Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/sBkkeJbbVyTW_Lv2ljkwthh380c.roa
File: sBkkeJbbVyTW_Lv2ljkwthh380c.roa (raw, json)
Hash identifier: 421CArmBaKtn7pSxI3Ay1iO8cQfSf2cjiuDT4EoDcls=
Subject key identifier: B0:19:24:78:96:DB:57:24:D6:FC:BB:F6:96:39:30:B6:18:77:F3:47
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD5433AFD1D565BCFBCD86C32BD39A0
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/sBkkeJbbVyTW_Lv2ljkwthh380c.roa
Signing time: Mon 02 Jan 2023 00:15:25 +0000
ROA not before: Mon 02 Jan 2023 00:15:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62032
IP address blocks: 188.214.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:43:3a:fd:1d:56:5b:cf:bc:d8:6c:32:bd:39:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b019247896db5724d6fcbbf6963930b61877f347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7f:5e:f6:dc:30:01:d2:e3:5e:a0:f8:d1:ca:
ef:48:56:70:62:c1:02:80:fe:4f:9a:72:74:12:19:
7d:b8:49:27:b7:7b:22:63:95:bf:d8:c0:19:0c:fc:
3f:98:a3:33:2e:d2:71:74:7c:bf:b4:78:c8:17:20:
ca:c1:5b:ea:28:2a:66:95:08:76:33:31:6a:19:cf:
bc:20:7f:40:af:c8:34:8d:f1:51:e7:c3:ee:19:66:
e7:48:ae:6a:eb:3e:69:f7:38:75:75:c4:f5:92:2b:
94:8c:31:59:6c:47:a2:40:d3:95:dc:3c:44:f4:c7:
6f:f8:7c:06:90:82:36:73:fb:f3:3c:47:80:ae:04:
71:ab:af:4e:02:85:f5:94:9f:20:65:1e:5e:01:a2:
ba:9d:e9:b3:8e:fc:4b:67:cb:46:74:ee:a0:87:6d:
11:91:ab:e0:79:28:b0:0f:17:9b:bb:d7:5d:29:21:
d1:b7:60:a2:a5:89:a5:49:cb:34:b4:5c:42:c6:e0:
b3:a2:10:72:f1:09:ab:6e:d4:7b:d0:6a:b5:8a:28:
5f:f1:52:ac:8b:5c:71:89:93:be:60:8e:0f:0c:09:
e0:06:65:7f:1a:1b:69:ab:81:31:92:03:1e:36:cb:
42:5a:a3:bc:2a:c9:66:03:a1:9a:bf:d0:3b:34:4f:
f2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:19:24:78:96:DB:57:24:D6:FC:BB:F6:96:39:30:B6:18:77:F3:47
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/sBkkeJbbVyTW_Lv2ljkwthh380c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.123.0/24
Signature Algorithm: sha256WithRSAEncryption
30:35:d3:40:32:b8:84:5d:de:fa:9b:a2:2d:03:da:a2:47:2e:
f0:3b:61:46:0d:5f:49:30:91:9b:01:0e:33:a5:7d:ea:4c:8e:
d4:33:74:ea:69:ce:82:8b:16:53:0f:b0:6c:94:3d:de:8b:8f:
2a:68:09:07:f9:44:a2:3c:e2:11:3e:e4:08:71:f3:1f:3e:db:
cf:46:d5:20:14:34:89:86:35:51:32:f4:8f:89:d7:04:54:93:
b7:45:ed:87:25:64:ea:63:d6:8b:dc:70:78:ed:d0:bb:d6:e6:
cc:7a:f9:ca:cc:d4:54:ad:90:14:07:0f:c5:43:7e:fd:fe:0f:
cc:d1:46:4e:fc:e4:7f:65:1e:d2:33:c9:3e:b1:eb:2c:24:e9:
f7:fd:dc:6f:90:6e:01:9e:c7:9d:71:f5:d4:ef:54:c8:05:a1:
d0:29:ea:25:e6:b8:13:ea:5e:d3:0f:88:8a:40:80:f8:f9:77:
9a:9f:9f:a7:5d:e0:f0:1a:bc:37:d1:89:1f:9f:23:84:39:2d:
47:58:e2:a7:35:a8:90:01:63:98:a9:f4:10:d5:b7:df:30:a3:
cf:01:b7:bf:49:f6:f8:64:ce:99:8c:52:3e:c4:55:ce:ad:35:
2f:fb:e7:73:40:e1:8d:c8:8d:3c:37:9f:11:7c:4e:aa:9f:e6:
27:e9:88:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:05 2024 by rpki-client on console-ams.rpki-client.org