Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/K5hwI_PeJo1Lu-i0KxAELcNa7go.roa
File: K5hwI_PeJo1Lu-i0KxAELcNa7go.roa (raw, json)
Hash identifier: m/zk9p5bjvQMQjxYYvKVNm+tdhB6uJpf2Xa3qGzW9BI=
Subject key identifier: 2B:98:70:23:F3:DE:26:8D:4B:BB:E8:B4:2B:10:04:2D:C3:5A:EE:0A
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0188DFCBD0ABD6096C179BCB1ACAA67A678E
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/K5hwI_PeJo1Lu-i0KxAELcNa7go.roa
Signing time: Wed 21 Jun 2023 21:10:56 +0000
ROA not before: Wed 21 Jun 2023 21:10:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.191.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 04:46:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:df:cb:d0:ab:d6:09:6c:17:9b:cb:1a:ca:a6:7a:67:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jun 21 21:10:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b987023f3de268d4bbbe8b42b10042dc35aee0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f8:d2:29:3d:95:50:15:e5:58:de:74:d6:e6:
60:87:8c:4b:5e:44:35:32:38:0c:62:05:1f:47:89:
77:f5:99:0b:78:30:5a:70:0f:c6:1e:0c:da:1f:d0:
e5:b9:d9:fc:22:2d:42:74:00:f4:5d:dc:c0:fd:8f:
b1:82:f3:ee:3e:9d:8e:3c:6c:f5:39:8c:73:34:86:
bf:15:ff:70:1a:af:90:0d:91:b6:d8:1f:c1:47:4f:
fa:c8:f5:f9:2e:70:80:20:32:79:21:f4:43:bb:33:
9d:7c:39:77:29:bd:f2:62:38:75:39:47:fe:d0:37:
dc:ed:17:76:71:ad:15:fa:46:ce:52:c8:b9:72:bf:
49:28:74:01:23:d6:a8:63:f9:84:f4:9f:65:2a:a8:
e1:f8:b1:cd:08:3f:6e:b5:f5:33:d4:53:0b:07:2a:
64:db:82:80:87:12:51:b2:76:03:cc:4c:d1:7b:7b:
d5:a6:f8:0b:ee:0c:b6:04:37:0d:c1:2f:a1:23:18:
87:a7:71:bd:cc:1b:f4:82:d1:23:28:18:6c:a0:47:
3b:06:ce:5e:5f:12:23:36:72:23:70:1a:67:b5:b1:
8c:17:38:1d:af:43:81:87:3b:d9:db:c5:af:4f:f2:
36:5a:c9:65:d1:98:a2:54:4c:54:ff:df:cf:a3:03:
03:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:98:70:23:F3:DE:26:8D:4B:BB:E8:B4:2B:10:04:2D:C3:5A:EE:0A
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/K5hwI_PeJo1Lu-i0KxAELcNa7go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.96.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:29:1f:7b:69:b4:e8:ad:d5:76:09:33:76:4b:bd:46:82:cf:
e5:f8:50:eb:e1:aa:73:98:04:0e:1f:63:54:4f:67:11:b6:b1:
57:fd:dc:03:10:1d:83:95:b8:f1:cf:4e:e3:8a:f5:be:49:1a:
ce:57:2a:8c:a7:00:93:51:e2:10:2c:41:3c:5c:d6:d0:72:4d:
4e:d4:6f:28:60:d5:2a:a2:e9:23:0e:77:f8:ba:ad:f0:8c:a1:
9d:d3:b1:fd:5c:4b:be:6d:8c:b1:aa:b8:67:cf:fc:b0:4f:b1:
fa:1d:37:4d:76:c1:ed:46:9b:37:ed:8f:f0:1c:e3:62:8f:bd:
f4:15:2b:cd:8a:56:92:e5:80:b9:ee:25:7f:c6:ad:7d:82:2f:
e0:f7:19:db:fa:de:e2:ae:b4:0d:25:6b:5f:7d:f2:17:34:43:
2b:4b:40:94:63:a6:44:2a:3a:60:91:db:e3:98:de:97:d5:f4:
40:e4:29:1d:69:87:bd:70:d1:40:4e:8d:41:ff:85:90:f0:a2:
83:64:06:4b:e4:ef:f3:dd:71:77:1b:f1:bf:45:93:1a:70:f0:
23:90:07:01:aa:bc:21:f3:e3:b3:76:ea:d9:69:6e:f3:00:68:
b5:6f:86:be:bc:8a:30:42:47:b4:1c:cd:71:4f:86:4a:e3:9e:
d0:ab:1c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org