Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/xCseB0qjCNBATWwvJyvdjMDk_1A.roa
File: xCseB0qjCNBATWwvJyvdjMDk_1A.roa (raw, json)
Hash identifier: ffSYSCZD8KJL2knQRV0DlcU5LSfjTcnqyjclqcb5kO4=
Subject key identifier: C4:2B:1E:07:4A:A3:08:D0:40:4D:6C:2F:27:2B:DD:8C:C0:E4:FF:50
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018CACDDE82AC48B981138F5130535A99068
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/xCseB0qjCNBATWwvJyvdjMDk_1A.roa
Signing time: Wed 27 Dec 2023 20:01:13 +0000
ROA not before: Wed 27 Dec 2023 20:01:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.191.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ac:dd:e8:2a:c4:8b:98:11:38:f5:13:05:35:a9:90:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Dec 27 20:01:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c42b1e074aa308d0404d6c2f272bdd8cc0e4ff50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:68:8e:96:47:77:88:52:1b:bb:78:ed:9e:ea:
a7:77:ed:63:6d:d5:9f:10:25:1c:a6:41:dc:4e:97:
8e:da:eb:24:94:ce:b0:a5:96:de:ab:a0:14:82:05:
3c:75:06:79:8a:fe:74:c3:3d:ad:04:20:85:0f:ba:
33:53:13:1f:e0:84:d9:56:aa:b9:30:70:0e:33:b9:
92:ee:18:3d:7d:55:a1:e9:80:56:fe:dd:af:ec:e4:
3e:71:0a:5d:4b:a4:5a:f6:a7:ef:26:5e:08:a3:3c:
47:d3:e9:b4:87:43:30:98:2a:7a:20:44:14:d9:e3:
b0:15:d7:31:c2:ef:6e:56:ca:59:a5:db:c1:1f:20:
9f:99:ce:92:68:3b:13:a5:bb:3a:35:c7:f6:57:d1:
06:e7:a1:b0:ea:ff:6d:96:3d:db:56:1a:16:f1:44:
63:c0:dc:fc:f2:a7:c0:4f:ad:68:ad:65:e1:e9:6c:
bd:6f:27:d4:68:97:03:c5:c4:4e:da:21:96:e5:ca:
71:3a:e2:93:0d:a5:0f:9c:e8:67:f4:2e:14:88:40:
21:de:f9:dc:5d:2f:d3:b3:de:b4:02:af:81:c5:85:
a7:cf:c8:8b:d7:25:5a:df:51:07:f0:39:23:0a:a2:
30:ca:21:82:1a:db:4c:c8:38:81:00:5f:75:b8:19:
c1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:2B:1E:07:4A:A3:08:D0:40:4D:6C:2F:27:2B:DD:8C:C0:E4:FF:50
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/xCseB0qjCNBATWwvJyvdjMDk_1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.100.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b3:97:8f:37:1b:41:68:ee:b7:3e:0e:09:ea:7c:59:c8:84:
aa:68:79:a2:98:18:58:6c:3f:99:3a:35:cb:47:86:dc:11:8c:
c2:7c:fa:4c:8a:66:8e:53:e4:b3:99:47:92:b1:1b:15:86:e0:
e2:e1:07:4a:b2:93:b0:9b:5e:8b:6e:10:7f:e8:0b:3f:0c:34:
7f:89:1b:b4:ad:26:0e:d7:31:a1:6b:b5:11:13:7b:8e:a8:a7:
90:a2:4d:f4:19:18:bc:e7:cb:7b:74:36:3a:53:7f:45:2c:60:
47:c2:57:55:78:ea:00:a2:2f:3e:cc:5d:de:77:a4:a6:32:3e:
83:b3:cb:eb:31:14:d1:d6:cb:f0:df:18:3b:81:51:b3:66:d0:
37:d8:ce:4a:91:d9:26:bc:76:fd:83:85:86:70:5b:39:ba:ef:
e9:01:13:61:74:63:b2:0c:74:e7:93:73:d6:d0:9c:cd:41:94:
ef:9c:01:c4:68:e7:c9:de:88:f7:f6:79:b7:bf:62:78:82:f1:
6e:bc:c7:03:77:25:b2:d0:cc:42:42:72:06:a0:97:d6:f8:c5:
3a:92:b0:5e:01:b9:f1:73:31:e4:fe:a9:39:2d:17:ce:60:58:
47:18:72:07:f5:89:21:bc:62:2c:57:16:b0:b5:2b:3e:32:f8:
6f:7d:21:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org