Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/9jp0c5uT4oVeGFwsNniCZf-VfaM.roa
File: 9jp0c5uT4oVeGFwsNniCZf-VfaM.roa (raw, json)
Hash identifier: SPOcpPxo6A4OuAbWW5nfR/TH71mNmWLMm77X3BwdkZQ=
Subject key identifier: F6:3A:74:73:9B:93:E2:85:5E:18:5C:2C:36:78:82:65:FF:95:7D:A3
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0189547D67D9239DE2E2E6A178E3B2533E36
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/9jp0c5uT4oVeGFwsNniCZf-VfaM.roa
Signing time: Fri 14 Jul 2023 13:00:51 +0000
ROA not before: Fri 14 Jul 2023 13:00:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.191.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:7d:67:d9:23:9d:e2:e2:e6:a1:78:e3:b2:53:3e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jul 14 13:00:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f63a74739b93e2855e185c2c36788265ff957da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d5:f1:b2:12:82:96:03:01:e7:98:ec:78:be:
2d:db:f2:73:15:b9:23:de:a1:38:91:28:9b:de:13:
87:b3:d2:d1:ff:50:85:af:1e:f6:45:aa:c3:22:99:
71:67:c4:93:48:f0:00:7d:48:28:8d:fe:fc:47:ae:
9a:8f:b7:5b:38:e7:ac:4f:ab:5a:ef:a3:f1:cd:61:
92:02:3a:a0:1a:fd:ca:70:83:cf:f6:0c:95:19:89:
32:9d:6c:d4:68:a1:01:f7:f0:b3:85:72:90:03:3a:
e6:ba:a2:ab:62:09:82:8d:da:3d:9a:b7:c6:cf:5e:
ae:c8:c9:8e:1f:ed:2d:0a:55:3b:df:10:f1:ba:3a:
5a:85:ac:b4:c8:a3:3e:b5:ab:ed:2c:10:0c:25:59:
4a:97:de:84:65:9b:17:ec:39:dc:31:d0:cc:60:68:
26:49:ae:0e:86:c1:4c:d5:2f:30:5e:73:86:63:7f:
5e:84:90:6e:84:3a:1e:4f:f7:70:28:59:51:61:a4:
f2:10:1d:f5:17:ed:0b:d9:da:4a:df:be:bb:15:a9:
76:c3:74:72:22:bd:c7:57:ac:94:a7:38:1d:b4:e8:
00:75:45:be:1e:44:9c:55:9e:69:03:be:3b:78:f1:
12:7d:55:b4:bd:5f:58:dc:2a:f9:85:4e:f0:14:8f:
b2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3A:74:73:9B:93:E2:85:5E:18:5C:2C:36:78:82:65:FF:95:7D:A3
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/9jp0c5uT4oVeGFwsNniCZf-VfaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.111.0/24
Signature Algorithm: sha256WithRSAEncryption
54:a3:43:db:c9:fc:1f:f5:f4:a3:37:5d:e0:01:69:c7:b8:66:
47:47:09:de:f6:fb:6f:18:65:a0:4f:e8:4f:0b:46:c8:79:14:
ef:e2:49:14:ec:d4:5f:8a:0b:73:0c:4f:9d:a5:c3:8a:8b:27:
0b:bc:79:b5:ba:a8:83:ff:d3:ff:06:2c:bb:01:23:dc:4a:c5:
e3:39:b9:7d:4e:2d:7b:d8:df:c1:b1:d5:df:3f:8f:42:1b:ae:
63:70:9a:9a:89:8a:a0:25:c8:70:53:06:63:d9:aa:28:5d:52:
da:d0:3a:7c:23:5f:8f:b5:67:cc:cc:c1:57:7a:cc:f1:21:a9:
6a:f4:4c:4d:c9:6d:37:d9:96:13:e2:8d:32:cd:16:51:99:ed:
64:30:2f:cb:34:e5:98:c7:f9:bc:03:4a:ab:92:58:a9:05:94:
3f:a6:89:fb:b6:66:31:aa:ac:37:61:ca:32:f4:ec:2f:97:29:
77:24:54:c4:5d:e3:3b:75:61:06:37:97:c0:49:85:68:09:38:
71:6a:8a:b8:ca:bb:ec:b9:7b:94:55:34:b7:a0:81:88:e2:47:
a3:4d:08:2c:20:e9:ff:5b:e9:02:d1:f2:5c:44:5e:d4:5e:0b:
4e:6e:40:53:39:86:75:6d:b7:9a:b4:fd:25:4c:b2:93:a7:23:
11:11:c3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:39 2023 by rpki-client on console-ams.rpki-client.org