Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/AMjQfIwLByhQWYTDXgl5KLptT9c.roa
File: AMjQfIwLByhQWYTDXgl5KLptT9c.roa (raw, json)
Hash identifier: POaPkSkp7MuMlDA+5xF7J8TA8h6Vo4yg/CGPiMg+HpY=
Subject key identifier: 00:C8:D0:7C:8C:0B:07:28:50:59:84:C3:5E:09:79:28:BA:6D:4F:D7
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0189095C6B75DA6FA9B51FD2F4A4955FF015
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/AMjQfIwLByhQWYTDXgl5KLptT9c.roa
Signing time: Thu 29 Jun 2023 22:53:19 +0000
ROA not before: Thu 29 Jun 2023 22:53:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 188.64.104.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:09:5c:6b:75:da:6f:a9:b5:1f:d2:f4:a4:95:5f:f0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jun 29 22:53:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00c8d07c8c0b0728505984c35e097928ba6d4fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:57:7b:7e:c4:d8:3f:1c:a7:70:0e:1f:a4:8a:
f5:38:8f:38:5a:92:48:7a:24:47:da:70:27:1d:40:
04:9c:07:4c:ec:4e:0e:78:da:97:52:c6:13:6e:01:
80:f8:2a:19:2c:e2:48:d4:80:90:50:ee:43:bc:c0:
62:db:3f:65:ba:1e:53:93:98:36:00:0d:db:80:20:
d7:2a:ee:a6:01:e6:53:f3:34:ef:59:b0:ec:08:b2:
cc:24:e9:04:0b:aa:7c:21:83:d5:f8:b4:e4:e6:ad:
dd:ae:49:e9:b6:24:d2:1c:35:17:fb:68:18:ec:10:
ea:d7:a7:76:ce:97:e2:82:b4:a2:d6:6b:92:49:ad:
59:ac:60:c3:91:83:61:26:43:ef:98:22:97:e8:d9:
7e:4d:7f:a6:8a:90:05:f2:0d:68:0b:09:55:b5:85:
c8:a1:1f:40:b9:ac:4b:ad:9b:2e:dc:d7:50:41:ab:
a9:e8:eb:eb:07:7b:3c:73:72:62:49:bc:89:26:23:
9d:2a:4c:9c:05:de:ca:b4:fd:13:26:85:43:6d:f6:
25:ee:64:49:90:3d:9a:c5:42:bc:6d:bf:1d:c1:66:
24:20:63:ad:da:07:e0:64:d3:0b:42:f1:56:21:3d:
64:43:52:9a:f4:b7:f6:dd:8d:4e:4c:56:ff:98:ee:
b2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C8:D0:7C:8C:0B:07:28:50:59:84:C3:5E:09:79:28:BA:6D:4F:D7
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/AMjQfIwLByhQWYTDXgl5KLptT9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.104.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:a5:e1:bf:19:87:25:7e:2d:ec:9c:ae:0e:cf:66:ee:6a:7f:
65:2c:fa:2c:3d:31:1f:3e:78:3f:e4:3e:2a:5f:16:44:d3:2c:
5c:69:de:90:aa:d0:67:42:9e:ba:7a:12:a4:4d:23:da:b8:a2:
46:10:1e:97:4c:c0:2c:62:2c:5b:52:70:ed:7d:ec:c0:56:c2:
26:8b:57:10:fa:59:9a:fa:e7:6c:97:65:85:bd:31:5d:fe:c9:
7d:db:ca:80:8a:a6:90:bf:1c:c5:64:14:87:6c:21:5e:bf:38:
fd:0e:73:34:f6:0b:8f:cf:14:11:56:97:d8:75:72:cd:90:9b:
fd:c1:51:fb:26:47:40:af:11:34:10:33:7c:42:b0:e0:c1:4b:
67:ff:e2:71:32:96:c4:d9:14:a1:41:35:b1:cd:bf:31:08:a9:
90:26:01:bb:1c:90:f3:f8:ef:97:9d:e9:c5:5c:46:92:e2:d0:
7f:37:72:96:a8:4c:22:e3:e4:bc:a5:f4:0e:14:ab:11:bb:86:
68:79:25:86:1a:14:c7:ea:ea:46:20:75:4b:3a:11:1a:4b:e1:
ef:7c:29:83:75:fe:8e:fc:d4:6a:6a:7c:d9:40:ad:eb:d8:dc:
54:71:a7:04:0a:17:f4:93:77:6d:30:50:38:86:57:d1:71:73:
b2:96:20:6f
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 23 14:43:59 2023 by rpki-client on console-ams.rpki-client.org