Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/pBOQZPi7o-Pk2UHUKJO1M3vVhig.roa
File: pBOQZPi7o-Pk2UHUKJO1M3vVhig.roa (raw, json)
Hash identifier: raSoukflDkiSzuAvFshApK9EZFoIs9/lcI1hNR4K0kA=
Subject key identifier: A4:13:90:64:F8:BB:A3:E3:E4:D9:41:D4:28:93:B5:33:7B:D5:86:28
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018F0190A91C1DE0E00608721368A5279337
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/pBOQZPi7o-Pk2UHUKJO1M3vVhig.roa
Signing time: Sun 21 Apr 2024 16:50:08 +0000
ROA not before: Sun 21 Apr 2024 16:50:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58678
IP address blocks: 212.16.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 17:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:01:90:a9:1c:1d:e0:e0:06:08:72:13:68:a5:27:93:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Apr 21 16:50:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4139064f8bba3e3e4d941d42893b5337bd58628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c2:ad:bb:d2:da:85:6a:55:e5:ab:8c:de:14:
1b:9b:54:2f:76:65:39:88:00:96:f9:cb:46:93:e7:
3e:3e:fc:c9:e7:2a:98:eb:e8:21:1a:7c:0e:6b:77:
f4:d3:db:e2:90:2e:ae:a9:d0:03:9d:1b:d7:3f:31:
97:7c:52:98:26:32:b4:ca:75:53:d2:bc:88:c7:9a:
23:56:60:3b:51:f2:46:be:57:1c:e1:76:be:57:bc:
12:d8:28:b3:5d:20:41:c8:e6:85:50:d3:a4:24:4b:
3c:02:92:68:94:f0:26:a8:b4:65:df:30:d3:3d:15:
ee:20:ed:43:8b:34:89:bb:f4:96:2e:d2:99:39:72:
b0:37:18:f6:e2:a0:6e:4e:40:56:ce:3e:7c:15:f5:
dd:69:e7:aa:34:94:19:7e:5e:bd:d6:b4:8e:e9:76:
f1:e1:eb:7a:9f:84:e5:62:56:b5:7b:c8:c3:23:b1:
89:48:46:08:45:8f:bc:3d:ca:3e:64:5f:41:3a:87:
78:3e:da:a1:a8:f7:ce:45:d6:48:42:72:3f:24:eb:
24:3d:34:bf:42:c0:81:37:8b:90:99:7b:fa:bc:c4:
b9:fe:df:30:7e:38:7b:db:e6:1c:36:8b:ec:09:75:
dd:65:68:fa:0b:89:be:a1:5e:24:55:04:c3:17:f8:
00:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:13:90:64:F8:BB:A3:E3:E4:D9:41:D4:28:93:B5:33:7B:D5:86:28
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/pBOQZPi7o-Pk2UHUKJO1M3vVhig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.93.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:0b:6e:8a:d4:78:39:a4:a5:68:98:3d:4f:86:5e:23:a9:db:
01:d6:b5:5a:44:aa:16:c5:64:7a:61:d9:a0:2c:0e:68:22:de:
ae:2f:60:81:ea:73:51:fe:96:54:af:1e:ec:b4:fb:af:8a:0b:
89:18:77:58:65:15:a9:a6:de:10:90:09:5b:69:df:cc:41:5e:
8e:20:c5:45:bb:b1:0e:85:a9:98:00:60:e1:73:6a:cd:e4:86:
65:a7:2c:17:0c:79:e7:f2:22:1a:ff:61:14:9d:f1:38:cb:d9:
0c:49:81:fb:c3:3d:13:74:03:d9:4f:6f:10:88:42:8e:9c:a9:
0b:98:73:5a:cf:48:a1:d9:c7:25:ba:fc:d1:eb:66:26:f4:0a:
c3:20:de:39:34:5d:22:54:07:4e:93:b1:2c:64:b6:a4:00:43:
5b:e6:84:bf:f4:a6:78:92:5d:79:e0:a3:48:66:26:8f:a7:be:
b5:3a:a4:0c:f1:2d:92:42:8a:75:1c:22:8b:b5:65:07:3e:90:
f7:ce:e3:2a:e5:5b:df:19:a4:6c:fd:ae:52:a2:eb:cd:f6:83:
88:6c:03:31:22:48:cd:1c:5e:da:e1:c2:ca:62:18:3e:c0:c4:
21:d6:04:f7:83:c9:a9:0a:c1:c0:4d:fa:3d:d0:8e:2a:27:b6:
e6:63:2b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org