Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/0kzX-ZjTaCe6L3QjCtG4UxOX8mw.roa
File: 0kzX-ZjTaCe6L3QjCtG4UxOX8mw.roa (raw, json)
Hash identifier: kH8+9BPcyj8LrjWoxFqA7Ws3Ke4fy9xY0sHFucxoUF8=
Subject key identifier: D2:4C:D7:F9:98:D3:68:27:BA:2F:74:23:0A:D1:B8:53:13:97:F2:6C
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018578E489588DD1835B4D6574CCF9266F77
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/0kzX-ZjTaCe6L3QjCtG4UxOX8mw.roa
Signing time: Tue 03 Jan 2023 18:28:41 +0000
ROA not before: Tue 03 Jan 2023 18:28:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46844
IP address blocks: 188.191.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Feb 2023 11:42:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:78:e4:89:58:8d:d1:83:5b:4d:65:74:cc:f9:26:6f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 3 18:28:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d24cd7f998d36827ba2f74230ad1b8531397f26c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:5a:2f:c1:57:63:e1:f4:4e:bf:ed:1d:e7:
26:3a:cd:01:e9:e9:72:1c:03:2f:79:80:c1:ac:61:
cd:84:2c:f3:33:a9:4e:b9:f4:03:55:85:66:20:44:
32:f6:a3:53:45:45:2e:68:83:6b:d0:c2:6d:db:23:
3f:a8:9b:3c:fd:0c:cd:32:c0:88:7f:f9:68:dc:3c:
10:61:d9:94:1c:ca:3f:8f:0d:bc:c2:cc:3a:f8:72:
86:ce:bf:f5:4a:74:d5:4e:4a:44:98:36:b1:92:0f:
8c:37:0b:ea:45:56:59:95:2b:ab:76:16:00:30:23:
02:1e:e9:fd:0a:83:a9:d5:01:66:df:bb:dd:f9:de:
2d:bc:b6:69:73:13:4c:4f:dd:70:6f:fb:59:d7:d8:
a1:95:87:e6:f2:90:85:3a:bc:8a:fc:b1:c5:d6:38:
42:ba:fa:ba:da:bd:f7:1b:9d:1e:42:95:f4:20:a6:
13:62:55:01:e7:99:ed:8d:e1:c0:80:2e:ba:ca:a8:
00:c5:a4:b0:bf:7a:96:1b:dc:48:d2:4d:f9:1e:ab:
2c:e9:a5:4a:eb:cc:c9:7c:b0:5d:62:ac:84:89:98:
15:e7:6d:35:46:f0:37:19:f5:e0:42:8b:90:63:94:
49:a0:84:80:69:1c:a9:32:e5:71:9e:55:5f:4a:ae:
a4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4C:D7:F9:98:D3:68:27:BA:2F:74:23:0A:D1:B8:53:13:97:F2:6C
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/0kzX-ZjTaCe6L3QjCtG4UxOX8mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.107.0/24
Signature Algorithm: sha256WithRSAEncryption
12:eb:7b:29:c2:4f:6b:fc:ba:68:07:45:15:cb:2c:88:b7:49:
6c:58:f4:e7:14:8b:81:b2:5b:5e:48:bc:a6:a7:f8:f8:fb:67:
fc:43:11:42:5d:19:0d:ed:70:63:8c:2f:d9:ef:73:6f:53:75:
ac:ae:00:c4:f8:60:16:59:09:e6:19:c5:4e:83:58:e4:16:38:
cc:93:ff:42:64:ca:3a:74:96:f0:dd:b1:57:33:a0:d6:46:d4:
92:ef:df:de:4e:7b:f6:19:c6:d7:21:d5:75:ca:40:45:3f:32:
36:cc:18:45:ae:fc:0e:54:09:c7:16:58:e2:a5:5f:1d:57:8e:
03:77:12:5e:44:7c:a2:8c:cb:fe:f4:1d:00:0e:33:df:73:5b:
1d:ef:74:24:09:cc:9b:d1:fd:74:f0:70:4b:d1:7f:d0:2d:93:
18:5e:cf:eb:6b:5f:85:5d:90:43:57:c5:96:ad:8e:10:fd:c5:
24:c1:c0:2f:6c:b0:e9:6d:10:b8:63:c6:90:ae:a4:55:0e:a0:
a8:cc:83:87:6c:cc:72:59:9d:91:50:27:e5:4c:78:fc:68:d8:
4e:5c:ff:99:b4:6c:43:10:af:b4:c5:41:71:96:72:f3:09:03:
d7:90:2f:d2:70:63:42:89:e7:b4:b7:d8:0d:64:08:26:51:11:
11:3b:d4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:48 2024 by rpki-client on console-ams.rpki-client.org