Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ps7S3mJR3jMzryByvijmk8Xet-4.roa
File: ps7S3mJR3jMzryByvijmk8Xet-4.roa (raw, json)
Hash identifier: 6NLnYkNLaMUYJM0iIx9YglFUqAgZWI0+2LSYnYhCS7g=
Subject key identifier: A6:CE:D2:DE:62:51:DE:33:33:AF:20:72:BE:28:E6:93:C5:DE:B7:EE
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0187A3575383BD4A219149109F9230668DAC
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ps7S3mJR3jMzryByvijmk8Xet-4.roa
Signing time: Fri 21 Apr 2023 10:23:41 +0000
ROA not before: Fri 21 Apr 2023 10:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 188.191.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a3:57:53:83:bd:4a:21:91:49:10:9f:92:30:66:8d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Apr 21 10:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6ced2de6251de3333af2072be28e693c5deb7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cb:96:e1:ad:93:a0:05:4c:50:45:9c:fa:00:
97:7d:28:f6:98:fd:5e:a2:e4:a1:dc:19:a5:3f:2c:
a4:90:6a:ca:77:85:8c:0b:8c:28:e9:18:a0:d3:59:
a5:bf:60:67:19:f2:02:94:c0:e7:2d:c5:37:64:dd:
57:3b:37:fa:d3:65:de:33:1c:ce:f8:e8:f1:78:00:
59:bc:11:51:ff:ed:2c:6b:6e:fd:51:f6:04:03:a1:
2d:0d:f9:fc:cd:4a:71:b2:46:92:c4:57:2c:18:10:
a5:37:6b:2f:3a:ac:bf:e5:73:fa:71:56:f2:74:04:
87:ed:38:52:7b:e7:db:94:c4:d7:2e:1c:b3:14:c1:
42:8f:16:82:0e:42:00:0d:4d:da:bd:8d:2e:d2:c4:
27:f0:b6:23:48:8d:1d:0f:60:d3:bd:bf:6c:f3:8f:
97:81:53:0f:86:52:5a:3a:f6:da:40:71:a2:e0:3d:
ae:77:dc:96:19:63:84:13:8d:55:71:78:b5:1f:68:
08:69:ad:78:3d:bf:10:93:e0:a2:06:fc:0a:3e:86:
2e:65:ab:61:4e:65:42:33:fb:26:60:cd:70:5a:38:
83:be:09:4d:83:54:f3:c5:62:a6:2f:1a:39:ec:6a:
c7:55:24:36:24:6f:7e:d4:71:56:f2:bb:41:d3:68:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CE:D2:DE:62:51:DE:33:33:AF:20:72:BE:28:E6:93:C5:DE:B7:EE
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ps7S3mJR3jMzryByvijmk8Xet-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.111.0/24
Signature Algorithm: sha256WithRSAEncryption
16:01:8b:11:b2:4e:08:5c:3f:77:f6:4f:5f:8d:99:a5:52:55:
d1:13:fd:65:e6:2d:6f:70:7e:de:4f:d8:e5:0e:3f:08:7b:1b:
9c:d7:f6:87:5a:7e:46:7c:47:98:e2:04:e1:b2:d8:09:f3:25:
48:2e:b7:03:1f:76:b6:b4:ff:a4:19:f0:1d:e5:09:3e:e6:8c:
88:40:1c:e3:af:53:b6:4b:a6:a9:b4:52:d3:78:e3:b2:32:8a:
b0:d8:80:0a:aa:4b:c6:76:8b:27:b2:e7:0b:66:69:67:8e:c6:
b3:04:3d:9f:4b:e2:51:0b:be:df:94:17:1e:0a:98:a5:31:5f:
a7:ce:17:d0:d5:f1:f5:11:1c:78:0a:52:9c:74:42:cf:58:73:
e6:d5:4a:48:93:dd:1a:6f:23:b1:f6:56:ea:cd:c9:92:a0:59:
db:98:a4:4b:e9:26:46:3f:81:27:31:e8:8f:d0:f1:c0:ab:b1:
7c:86:a1:9f:0f:1d:36:af:70:60:82:1e:2e:91:a9:a8:f5:4c:
b2:8c:4a:73:0b:c4:ff:a8:19:8e:b6:72:50:37:7d:a3:6a:82:
07:f1:15:6f:d1:64:06:09:c2:67:52:c9:12:de:86:8e:0a:f3:
c4:bc:25:86:58:92:31:7f:91:b2:b9:d7:55:06:08:53:86:65:
6a:85:8d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:39 2023 by rpki-client on console-ams.rpki-client.org