Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/g7bY6AuXD2yvg9KQpa-xNZuAHw0.roa
File: g7bY6AuXD2yvg9KQpa-xNZuAHw0.roa (raw, json)
Hash identifier: sTUGLYE0hOR6eMHxdNwlOTwh1OKYfZBSGYd55efMAVg=
Subject key identifier: 83:B6:D8:E8:0B:97:0F:6C:AF:83:D2:90:A5:AF:B1:35:9B:80:1F:0D
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 0188249B9E392DC469362729E2A502026889
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/g7bY6AuXD2yvg9KQpa-xNZuAHw0.roa
Signing time: Tue 16 May 2023 12:49:18 +0000
ROA not before: Tue 16 May 2023 12:49:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 194.1.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 19 May 2023 10:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:24:9b:9e:39:2d:c4:69:36:27:29:e2:a5:02:02:68:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: May 16 12:49:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83b6d8e80b970f6caf83d290a5afb1359b801f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:77:6c:71:33:32:67:2d:16:fc:15:4b:77:a3:
9e:dc:38:c3:3d:d6:38:ca:ee:3a:2e:2c:b6:2a:88:
5d:0d:c5:25:55:b8:3c:ee:70:4c:47:11:4a:6e:31:
87:31:c8:24:7d:c9:1b:11:c1:00:ed:fd:0a:5f:44:
fb:76:b3:1e:28:52:03:ba:6c:66:9e:7c:95:60:3e:
95:e2:19:57:d5:7d:1c:28:b2:e8:d1:b5:4b:04:77:
62:56:29:04:f5:62:c2:fe:02:d7:2e:9b:b2:d0:5d:
f9:46:88:d6:66:22:b8:7f:d7:f3:75:b6:7e:38:93:
3d:03:94:59:30:45:be:c1:ac:d4:d9:9f:f5:9b:95:
f5:36:3b:ff:39:73:04:15:92:ce:a3:b6:43:f2:32:
c0:f9:da:39:8a:1f:fa:e5:19:f5:f1:54:4b:e0:6f:
07:a6:e5:0b:e5:86:7c:16:ef:de:c1:db:95:0d:e5:
52:2c:41:21:0e:5a:fa:c4:46:54:86:ac:56:c4:a1:
44:fc:dc:fc:02:01:5c:fd:fe:f7:86:89:c3:d4:0b:
c2:77:46:1a:4b:6c:ad:b3:ac:a3:45:bd:de:b7:0e:
1b:19:ff:4a:52:21:c5:64:d4:04:f9:f8:5e:3c:1a:
4f:2b:5d:31:cd:bf:3c:04:8d:23:29:42:29:2a:97:
1c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B6:D8:E8:0B:97:0F:6C:AF:83:D2:90:A5:AF:B1:35:9B:80:1F:0D
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/g7bY6AuXD2yvg9KQpa-xNZuAHw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.140.0/22
Signature Algorithm: sha256WithRSAEncryption
27:8f:4f:d8:4e:ec:c0:86:4f:ef:3c:5d:38:15:25:9a:7a:a4:
a5:a8:8b:fc:5b:12:f6:6b:da:98:78:d3:78:7f:10:58:2e:98:
64:3c:60:17:13:6e:5e:f3:14:83:5f:0d:0a:81:17:0b:25:2d:
ef:56:e8:56:9a:cf:ba:c4:b6:fd:0e:75:05:8b:41:3e:83:a4:
ec:d7:1f:ba:97:fa:b4:c6:6b:89:dc:23:79:c5:2b:c3:c6:89:
d6:92:98:5a:7e:cb:c4:bc:72:62:e5:5b:5c:92:a1:96:4f:c8:
82:91:70:e8:b8:ee:fc:a0:cb:f9:13:ae:6f:30:ad:6f:3a:39:
82:0c:85:c1:e7:5e:2b:5e:a2:80:a8:23:45:af:d7:ea:02:9e:
a0:93:83:fb:85:c0:54:f6:7f:92:7e:ec:c8:62:00:96:e9:58:
f2:2d:1e:aa:ab:52:d5:49:fe:5f:ab:e2:8d:74:5f:14:16:a2:
14:bc:20:ad:e8:41:2a:65:88:35:8a:1a:a7:4d:a1:75:ce:dc:
1f:23:e7:03:07:a5:c2:92:85:30:15:47:d3:23:d7:9d:e5:1b:
69:ba:71:1a:08:d3:06:ca:51:b8:cb:10:fa:d3:51:94:2b:49:
8f:dd:3e:f1:89:19:07:ae:89:7d:0c:ce:bb:60:46:d5:5f:eb:
61:00:5a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org