Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8tuhWY4KZsWysn1oy_uUT278F0Y.roa
File: 8tuhWY4KZsWysn1oy_uUT278F0Y.roa (raw, json)
Hash identifier: zeDmJYpO7J5DLC9wr9f7YthYUT0ZQ7F0d51fAJzCW2A=
Subject key identifier: F2:DB:A1:59:8E:0A:66:C5:B2:B2:7D:68:CB:FB:94:4F:6E:FC:17:46
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018A13620297EBE458FDEE556709414A5193
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8tuhWY4KZsWysn1oy_uUT278F0Y.roa
Signing time: Sun 20 Aug 2023 14:38:24 +0000
ROA not before: Sun 20 Aug 2023 14:38:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 188.64.108.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:13:62:02:97:eb:e4:58:fd:ee:55:67:09:41:4a:51:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Aug 20 14:38:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2dba1598e0a66c5b2b27d68cbfb944f6efc1746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d1:74:38:84:9f:f2:66:aa:23:a9:49:23:50:
92:1e:05:1d:b2:68:cc:93:88:ef:94:69:d4:7f:00:
ae:21:a8:17:2f:9d:32:14:6a:d6:e6:0c:bd:47:ce:
86:27:3a:f6:ed:61:a6:d9:e5:60:b5:7c:c9:d0:a2:
53:22:ea:d9:41:85:04:79:28:2e:bb:c1:3c:d2:4d:
69:2e:fd:66:2b:a0:fa:39:75:fc:e5:84:d5:ba:fa:
05:3e:d0:f8:fc:2d:0a:fa:16:93:a4:37:c2:fb:1b:
e5:69:68:79:85:3e:20:2b:7c:ca:97:22:af:10:c3:
8b:37:58:56:fe:5b:e2:a9:4c:83:21:dd:60:92:65:
b9:b4:ac:c5:4b:ab:fd:db:06:aa:14:e9:7e:e9:73:
2d:5e:b9:52:c2:ee:94:89:2e:9f:12:21:b4:8c:84:
62:ab:00:52:92:b7:6f:22:5a:1e:3e:0e:63:80:36:
dd:ac:c4:8f:98:ae:ad:f8:d2:60:59:6f:93:c4:29:
d6:c1:92:90:51:da:a2:93:f0:de:c9:4a:01:f0:73:
84:7a:05:33:94:d5:48:1f:57:f5:a4:b3:8f:82:31:
94:1b:89:4c:30:2a:b0:f2:6f:fe:ec:7c:dc:0e:93:
04:9a:83:00:4e:6f:59:9f:af:63:f4:54:80:ef:6c:
5d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:DB:A1:59:8E:0A:66:C5:B2:B2:7D:68:CB:FB:94:4F:6E:FC:17:46
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8tuhWY4KZsWysn1oy_uUT278F0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
69:b1:87:c3:4e:92:43:57:9b:d6:b2:d0:b9:0e:78:a6:89:50:
49:60:7a:2c:d9:53:51:00:50:7b:45:56:3d:84:a6:6a:1c:b5:
98:7d:7a:5d:09:0e:99:91:fa:7e:61:9d:9e:13:f6:85:92:9a:
2a:9e:bc:0a:ad:f9:e9:c7:6c:47:b4:c4:7f:a3:82:2a:2f:e8:
05:63:79:39:39:e6:94:60:9e:e8:86:cc:21:16:b3:ec:3c:1f:
f3:22:00:a2:f3:8c:7a:76:68:05:01:3a:52:1a:9c:9e:1b:ac:
e9:75:1c:c0:94:1f:81:a6:78:77:44:0d:1e:2e:85:ab:ef:63:
91:7c:ed:56:10:e9:d3:57:46:ac:16:0d:a1:c4:f5:24:24:48:
77:09:5f:ad:bd:34:d1:7e:4e:8d:69:79:b5:57:d3:54:75:84:
07:59:16:d1:e7:97:c4:6a:83:81:b6:81:81:4f:50:b5:9e:bd:
f8:85:88:9b:82:78:4e:48:8a:ec:a6:68:49:06:39:97:9d:52:
6e:20:70:55:2a:e5:cb:a6:e3:28:b4:35:4c:57:33:47:22:90:
fb:e9:28:6b:5d:ed:d6:1f:7b:86:00:bd:28:de:7f:74:31:92:
5a:9e:18:7f:15:f8:d3:d1:c5:09:9e:8d:fc:03:fc:c1:29:58:
6e:01:f1:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 29 18:37:20 2023 by rpki-client on console-fra.rpki-client.org