Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lZ79EuhuxeAKBzaLXfMRzls788A.roa
File: lZ79EuhuxeAKBzaLXfMRzls788A.roa (raw, json)
Hash identifier: qm85P2alaj1ZWlYQ+R/iGfD1SuFUGsJjAAM/6rbxa4E=
Subject key identifier: 95:9E:FD:12:E8:6E:C5:E0:0A:07:36:8B:5D:F3:11:CE:5B:3B:F3:C0
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018D0C138000F1B206285FFB49B879D53314
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lZ79EuhuxeAKBzaLXfMRzls788A.roa
Signing time: Mon 15 Jan 2024 07:43:40 +0000
ROA not before: Mon 15 Jan 2024 07:43:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.191.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 16:43:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:13:80:00:f1:b2:06:28:5f:fb:49:b8:79:d5:33:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 15 07:43:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=959efd12e86ec5e00a07368b5df311ce5b3bf3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:cd:32:1f:d2:be:e3:ae:c9:2b:0e:2a:7f:
f0:6d:39:14:1a:d5:94:70:ef:0c:f3:24:3b:0c:62:
a4:c7:3e:0f:43:97:86:56:ef:aa:73:a0:3f:64:90:
b4:6e:7c:18:ee:8d:d3:d2:69:9b:b8:a8:97:5c:fc:
0b:8e:ce:e3:fe:e6:fe:e3:96:94:41:d5:34:92:d6:
bc:fb:84:b6:8a:ab:d6:24:c1:ab:18:77:40:f2:82:
9c:0c:68:f4:5d:c7:b2:c8:10:fb:aa:ce:e5:12:65:
a8:44:4d:07:99:89:ba:42:cb:d4:55:2e:0f:ec:e6:
d8:ea:c1:05:2e:b6:2c:19:97:c6:8b:38:ca:4a:2a:
0f:8b:ab:63:1b:8b:cf:9d:78:1c:45:b9:49:b6:77:
8c:5e:d2:5a:f8:50:3f:ee:05:d9:44:95:16:9a:5e:
cf:8e:66:cf:05:fb:e7:44:eb:12:a9:ed:45:3f:e3:
0a:d1:c8:e2:0e:85:8a:74:48:16:e8:71:0b:c1:54:
c6:68:2f:16:11:0f:e7:04:03:b2:06:a7:9a:31:b8:
0d:89:6a:48:76:9c:92:90:35:ad:80:8a:8b:a8:8e:
d2:78:da:d4:e0:fc:e3:1d:70:4d:48:8d:70:0b:52:
c2:7c:df:e4:f5:12:2f:06:03:23:93:07:80:71:a2:
d6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9E:FD:12:E8:6E:C5:E0:0A:07:36:8B:5D:F3:11:CE:5B:3B:F3:C0
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lZ79EuhuxeAKBzaLXfMRzls788A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.106.0/24
Signature Algorithm: sha256WithRSAEncryption
25:60:5a:91:ca:0c:19:19:11:c1:16:4e:17:ec:9d:62:30:91:
f5:2e:14:c1:0c:a2:92:07:f6:c0:af:ec:3b:97:75:67:b6:29:
17:a5:9b:bf:1a:eb:47:8d:0e:bd:e2:b0:bb:91:fc:bb:ae:7f:
65:06:5c:cc:29:28:b2:46:7b:54:a5:ff:f9:2f:7b:f9:4f:2b:
d4:ed:82:51:2f:28:0f:d8:d7:75:e0:2d:c0:07:cb:43:21:60:
0b:7b:c8:02:b2:5d:2a:d9:e0:a3:56:ee:d3:34:9d:c0:c1:32:
0c:1f:02:c2:c6:f6:96:ef:dc:d7:40:7a:52:eb:e8:89:f5:ba:
de:b0:e2:84:d4:5b:ad:3b:98:d1:17:78:e6:cb:19:98:79:31:
9c:44:55:90:9b:b4:89:d1:97:32:ca:a2:64:d5:92:74:7b:0b:
15:e0:ac:81:88:e0:66:63:8b:aa:33:da:26:a8:00:36:c7:ba:
75:06:72:d4:1a:e3:b5:8a:3f:d5:1a:7e:57:31:a4:5b:e0:54:
49:7d:d8:21:20:51:6e:4f:28:9c:03:67:fa:50:f6:d8:34:cf:
06:80:7f:fe:0c:fa:d3:44:89:7f:12:38:fc:ef:54:ca:12:8d:
b5:11:d7:06:cd:a6:72:65:ce:f4:a0:3c:8f:fe:a7:11:fc:4f:
29:fb:d8:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org