Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Bb1jtfcRHS-gHurKeqbXkUZMSek.roa
File: Bb1jtfcRHS-gHurKeqbXkUZMSek.roa (raw, json)
Hash identifier: l5PsJPRX0iIy6nExZlPz3DcsejGhmbIR+eRDi/XSuPU=
Subject key identifier: 05:BD:63:B5:F7:11:1D:2F:A0:1E:EA:CA:7A:A6:D7:91:46:4C:49:E9
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0188DFCCBBF14F99701615D2C0DCCD58FFC1
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Bb1jtfcRHS-gHurKeqbXkUZMSek.roa
Signing time: Wed 21 Jun 2023 21:11:56 +0000
ROA not before: Wed 21 Jun 2023 21:11:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 188.191.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 19:50:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:df:cc:bb:f1:4f:99:70:16:15:d2:c0:dc:cd:58:ff:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jun 21 21:11:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05bd63b5f7111d2fa01eeaca7aa6d791464c49e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a5:d4:59:34:b9:d2:30:3b:6c:f4:3e:b1:92:
75:15:b7:44:32:36:ed:3a:64:22:25:31:88:ea:3e:
f2:d9:86:6c:f8:93:95:6d:6b:84:6e:fd:63:45:fc:
2a:d0:fd:88:35:9c:3b:91:e5:7f:7b:25:b8:2d:f7:
e4:73:92:36:1c:3a:78:e9:5a:7c:d5:f0:cc:e7:41:
81:48:3f:ba:47:0a:49:36:01:e7:83:7c:46:a8:dd:
4c:d2:9b:15:fc:8c:75:d3:4e:4b:bc:0e:b9:63:07:
2a:fd:21:8c:d1:c2:39:4c:3c:53:6b:8b:db:2e:75:
8e:e8:21:25:8d:05:e2:f8:48:1c:54:3f:82:53:46:
a5:34:32:f1:c1:12:02:60:69:b7:3c:8f:99:f5:bc:
45:86:07:4b:15:20:e7:02:bc:cf:ec:db:fd:e9:75:
6b:31:3d:3c:b8:be:15:3a:ee:a2:8b:e7:81:f0:5b:
25:1d:fc:7e:2d:20:3a:80:64:4e:da:c3:da:56:49:
9d:d5:63:15:18:7d:39:4d:5f:2e:b4:35:be:c3:af:
49:ca:93:fb:ff:92:d1:3f:cc:00:03:02:77:33:85:
ba:92:5e:09:71:c5:6d:58:ea:2e:ab:5e:b1:a9:06:
41:ad:98:a1:03:a1:9c:1c:a3:4d:a0:de:3b:f6:ea:
f9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BD:63:B5:F7:11:1D:2F:A0:1E:EA:CA:7A:A6:D7:91:46:4C:49:E9
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Bb1jtfcRHS-gHurKeqbXkUZMSek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.104.0/24
Signature Algorithm: sha256WithRSAEncryption
54:2e:ab:56:7c:b3:02:4f:8f:1d:16:e1:7c:a8:65:ee:bb:bf:
e4:66:99:60:44:fd:51:d2:8b:50:af:26:37:fc:15:32:7b:fb:
3f:c3:44:dd:47:1b:25:d1:c7:f2:8a:27:c0:86:37:43:a6:94:
65:db:d5:3d:c7:72:2c:52:ce:fb:ae:5f:0e:61:3b:68:83:92:
f9:33:c1:fe:41:6d:45:9a:7f:14:66:ff:43:87:55:8b:82:55:
b1:f2:b6:11:a1:49:f7:ce:9f:91:41:18:73:73:27:42:a4:bc:
e5:4f:23:cd:a7:39:09:37:a3:c9:99:74:3a:c0:03:1b:ed:4d:
4f:68:de:eb:81:0a:3e:cb:70:b2:d7:c3:fd:3e:52:be:e2:e6:
db:1e:32:24:7c:41:f6:04:96:04:5b:26:94:51:98:a2:d0:f9:
03:91:16:1e:5f:44:1f:fe:ad:1e:47:e2:8e:41:fa:2f:9e:87:
a2:4c:01:57:2b:02:68:5c:12:8f:94:77:3d:6c:12:a0:6b:e6:
96:74:12:f7:3c:a9:2a:48:4c:a7:78:6e:21:8a:79:e1:ea:9f:
33:6e:da:a8:48:49:1b:bb:f1:4d:f0:bf:ee:a5:6e:fa:a2:d1:
68:05:9a:68:4a:8c:67:ca:d9:db:ee:15:87:1a:d3:62:4f:5e:
c6:e1:fc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:48 2024 by rpki-client on console-ams.rpki-client.org