Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/doxhWqGhemremgL_CaP8TaAaOfM.roa
File: doxhWqGhemremgL_CaP8TaAaOfM.roa (raw, json)
Hash identifier: whJpYhdflkui8UEFeWum1+/ErZHHG9vrQoCjK4UJ8dA=
Subject key identifier: 76:8C:61:5A:A1:A1:7A:6A:DE:9A:02:FF:09:A3:FC:4D:A0:1A:39:F3
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0189B0E72C3C7100045FAE4E90A76FDD23F4
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/doxhWqGhemremgL_CaP8TaAaOfM.roa
Signing time: Tue 01 Aug 2023 11:41:27 +0000
ROA not before: Tue 01 Aug 2023 11:41:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.191.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 18:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b0:e7:2c:3c:71:00:04:5f:ae:4e:90:a7:6f:dd:23:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Aug 1 11:41:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=768c615aa1a17a6ade9a02ff09a3fc4da01a39f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b2:59:d4:86:00:03:e3:37:fd:1a:4f:d5:ad:
f1:49:af:54:45:0b:61:3a:04:ef:57:02:81:36:d1:
d4:64:fa:b4:dc:a7:aa:f1:0c:98:31:f3:01:ef:3e:
7b:84:2d:70:dc:6c:de:33:98:89:7b:f2:67:d5:9c:
2b:a7:b2:f3:86:4f:8d:8a:2b:08:b1:6c:b5:95:2f:
28:b3:92:db:18:77:8a:fe:b1:3f:b6:77:fb:56:bb:
4e:c4:b5:e8:c5:33:dc:c5:82:ae:47:ae:59:4b:e1:
8c:05:9c:04:38:08:44:22:db:ed:cd:9a:8f:7a:9e:
79:ea:63:b2:97:38:57:09:35:7d:d7:59:88:46:fa:
14:da:23:cc:44:79:4f:91:64:72:eb:a5:74:a6:d3:
7f:c9:e9:1a:9b:20:13:4d:be:9c:be:45:72:af:b4:
43:9e:a3:a1:6f:4f:b2:21:e4:99:d4:bf:d1:df:c8:
f9:df:2f:c3:92:a3:59:db:41:04:00:39:58:ea:9c:
a4:56:6e:85:a3:8e:66:a4:08:df:22:a1:16:87:f9:
0a:ec:c1:b9:87:43:fe:c8:84:d2:13:b6:7b:f8:49:
4b:f9:3f:5d:27:15:ca:1b:bf:4f:31:c9:25:a2:f1:
69:8a:20:58:03:10:9c:fb:e7:61:90:97:33:74:16:
8a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:8C:61:5A:A1:A1:7A:6A:DE:9A:02:FF:09:A3:FC:4D:A0:1A:39:F3
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/doxhWqGhemremgL_CaP8TaAaOfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.99.0/24
Signature Algorithm: sha256WithRSAEncryption
33:a5:88:27:16:d8:66:da:24:65:54:ef:a4:b1:94:b3:37:cd:
01:4f:04:58:24:13:fa:ed:72:c9:6d:fe:61:0e:d8:7c:f0:dd:
7c:7b:13:b9:ec:c9:98:7f:26:03:aa:14:f3:30:93:48:c4:ed:
f5:67:84:ef:f3:7a:43:00:08:33:5a:95:a5:4d:bf:6b:c2:88:
bd:44:ba:4a:72:67:4d:5e:03:d5:46:6a:12:a9:6b:f5:f0:d4:
24:52:25:86:fd:4f:7f:6a:ea:46:4d:42:1a:43:fb:01:17:25:
8f:2e:3b:43:c7:c9:27:03:7e:87:14:b4:24:80:f9:08:5b:95:
a8:d8:10:2a:4a:53:e0:99:73:b7:aa:c3:22:03:ed:07:16:20:
9b:88:c9:05:17:c9:18:38:44:af:74:18:01:72:15:80:60:08:
f4:20:d4:73:fc:78:b1:8b:0f:aa:9b:3d:51:bf:9f:a8:d6:de:
d5:72:8a:5c:cd:67:36:8f:95:fb:c4:6d:8a:00:2e:eb:0d:90:
ee:91:85:a4:76:ea:a6:63:39:c9:f6:f7:6e:8e:8a:49:7b:80:
3d:61:08:71:4f:b6:e6:12:63:1f:a9:83:e1:60:a5:9d:29:30:
73:3b:f3:c7:99:37:24:69:0a:0b:78:f5:3d:9d:fb:8e:c7:77:
c6:12:18:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org