Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/24mihkRdEcDjwPnowGWe7ODrCyM.roa
File: 24mihkRdEcDjwPnowGWe7ODrCyM.roa (raw, json)
Hash identifier: Y53YuGrEumKRGfXYYiSd5y+bvB/b4yiN9MjmlcRupd0=
Subject key identifier: DB:89:A2:86:44:5D:11:C0:E3:C0:F9:E8:C0:65:9E:EC:E0:EB:0B:23
Certificate issuer: /CN=93656fb5860c9d3cfcb35658540c7230a0ba1e8d
Certificate serial: 01897002ED7188DE37AACACB750FC542AE17
Authority key identifier: 93:65:6F:B5:86:0C:9D:3C:FC:B3:56:58:54:0C:72:30:A0:BA:1E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/24mihkRdEcDjwPnowGWe7ODrCyM.roa
Signing time: Wed 19 Jul 2023 21:16:27 +0000
ROA not before: Wed 19 Jul 2023 21:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51342
IP address blocks: 195.128.166.0/23 maxlen: 24
176.124.96.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 22:15:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:70:02:ed:71:88:de:37:aa:ca:cb:75:0f:c5:42:ae:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93656fb5860c9d3cfcb35658540c7230a0ba1e8d
Validity
Not Before: Jul 19 21:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db89a286445d11c0e3c0f9e8c0659eece0eb0b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:10:0d:35:8e:d4:2d:f6:c8:e0:77:37:ad:
e7:69:67:8c:94:01:7f:cd:aa:ee:91:d3:b7:01:0c:
12:a3:8b:82:01:76:e4:52:37:17:12:e7:7d:12:87:
05:26:41:64:67:e3:54:1b:6a:fb:b0:76:fd:aa:47:
fa:82:7a:fa:02:de:20:da:a4:d3:5d:0c:91:77:fa:
e9:e7:24:ac:17:60:60:c3:f9:ce:53:3b:46:f4:c2:
fa:1f:28:b2:d8:59:68:76:e1:4d:1f:de:f5:d6:cc:
15:11:db:0e:fb:e2:8a:6a:00:60:25:3f:3f:32:e7:
85:b8:04:d8:b5:b6:94:25:56:fd:09:0e:d4:d7:a6:
1f:c0:d9:97:06:6c:3d:07:89:37:8c:bc:04:4e:ed:
ef:55:d7:34:33:2f:6c:bb:5b:a1:ba:da:00:87:d7:
3c:93:16:fa:83:e6:3a:68:79:c9:4d:fe:ba:85:95:
64:5f:30:57:1a:58:d3:5e:43:4a:d8:7e:64:81:98:
ab:d6:c0:c6:81:cf:69:90:a8:35:fc:88:93:6b:ac:
86:30:c5:fb:7f:2f:a8:31:d2:70:9c:c7:87:71:a7:
01:9e:f7:ef:e6:71:57:08:f4:7e:96:b9:0a:ed:15:
f9:2e:33:d4:62:df:35:47:61:94:00:65:d6:a5:df:
5a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:89:A2:86:44:5D:11:C0:E3:C0:F9:E8:C0:65:9E:EC:E0:EB:0B:23
X509v3 Authority Key Identifier:
keyid:93:65:6F:B5:86:0C:9D:3C:FC:B3:56:58:54:0C:72:30:A0:BA:1E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/24mihkRdEcDjwPnowGWe7ODrCyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/97914b-eb62-46d1-a9d4-05bf81b4298b/1/k2VvtYYMnTz8s1ZYVAxyMKC6Ho0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.96.0/21
195.128.166.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:03:62:58:3c:68:5d:36:3a:3c:c8:90:85:bd:7b:b2:88:eb:
83:fb:ce:e0:db:84:4a:7b:1b:95:e9:05:2a:f5:f3:b4:a7:87:
ed:81:79:00:8e:5a:ce:a0:54:10:da:2b:2b:24:62:65:11:62:
c1:8e:69:40:f3:9e:11:6c:a9:1d:38:de:eb:db:94:c0:cb:7d:
15:cd:c0:78:c0:29:49:c2:5b:b7:cb:a6:28:9d:b0:19:7a:f3:
7c:39:a5:19:f5:90:f7:99:cc:f3:9d:43:57:6d:49:30:cd:0f:
77:de:f1:1b:1d:06:09:3b:4e:58:ca:cf:0e:1a:64:07:40:2e:
7f:0c:db:1b:5a:e8:b4:0e:a0:44:46:36:31:11:16:06:73:c1:
c0:2e:b4:f9:2b:ea:55:26:dd:0f:f5:46:e8:23:69:e8:2b:b0:
30:90:2d:c7:c0:aa:5c:41:46:de:2e:79:11:8c:c1:26:b4:49:
28:a3:e4:4b:35:df:8f:87:e3:44:98:4c:46:12:05:0a:5b:63:
51:fb:cb:83:7b:8a:40:b2:28:49:c0:77:df:0e:08:bf:e2:b1:
36:78:3b:ba:fb:5d:86:50:a7:02:74:c5:30:94:04:3c:c7:82:
d8:84:da:6c:75:ee:42:a2:e3:58:34:07:cd:3d:4c:50:5f:aa:
74:57:10:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:05 2024 by rpki-client on console-ams.rpki-client.org