Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/uyVaN2I8rAYP6KdD1Zwm13LHtYI.roa
File: uyVaN2I8rAYP6KdD1Zwm13LHtYI.roa (raw, json)
Hash identifier: Yq416uPk2bnn78D+XOFUsg/LxGh2fCHKofBXHC9NLPs=
Subject key identifier: BB:25:5A:37:62:3C:AC:06:0F:E8:A7:43:D5:9C:26:D7:72:C7:B5:82
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018B0623616E14912020184529E52C1E4CCD
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/uyVaN2I8rAYP6KdD1Zwm13LHtYI.roa
Signing time: Fri 06 Oct 2023 17:57:43 +0000
ROA not before: Fri 06 Oct 2023 17:57:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39600
IP address blocks: 188.64.108.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:23:61:6e:14:91:20:20:18:45:29:e5:2c:1e:4c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Oct 6 17:57:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb255a37623cac060fe8a743d59c26d772c7b582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:09:db:43:b4:77:13:e0:92:16:9e:66:bd:
e6:b6:0b:39:0a:d2:ca:4f:ee:4a:86:11:eb:80:c9:
c2:e8:d1:57:58:cf:da:c3:16:14:eb:b4:59:5a:6a:
c3:8d:cf:50:c4:38:b7:14:60:e7:81:4d:07:25:0c:
88:51:39:02:95:57:3d:42:ae:77:08:1e:2d:40:87:
82:76:9e:c6:2c:07:c8:00:b0:3a:7c:2d:80:4b:31:
b5:28:04:2c:ba:be:bf:23:2c:b7:b4:33:69:ea:b9:
5f:e5:8e:d0:b4:1c:f4:76:e0:5f:cc:89:b4:70:e3:
64:a4:e4:6e:47:ef:d4:12:f2:40:3c:4e:ad:3e:ca:
00:be:db:67:18:6b:c1:9f:2d:e9:ae:00:c0:b8:ff:
bc:e0:28:ec:99:67:ea:0e:ff:dd:f4:75:08:7e:cd:
37:19:13:b7:b0:13:1e:e8:06:15:ef:55:fe:c0:4c:
2b:06:05:14:3f:26:63:f9:f8:74:ca:e9:9f:67:13:
2e:bf:b1:65:ed:38:82:11:22:8d:0b:c7:e9:86:7b:
3a:3c:78:60:20:55:94:08:23:b3:f0:1d:21:be:23:
cb:27:3a:67:aa:7b:ba:ea:1c:e8:bb:f8:52:df:50:
e7:bf:fb:ae:65:ac:28:95:e4:cd:b6:2e:af:5a:90:
ec:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:25:5A:37:62:3C:AC:06:0F:E8:A7:43:D5:9C:26:D7:72:C7:B5:82
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/uyVaN2I8rAYP6KdD1Zwm13LHtYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:87:74:df:a9:5d:5e:b0:38:19:74:37:a6:f1:7e:01:94:b2:
50:c1:39:6b:58:d8:76:70:f8:ca:0b:31:0c:dd:93:41:be:74:
1a:1f:4a:5c:3b:fc:f3:18:2b:47:34:08:af:cc:80:2d:b3:53:
14:e6:21:18:3a:0b:84:21:26:51:44:d1:eb:8b:94:ef:1a:e9:
1b:de:d4:d9:53:b9:ab:7a:6e:da:c2:d0:ad:de:bb:37:fd:a2:
a0:43:87:ee:05:34:81:eb:76:cc:a0:3c:a2:67:42:16:26:e5:
10:47:3e:e2:36:44:2f:3a:bc:44:cc:8b:0d:e2:80:22:6e:78:
57:1b:9c:b9:f9:a2:d4:47:80:aa:3f:93:90:25:b4:47:3c:dc:
91:a1:bf:30:3f:52:45:8a:fb:39:41:1b:0a:79:48:12:8f:a6:
42:49:62:b6:8d:2a:62:1d:53:11:c0:89:71:1b:d8:11:4a:90:
9c:49:11:5c:32:99:63:08:51:c9:71:f5:c0:56:bf:cf:b1:bc:
ed:89:f0:f6:da:70:c4:00:4d:b1:8c:e6:13:0e:5f:d3:75:70:
38:99:9f:56:f2:67:4e:47:0a:49:d0:95:f0:c8:40:91:54:70:
e0:cf:37:fa:25:93:b3:0b:cd:43:24:2b:3c:25:33:17:ed:a3:
f6:b1:f3:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 00:38:40 2023 by rpki-client on console-fra.rpki-client.org