Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/sJb10oTvgssrZ32509J7insXASg.roa
File: sJb10oTvgssrZ32509J7insXASg.roa (raw, json)
Hash identifier: P6nbYstgrfyURYnVnZBblSVSIKiXcfVLX01JDOWeH2I=
Subject key identifier: B0:96:F5:D2:84:EF:82:CB:2B:67:7D:B9:D3:D2:7B:8A:7B:17:01:28
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01857355CF84A7A0EE4C8DDA1E84A6CFE313
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/sJb10oTvgssrZ32509J7insXASg.roa
Signing time: Mon 02 Jan 2023 16:34:41 +0000
ROA not before: Mon 02 Jan 2023 16:34:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 188.241.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 11:12:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:cf:84:a7:a0:ee:4c:8d:da:1e:84:a6:cf:e3:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 2 16:34:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b096f5d284ef82cb2b677db9d3d27b8a7b170128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:23:25:37:e4:84:df:15:04:5b:da:39:18:ef:
7d:a2:2c:37:f1:44:1d:83:c2:07:53:9e:af:11:88:
6d:3e:be:db:cf:a6:41:04:61:cf:12:45:6d:17:a8:
34:b4:73:6a:cf:e8:b2:ba:45:15:e0:83:09:15:19:
63:fd:00:60:ea:15:6a:c8:96:64:bd:7a:8e:26:27:
bc:ea:dd:0a:4a:be:ec:63:6d:ae:84:3e:bb:98:9c:
e9:85:87:a8:c2:88:0d:82:5e:be:39:32:86:5b:d6:
53:5a:14:36:50:79:a0:71:b7:b4:ae:07:68:f9:2a:
00:76:73:84:64:8b:bb:86:88:d3:8f:5b:ed:f9:53:
be:80:e3:1b:e8:94:8b:a8:20:73:8c:e4:39:7e:12:
80:96:5c:d9:cf:1c:ba:c1:9f:34:b0:04:fa:72:85:
03:fd:63:62:37:df:3e:24:1e:11:bc:d4:58:3a:77:
6c:35:6f:57:1a:fd:d8:13:08:57:88:d2:83:e4:05:
eb:9c:44:10:0b:66:bc:38:90:c5:1f:b8:17:dc:86:
4f:ff:4a:c3:50:8c:d4:fb:d7:71:38:39:85:91:bc:
35:99:5d:2f:df:45:e8:2b:d0:08:0d:6b:23:8a:32:
d1:1e:3b:65:69:8d:9c:d4:e7:4b:7c:85:31:6f:be:
e2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:96:F5:D2:84:EF:82:CB:2B:67:7D:B9:D3:D2:7B:8A:7B:17:01:28
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/sJb10oTvgssrZ32509J7insXASg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.136.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:bf:77:a7:77:83:9d:6c:bf:f7:8b:57:2d:15:76:2c:e4:bc:
48:73:5c:96:1f:9c:77:51:a5:c6:66:2c:19:35:3a:f5:e6:03:
86:8f:64:72:10:31:c7:3e:de:c0:e6:26:11:9d:2c:35:0b:23:
07:6f:31:80:3b:5f:fc:0e:08:28:80:5b:75:72:90:c5:ae:41:
4a:b3:b5:15:83:3b:8c:68:84:17:05:82:89:08:a7:85:f8:17:
d5:02:41:6c:66:6f:0a:ad:27:74:30:a1:47:74:f5:b1:1f:ca:
4f:42:8a:ef:e4:43:c4:dd:7e:b5:05:d1:53:2c:33:ab:26:38:
97:5f:ca:5d:05:6d:e6:6d:0f:05:24:4e:29:0c:b7:5f:67:b2:
9d:58:1b:a9:5c:a5:67:8a:b6:7e:ab:31:2e:7d:01:27:a3:74:
36:51:9e:65:27:94:2e:6f:52:ee:d5:1b:84:5a:ee:aa:93:cb:
6c:e0:d4:08:f9:7f:64:5e:e5:81:1f:25:14:0b:9e:02:f6:21:
09:ed:97:1e:dc:12:db:5b:aa:80:ac:c1:b4:b4:87:72:1f:44:
d3:bc:d9:93:af:61:76:f9:ea:21:2f:13:ac:43:e4:c0:44:e0:
fa:30:7a:62:08:c2:86:5b:8b:31:ad:d3:3b:c4:0b:8a:f6:05:
a4:2c:12:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org