Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/kMnIyG4Otuiyco0eqXSQofSrA3o.roa
File: kMnIyG4Otuiyco0eqXSQofSrA3o.roa (raw, json)
Hash identifier: EtQxFz07tSL3e4fGm51yUfgLWpNGDoApPVBRdZdfK9M=
Subject key identifier: 90:C9:C8:C8:6E:0E:B6:E8:B2:72:8D:1E:A9:74:90:A1:F4:AB:03:7A
Certificate issuer: /CN=8b613794927050b22525ab70091835408eee4c79
Certificate serial: 01857231280D165F0C074B4306146FA05F9B
Authority key identifier: 8B:61:37:94:92:70:50:B2:25:25:AB:70:09:18:35:40:8E:EE:4C:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2E3lJJwULIlJatwCRg1QI7uTHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/kMnIyG4Otuiyco0eqXSQofSrA3o.roa
Signing time: Mon 02 Jan 2023 11:15:02 +0000
ROA not before: Mon 02 Jan 2023 11:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60015
IP address blocks: 193.57.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:28:0d:16:5f:0c:07:4b:43:06:14:6f:a0:5f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b613794927050b22525ab70091835408eee4c79
Validity
Not Before: Jan 2 11:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90c9c8c86e0eb6e8b2728d1ea97490a1f4ab037a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:0a:ee:58:28:00:13:e8:ac:25:46:dc:d6:
7a:1b:dd:19:55:da:25:22:cf:26:13:86:92:7d:44:
91:b7:12:06:21:c5:3b:90:bd:ea:9a:87:26:61:12:
2d:82:0d:4f:e3:58:1d:0e:54:80:92:83:1d:3b:06:
3e:87:23:a3:b2:dd:41:28:51:de:64:99:04:64:43:
9e:50:8e:c0:11:a3:62:e1:ca:4c:aa:ae:21:5a:74:
30:df:6b:f8:82:5b:8c:59:90:09:53:0b:c1:83:b5:
ca:a1:5a:de:a9:e8:7f:cc:fc:26:46:ca:18:e2:e2:
33:b7:4d:5d:72:d1:a7:96:b6:df:e9:22:2a:ac:f5:
e8:28:f3:15:35:98:07:1b:4c:dc:53:18:37:1a:58:
83:30:2c:9f:91:11:0e:02:87:e0:c5:e0:63:4a:91:
6e:1d:78:7c:57:f0:de:f6:82:53:b9:8e:b7:f2:53:
f5:8f:33:0a:de:f1:53:5b:c1:2e:8d:f3:e8:1f:e2:
32:f5:1c:50:74:7f:be:6a:16:51:70:1d:60:81:5f:
7e:c7:f7:cd:b6:07:a0:76:7f:ce:cf:b3:c9:c0:59:
a2:0e:94:c9:f9:7d:79:84:19:91:91:27:54:f5:b1:
9a:ba:5c:81:24:9b:d9:f3:44:38:40:66:53:ea:11:
3a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C9:C8:C8:6E:0E:B6:E8:B2:72:8D:1E:A9:74:90:A1:F4:AB:03:7A
X509v3 Authority Key Identifier:
keyid:8B:61:37:94:92:70:50:B2:25:25:AB:70:09:18:35:40:8E:EE:4C:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2E3lJJwULIlJatwCRg1QI7uTHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/kMnIyG4Otuiyco0eqXSQofSrA3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/18103b-b279-4de7-bc3c-ec05d0195036/1/i2E3lJJwULIlJatwCRg1QI7uTHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.16.0/24
Signature Algorithm: sha256WithRSAEncryption
06:2e:92:f4:db:43:43:7c:fc:49:d3:3a:57:c0:0c:df:17:66:
66:28:be:4c:24:59:b5:64:b1:b9:1c:53:4f:5e:39:e7:b3:08:
10:79:f8:66:b0:f4:bf:5c:c2:33:0c:b7:31:f8:e9:ed:a2:01:
b8:fb:ef:34:a6:2a:68:cc:a8:8e:d3:8a:54:66:d0:04:e1:76:
e5:7d:fa:a0:e9:7d:07:3c:55:86:df:ac:d5:81:28:a1:6e:bd:
d6:82:36:c2:32:22:81:86:e0:2c:b1:3c:ef:55:42:41:cc:71:
b2:cd:eb:88:66:ca:12:17:9c:d2:7d:a0:19:38:3b:9e:04:e4:
a4:4f:06:f8:bd:c2:24:ca:27:87:95:4f:f5:61:de:56:5c:05:
c7:d4:a9:7d:76:03:fb:93:47:88:21:0a:dc:86:61:6b:e4:a8:
1d:c8:0f:0b:5c:4e:8e:11:90:ee:88:81:af:f1:21:ae:40:fd:
1e:3c:3f:76:3b:d2:d1:12:24:ac:11:e7:c8:ba:8a:49:11:a0:
e5:fb:61:b7:c6:41:ba:13:03:b6:6b:45:df:e8:0c:3d:6c:28:
e5:15:64:0d:77:9f:49:bb:04:5f:01:59:f6:9e:9c:9a:ba:7d:
24:88:21:83:38:cd:2b:0c:c2:3b:e9:c0:39:26:55:36:7d:da:
78:69:0f:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:18 2024 by rpki-client on console-fra.rpki-client.org