Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/CiL3zy9JiVfFPlAeQEJ6EvNNgy8.roa
File: CiL3zy9JiVfFPlAeQEJ6EvNNgy8.roa (raw, json)
Hash identifier: R4hjxycY9u+8VQsunylITzfySuDAW4y1VxtFMX/gp5I=
Subject key identifier: 0A:22:F7:CF:2F:49:89:57:C5:3E:50:1E:40:42:7A:12:F3:4D:83:2F
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0185BC7D3A8D051D3D1897D7CC07D43D0ECF
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/CiL3zy9JiVfFPlAeQEJ6EvNNgy8.roa
Signing time: Mon 16 Jan 2023 21:30:01 +0000
ROA not before: Mon 16 Jan 2023 21:30:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 188.191.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Feb 2023 05:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bc:7d:3a:8d:05:1d:3d:18:97:d7:cc:07:d4:3d:0e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 16 21:30:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a22f7cf2f498957c53e501e40427a12f34d832f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:32:ff:a7:e3:10:6d:55:98:8d:23:b5:60:1b:
0a:44:17:c9:07:e2:7d:8e:df:cf:c2:6f:a1:da:87:
a6:95:35:ad:e5:fc:6b:60:2a:41:b7:f8:bd:49:ab:
ca:cc:b3:33:33:86:c3:f0:6f:89:e8:1a:bf:71:87:
2c:a6:73:4f:06:62:61:22:69:28:af:dd:c1:a9:cc:
7b:da:0a:a2:76:b2:1c:25:57:f0:5e:e0:d5:8e:6c:
2e:10:a2:f4:34:e3:10:25:f8:9d:4d:18:66:b1:76:
93:44:9f:f0:99:76:a1:9a:d1:d1:7c:46:41:b3:e0:
ef:b9:b5:8a:ed:a2:fd:c3:1f:90:36:63:8f:da:29:
0f:44:47:8c:4c:74:ff:20:a3:6f:4d:fe:2c:19:4c:
04:3f:b3:06:d9:80:a5:ce:32:87:fc:ee:7f:8a:49:
8b:d5:60:4b:b5:ad:b4:42:66:dc:1c:d6:40:67:d3:
ef:bd:15:64:51:52:b2:b2:36:de:ab:1d:9f:65:1e:
20:01:e5:05:52:60:6d:f7:1b:d6:90:fb:9a:d8:ad:
ed:90:3d:ef:77:a3:3b:56:31:6d:28:87:54:f7:79:
42:c8:fa:61:65:0e:2b:0b:68:0c:8a:3c:5c:fa:23:
ce:e1:d9:4b:9b:75:0f:b1:7a:a5:e2:fb:3a:18:71:
de:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:22:F7:CF:2F:49:89:57:C5:3E:50:1E:40:42:7A:12:F3:4D:83:2F
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/CiL3zy9JiVfFPlAeQEJ6EvNNgy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.100.0/24
Signature Algorithm: sha256WithRSAEncryption
05:dd:b4:af:5e:07:40:e1:d6:21:34:ad:3a:4f:dc:29:f4:33:
a6:80:5c:86:db:62:e9:8b:91:a0:95:f1:3c:58:57:6a:6b:22:
2d:db:0c:2d:5c:f6:c4:22:96:36:d6:3d:b0:8b:f9:86:12:7b:
df:30:c6:e2:9d:75:57:04:fb:83:85:4d:d8:8f:31:cf:73:67:
60:2a:c1:26:de:86:ef:69:c4:ea:7e:e6:5e:b0:e7:ee:c3:d0:
8a:c1:c0:08:3b:dd:7d:88:32:66:33:42:a5:b4:42:f0:1f:a9:
f1:10:8b:87:5b:9c:ae:dd:c8:ae:53:46:74:78:c8:38:40:87:
41:06:b3:0c:05:af:32:fd:09:ac:51:63:61:4c:e0:bb:f9:9d:
cd:46:e5:5a:df:69:44:49:d5:ad:2a:dd:b5:ef:7b:93:e0:ec:
30:12:dd:f5:6c:2b:7d:c5:67:8c:5c:e6:5e:36:0e:15:eb:e3:
18:10:bf:5b:95:d7:35:47:86:9c:26:71:2a:ba:be:7d:95:8b:
76:3a:fc:46:64:a0:85:13:74:61:a0:93:f7:46:65:c8:21:8d:
dc:07:29:ca:22:b8:c1:e8:0a:7f:0a:89:0c:b2:4b:8a:6f:56:
16:0e:ed:f2:ae:36:bb:47:d9:d5:ec:ab:cf:6d:dc:35:29:90:
c9:8b:1a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org