Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/bd8a16-000a-4917-9061-b5821e33de0d/1/8gkE3i-9S7K4wBjhAMtpkmtby14.roa
File: 8gkE3i-9S7K4wBjhAMtpkmtby14.roa (raw, json)
Hash identifier: /ysjzN0DHQm7kA2XySes07KdPcrXsJaBQt2gkVekQ1s=
Subject key identifier: F2:09:04:DE:2F:BD:4B:B2:B8:C0:18:E1:00:CB:69:92:6B:5B:CB:5E
Certificate issuer: /CN=74e4c3e00fc3eeee936abb527e352e4af03de89b
Certificate serial: 018B185329C05A2F234A16D0C152D8533219
Authority key identifier: 74:E4:C3:E0:0F:C3:EE:EE:93:6A:BB:52:7E:35:2E:4A:F0:3D:E8:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOTD4A_D7u6TartSfjUuSvA96Js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/bd8a16-000a-4917-9061-b5821e33de0d/1/8gkE3i-9S7K4wBjhAMtpkmtby14.roa
Signing time: Tue 10 Oct 2023 06:43:05 +0000
ROA not before: Tue 10 Oct 2023 06:43:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31673
IP address blocks: 193.105.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:53:29:c0:5a:2f:23:4a:16:d0:c1:52:d8:53:32:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e4c3e00fc3eeee936abb527e352e4af03de89b
Validity
Not Before: Oct 10 06:43:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f20904de2fbd4bb2b8c018e100cb69926b5bcb5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:64:6a:3a:2a:f0:79:53:3a:35:80:ab:15:c3:
c3:7e:a5:b2:83:8b:2f:e5:c2:89:1e:2e:b7:c8:11:
01:8c:db:f7:30:e1:c4:43:37:db:d0:f8:ac:44:52:
c2:82:17:60:f2:3c:0d:81:c6:91:da:9b:03:61:56:
83:8e:31:bb:7b:40:e0:49:ec:07:ba:5b:36:16:91:
93:5d:39:0f:56:cd:65:01:2a:f7:47:e5:20:0f:57:
30:11:c9:0c:07:43:b4:9f:8f:7e:2a:d2:e1:ce:2f:
1c:7e:d0:8e:10:b0:4d:c4:4d:be:1c:f7:6b:5a:5f:
6b:7a:94:93:04:30:6c:a2:d1:27:a9:e6:3f:7f:30:
fe:6d:82:d6:50:10:71:41:4e:02:14:4d:40:bd:38:
25:c5:94:fc:92:14:72:fe:9b:f4:c5:66:dc:58:4f:
b0:0d:6c:57:15:5e:1d:f7:4c:d2:4e:15:bd:0e:e7:
43:3b:b4:0c:6c:93:fa:b7:7b:8f:be:32:23:32:9a:
75:6d:db:2f:3e:60:6b:2d:7d:29:1a:ba:84:c5:73:
43:13:96:9b:7c:e2:40:9c:e5:1e:f6:b0:f0:16:04:
4c:05:52:bb:be:78:83:df:7f:77:93:8a:3b:2d:f5:
be:f8:51:af:09:7a:43:fc:9f:eb:9b:d2:46:f8:72:
73:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:09:04:DE:2F:BD:4B:B2:B8:C0:18:E1:00:CB:69:92:6B:5B:CB:5E
X509v3 Authority Key Identifier:
keyid:74:E4:C3:E0:0F:C3:EE:EE:93:6A:BB:52:7E:35:2E:4A:F0:3D:E8:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOTD4A_D7u6TartSfjUuSvA96Js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/bd8a16-000a-4917-9061-b5821e33de0d/1/8gkE3i-9S7K4wBjhAMtpkmtby14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/bd8a16-000a-4917-9061-b5821e33de0d/1/dOTD4A_D7u6TartSfjUuSvA96Js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.215.0/24
Signature Algorithm: sha256WithRSAEncryption
87:7f:c6:46:30:8d:82:1f:f4:b4:b2:2b:4e:3a:e8:2e:2a:92:
eb:8d:5c:fa:94:05:28:fa:4e:c9:60:28:90:7a:d1:a9:eb:3c:
69:67:ae:e6:d1:b5:51:82:e0:24:ac:4f:c5:39:8e:ab:5d:70:
a7:9c:65:bf:46:0a:e1:38:4f:ec:4e:94:d1:eb:7b:19:66:cf:
35:c1:94:8e:80:ee:74:f1:11:76:39:a0:43:c2:01:28:c3:12:
c7:00:97:50:e6:76:90:1c:04:d7:d6:fc:45:99:80:e8:f3:d8:
ed:9e:c8:57:7f:a7:99:08:96:29:d3:b3:d7:1b:1a:15:c3:1f:
8c:0c:43:fe:3c:97:fc:60:79:dc:b4:c3:bd:86:62:6a:f0:95:
f2:e1:83:43:99:2d:b7:ac:db:53:d7:03:df:23:01:32:96:fd:
b7:9c:bd:19:5d:fb:5e:d6:a2:43:86:20:49:9d:70:39:1c:54:
66:cc:3b:a0:e2:b3:5c:d8:ee:79:45:f6:ae:08:55:9d:7e:b0:
c3:40:78:ed:38:44:6c:0b:c2:83:a4:fa:1b:1b:42:9b:65:23:
34:92:aa:d5:48:15:51:ad:4f:75:f5:75:cf:b3:c8:0a:6a:28:
3a:3a:4c:8b:ea:6f:f1:25:4b:10:53:8c:f1:62:2c:94:e9:19:
e8:bd:1d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:29 2024 by rpki-client on console-ams.rpki-client.org