495afcdeee2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:92:b3:41:96:7e:a0:bb:56:0b:0e:83:68:16:
be:87:d1:27:c0:2b:9b:88:59:d8:14:b9:74:7b:85:
56:fd:e2:8d:fa:39:12:f0:3e:ff:51:7c:c6:ac:a2:
53:8a:c7:d7:65:47:d5:61:68:ea:53:c2:ff:d9:de:
a6:29:6f:61:a4:81:ed:71:2b:29:33:22:3d:51:72:
17:04:de:0a:8c:f9:94:d2:63:8a:36:c4:42:4e:3f:
72:f5:14:be:00:df:dd:f6:b2:13:06:41:5d:31:c8:
bc:ef:8c:31:d7:01:34:50:1f:10:f1:07:b3:fb:99:
07:51:2a:b1:74:e4:83:52:a6:89:8b:4f:0d:af:79:
aa:00:15:ee:06:ed:1c:5a:2c:52:4c:72:02:f6:15:
46:c2:dd:b8:3f:6d:fb:ec:67:22:2d:55:92:6c:b4:
bd:50:c2:4b:85:99:d0:c7:46:31:a3:08:d1:e9:56:
53:df:f9:44:f8:21:14:53:5a:91:3d:74:ac:a5:e8:
f3:64:f3:7c:47:6f:3b:be:e3:56:e4:ac:6f:8f:d7:
b7:54:fe:3b:3b:07:3d:58:4a:81:b1:32:3f:1a:b2:
f5:a9:13:f9:c0:a6:39:11:59:20:e5:75:63:2a:0f:
73:05:99:45:d4:eb:3f:79:ca:ef:e4:ba:73:f0:62:
df:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C2:20:6D:28:54:79:05:FB:F2:F6:C2:B4:97:49:5A:FC:DE:EE:2C
X509v3 Authority Key Identifier:
keyid:83:64:6A:B7:06:21:48:ED:B8:FA:9B:60:A8:31:C8:24:0D:CA:B8:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2RqtwYhSO24-ptgqDHIJA3KuAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/h8IgbShUeQX78vbCtJdJWvze7iw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/ed3edb-d275-47c9-be7f-c4367592ae8a/1/g2RqtwYhSO24-ptgqDHIJA3KuAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.28.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b2:f6:e6:6e:69:f9:99:57:d7:d4:cf:cd:50:f2:f8:34:22:
ca:e8:1f:0b:3b:34:47:10:cb:db:af:7e:d7:43:7b:1e:b1:d3:
5f:eb:2d:9c:6e:51:2a:f6:c3:34:bc:9a:da:dc:94:44:74:cb:
d7:33:c4:ca:70:66:77:4d:10:60:c3:fd:19:09:9f:ad:ec:3c:
a5:7a:83:5d:44:8e:4c:40:1e:69:06:21:f5:bf:92:f3:d9:d6:
6a:f5:9a:c5:3a:5d:35:3f:27:51:f6:85:47:1e:14:15:06:4a:
ae:2f:52:be:0f:ea:bf:a4:fe:5f:d5:4b:6b:17:ca:18:bc:c0:
a5:fd:4f:f8:60:f6:bf:f2:d8:db:7f:82:4e:a9:d9:06:d2:23:
7c:59:12:19:48:9e:fb:10:ea:58:80:f1:ca:a7:6c:2e:73:e5:
74:9f:48:42:42:d5:5a:49:0f:d5:67:13:13:86:d7:45:02:3b:
b1:32:75:78:fc:a4:47:63:e9:0f:20:01:53:c4:5c:4c:de:a9:
68:8b:c2:92:95:6d:33:64:e5:bf:5d:6f:4f:4a:d7:a5:37:ca:
9d:7e:19:7b:d5:da:1f:8c:a2:13:69:3f:b1:f0:b7:d7:5e:e5:
9b:e9:07:3e:3a:15:4d:6e:3a:dd:51:a3:a8:b2:7a:77:49:97:
85:2c:d7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:50 2024 by rpki-client on console-ams.rpki-client.org