Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/izVxB84YMPDa8Sc0of2nMKrPEnQ.roa
File: izVxB84YMPDa8Sc0of2nMKrPEnQ.roa (raw, json)
Hash identifier: hZSv13/oQdtyv2d5c6F93WIzcKRp89qQ3ua+teTmpjk=
Subject key identifier: 8B:35:71:07:CE:18:30:F0:DA:F1:27:34:A1:FD:A7:30:AA:CF:12:74
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 01857283773FF08950D3BE484504EABCDE3B
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/izVxB84YMPDa8Sc0of2nMKrPEnQ.roa
Signing time: Mon 02 Jan 2023 12:44:56 +0000
ROA not before: Mon 02 Jan 2023 12:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198173
IP address blocks: 188.247.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:77:3f:f0:89:50:d3:be:48:45:04:ea:bc:de:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 2 12:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b357107ce1830f0daf12734a1fda730aacf1274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:50:b7:78:a3:de:ef:5f:85:aa:db:2d:cd:a8:
e1:4e:1c:ac:6b:0d:c3:24:9e:2b:e4:c5:ea:00:59:
67:e6:5b:0c:57:7a:f6:ee:e4:07:5b:d6:2b:5d:be:
b9:48:c5:65:e2:e9:9d:98:77:a7:d7:16:aa:5d:4f:
81:b6:63:d1:c6:63:1e:b4:50:7f:99:16:13:b0:06:
c0:d4:85:bc:04:27:e6:50:10:5c:a7:ae:d8:30:11:
45:9a:be:84:e4:c3:86:d2:b1:ed:ca:51:bc:4e:ba:
42:ce:f9:dc:78:f2:9a:60:eb:09:2d:d1:10:69:14:
d8:f0:c7:5b:80:14:dc:76:fd:7b:4e:a4:40:bb:f2:
f9:89:c0:ba:f6:a2:3a:cc:af:70:f3:3d:40:28:71:
ca:d9:19:1c:ba:ac:4d:bc:51:c5:2b:d4:d5:fa:51:
52:be:0c:91:eb:18:7e:74:d9:bb:0b:26:c9:97:91:
3f:1d:51:2c:69:4c:fd:df:05:86:f4:8d:18:6a:d0:
a6:33:be:36:44:15:c6:f6:fc:8d:a3:af:33:a1:88:
7f:48:57:ec:33:94:e5:50:73:8d:30:ef:c7:91:54:
54:38:ec:37:08:54:b0:24:53:75:ac:0f:a5:79:84:
07:f7:dc:28:66:36:b9:2e:f8:45:dc:ca:98:8d:86:
6e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:71:07:CE:18:30:F0:DA:F1:27:34:A1:FD:A7:30:AA:CF:12:74
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/izVxB84YMPDa8Sc0of2nMKrPEnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.247.233.0/24
Signature Algorithm: sha256WithRSAEncryption
f2:34:d2:45:c0:0e:c9:96:5c:b0:e0:26:ab:cf:fd:0d:0a:14:
09:c3:f0:aa:fd:7d:53:8c:4a:66:c6:66:2c:8b:9b:e9:66:dd:
57:6e:8b:ac:82:f2:c9:7c:4a:9c:ad:bb:c6:c1:cf:ab:eb:47:
c5:a8:05:92:e5:54:4f:0b:31:0d:76:c4:cc:77:a4:38:e0:6e:
42:a1:db:00:04:b4:87:4a:2b:55:0d:84:35:06:34:ac:ae:d1:
d9:68:de:4e:3c:49:0a:b6:05:0c:e7:3e:52:24:b8:ad:d2:03:
f6:a4:f0:e7:25:13:42:34:21:3e:7e:dd:40:46:52:e1:f6:9b:
d5:11:00:b2:08:2e:81:75:d4:f8:bb:b6:8d:84:87:60:1d:b2:
5c:4d:60:77:1b:fe:59:ec:4a:37:cf:67:2f:66:1d:f2:be:18:
fb:84:77:f8:24:fc:ef:48:c3:2c:a8:16:dc:58:42:35:bd:69:
70:5a:6a:a2:8f:c9:e5:bb:e2:33:b6:d6:3d:4e:da:72:3c:77:
02:2e:7b:cc:ba:e0:8f:b0:24:71:bf:89:38:55:16:08:05:95:
4e:1b:57:2d:fa:92:ec:8e:d1:07:3b:fd:4e:52:9a:73:9c:78:
8f:d8:ab:bc:80:6e:60:69:a5:94:aa:60:81:70:ed:7f:b7:83:
aa:5c:92:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org