Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/dq-pWd5Jql9hvpNtVYWENjvmM6g.roa
File: dq-pWd5Jql9hvpNtVYWENjvmM6g.roa (raw, json)
Hash identifier: LniqwY/rRbHV9XBeayP3a82BJxZKPquMqVCykyuC3gM=
Subject key identifier: 76:AF:A9:59:DE:49:AA:5F:61:BE:93:6D:55:85:84:36:3B:E6:33:A8
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01896F8752B900240658FAD4B6EFCB553189
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/dq-pWd5Jql9hvpNtVYWENjvmM6g.roa
Signing time: Wed 19 Jul 2023 19:01:26 +0000
ROA not before: Wed 19 Jul 2023 19:01:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 188.191.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:87:52:b9:00:24:06:58:fa:d4:b6:ef:cb:55:31:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jul 19 19:01:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76afa959de49aa5f61be936d558584363be633a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:be:72:cf:02:88:22:8b:d9:df:55:34:0b:fb:
05:50:1e:c6:5c:00:c1:54:75:2e:c9:89:8d:d1:83:
0c:25:6c:73:ec:a2:6b:39:a2:8e:ed:11:a4:0d:c6:
59:cd:24:f3:33:19:f4:d6:96:6c:e5:ad:cc:72:e0:
82:24:33:14:fc:db:15:4b:9d:30:2f:03:b2:3b:da:
31:a5:7a:24:39:db:50:ce:88:eb:4f:1a:05:e9:6a:
98:e5:40:06:94:41:3e:4a:99:53:45:14:9a:14:27:
c0:52:ac:90:e6:c9:86:43:18:69:06:71:42:c5:19:
0d:2e:ff:d6:f1:b4:e4:ff:eb:a7:d2:dc:78:cd:a7:
50:ab:12:11:02:9e:a3:b8:9a:06:c8:d4:31:1a:33:
ea:49:6d:9d:47:6d:5c:ce:e6:b0:c2:ea:d3:01:8a:
82:96:d3:85:2b:29:22:ee:eb:3e:9f:a6:1b:62:16:
fc:86:b8:8f:98:a7:1b:00:a5:ac:3c:57:e8:77:c8:
87:d9:6b:34:72:c4:92:cf:ad:69:81:39:05:b5:03:
27:f0:c7:a1:62:32:da:eb:eb:4f:21:13:87:79:54:
ab:81:84:92:4c:da:da:f4:81:74:18:80:51:8f:b5:
ef:f4:68:43:04:39:df:ea:bf:da:44:2f:0d:00:a4:
75:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AF:A9:59:DE:49:AA:5F:61:BE:93:6D:55:85:84:36:3B:E6:33:A8
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/dq-pWd5Jql9hvpNtVYWENjvmM6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.111.0/24
Signature Algorithm: sha256WithRSAEncryption
68:50:30:90:43:d8:c9:28:7f:6d:8a:2a:a2:0e:ab:dc:78:b4:
0a:cd:a4:b7:56:8c:42:20:ed:d0:8c:46:e6:89:cb:7f:f8:96:
75:70:a5:23:b6:aa:7f:6e:ff:31:e6:de:69:03:99:a8:22:29:
58:88:36:90:8d:a3:59:18:97:9e:cd:72:82:86:34:8f:0f:94:
ee:f3:2b:b6:ee:44:6b:81:7c:cb:88:3d:09:17:19:10:15:85:
19:46:db:7c:ed:86:b5:29:1a:cf:81:63:1c:05:f0:98:9c:1f:
a1:8c:88:0e:f3:cd:a2:e9:2a:dc:d1:91:f5:80:7a:cf:15:a2:
64:be:56:4e:0e:a5:32:94:92:06:99:94:2b:49:72:ba:cf:9f:
dc:eb:a1:a7:b5:65:50:62:f3:1a:6a:98:d9:1f:47:16:e1:1a:
72:17:91:52:32:cf:9a:a3:ab:43:20:07:cb:69:c6:11:fe:dd:
ea:9d:8c:74:a9:be:91:64:d7:50:f7:67:fc:52:75:6d:e5:ad:
02:0d:d8:b3:f9:38:40:d8:07:77:7d:d8:84:f6:2a:f3:48:b4:
73:b4:77:cc:7f:67:5c:c6:a7:80:b7:23:40:f2:1c:41:ca:98:
23:14:4e:66:20:be:89:06:fa:fe:ac:65:72:44:03:28:7f:df:
fd:2a:d1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:49 2024 by rpki-client on console-fra.rpki-client.org