Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Ibc3hl11J3sVJhz6gT7msyebDsg.roa
File: Ibc3hl11J3sVJhz6gT7msyebDsg.roa (raw, json)
Hash identifier: Pmo73nJpt5TvA8psWtO87rWrpSul7XRV4PAlkvLzdRE=
Subject key identifier: 21:B7:37:86:5D:75:27:7B:15:26:1C:FA:81:3E:E6:B3:27:9B:0E:C8
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A355F42561C111AFE811A4E2F458F
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Ibc3hl11J3sVJhz6gT7msyebDsg.roa
Signing time: Mon 02 Jan 2023 12:34:49 +0000
ROA not before: Mon 02 Jan 2023 12:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 188.253.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:35:5f:42:56:1c:11:1a:fe:81:1a:4e:2f:45:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21b737865d75277b15261cfa813ee6b3279b0ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:99:b5:5a:a1:11:ab:6a:79:08:54:f4:f1:28:
89:9f:16:c7:b3:d8:13:b3:a8:ae:f4:7a:77:50:7e:
f8:12:b7:9f:93:d1:b2:24:c7:91:cf:a0:9d:43:1b:
97:f7:e9:a8:ba:26:68:ce:6e:f8:0d:53:cc:65:c4:
85:3e:8d:f6:3e:c4:62:48:62:08:1f:8e:eb:92:e9:
19:59:cc:a4:02:6f:79:8b:2e:fd:82:bb:58:54:08:
32:2f:5f:fb:bd:4c:c4:1f:87:82:70:9b:88:dc:4b:
ad:6e:ec:58:bf:67:60:d6:bc:fe:44:59:58:6c:27:
59:36:0e:9d:d7:e9:b3:50:0e:79:d2:3d:2a:a2:87:
6a:dc:40:39:79:a2:01:13:bd:b1:8e:9b:5e:97:b9:
f6:15:dc:40:c7:ef:05:36:23:61:5a:d8:13:58:a3:
5d:13:01:85:81:42:88:4b:b6:7c:4c:7c:e8:46:9a:
e9:ba:15:fc:87:3b:70:30:91:61:3f:23:3e:8c:9f:
85:8f:5d:6f:5e:40:72:55:71:b5:98:a7:7d:51:06:
72:8f:3c:98:12:34:eb:0f:d5:98:ee:da:62:5d:88:
26:e4:50:10:05:0f:52:eb:51:a5:21:87:51:1d:76:
7c:19:ae:36:64:ce:a8:f2:82:07:b6:bd:6c:67:d9:
e1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B7:37:86:5D:75:27:7B:15:26:1C:FA:81:3E:E6:B3:27:9B:0E:C8
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Ibc3hl11J3sVJhz6gT7msyebDsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.253.1.0/24
Signature Algorithm: sha256WithRSAEncryption
46:51:db:c5:e4:a5:56:0b:c2:f0:ca:7d:63:2c:e7:6e:d3:a9:
6b:ee:19:27:c8:28:f5:fe:1e:ba:82:6e:db:bb:6b:be:3c:aa:
7c:e3:07:15:9d:15:01:3c:48:c0:cf:6a:e3:bc:ea:4b:2a:db:
46:d9:8d:7c:c2:6b:f9:16:1b:1e:49:81:a9:4d:2f:c5:e3:82:
03:cd:49:0c:e4:7a:02:e1:df:d8:1d:c5:0f:09:79:0e:cc:04:
d8:8f:7d:cf:50:cc:b8:cf:88:76:2f:24:8a:25:06:6f:b3:a5:
bd:90:22:35:42:53:71:b8:96:fe:55:63:b6:02:4d:66:15:bd:
d8:f9:98:8c:0e:67:5b:89:3b:d5:90:72:75:8d:13:37:a0:12:
0c:d6:96:a1:50:74:b7:11:d0:e9:35:f7:85:eb:8b:6f:19:cb:
8e:da:f6:d7:c0:75:d2:2f:7b:7e:6a:83:37:49:08:f9:bb:ca:
4f:38:a8:24:a2:05:ee:0e:42:7c:79:f4:c5:bc:a0:50:f5:8a:
af:8f:84:37:f2:38:a8:c6:28:c9:4c:af:44:08:d4:fe:79:ff:
25:c1:39:85:53:cd:00:49:27:42:df:e4:04:a7:93:a6:83:92:
31:4d:ce:4d:ac:b8:8c:f5:5a:3e:1e:6d:61:f3:24:42:b2:77:
05:e8:b3:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org