Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/iMkYOO9NCUhZX6yPf3-4BYHSM-8.roa
File: iMkYOO9NCUhZX6yPf3-4BYHSM-8.roa (raw, json)
Hash identifier: 6IZOF0cSgpQvDkhbhbsgduT8gsXz9JEt10tJoCdJr4Q=
Subject key identifier: 88:C9:18:38:EF:4D:09:48:59:5F:AC:8F:7F:7F:B8:05:81:D2:33:EF
Certificate issuer: /CN=4c8343edc843542f529fbc3e650cb6578c9206c3
Certificate serial: 01856F42971F1C2EC82441EA22FED9BC640E
Authority key identifier: 4C:83:43:ED:C8:43:54:2F:52:9F:BC:3E:65:0C:B6:57:8C:92:06:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIND7chDVC9Sn7w-ZQy2V4ySBsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/iMkYOO9NCUhZX6yPf3-4BYHSM-8.roa
Signing time: Sun 01 Jan 2023 21:35:13 +0000
ROA not before: Sun 01 Jan 2023 21:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 193.104.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 16:11:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:97:1f:1c:2e:c8:24:41:ea:22:fe:d9:bc:64:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c8343edc843542f529fbc3e650cb6578c9206c3
Validity
Not Before: Jan 1 21:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88c91838ef4d0948595fac8f7f7fb80581d233ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c6:f5:7c:31:14:73:27:ef:d0:2a:4e:e7:2b:
cf:49:03:20:4a:9e:68:a3:ae:1b:8c:3d:13:5d:51:
8a:6f:6b:cd:44:3a:13:45:a0:b8:ec:2c:d4:77:cc:
cf:3f:db:3d:eb:65:06:e6:4b:93:16:2d:1d:32:8d:
b7:aa:17:e8:08:cc:0b:e1:5b:18:93:8a:e7:1b:97:
aa:e4:59:53:47:b7:29:e7:25:5a:f1:08:da:00:96:
bc:f6:b6:13:76:52:73:89:27:cf:ac:70:bb:d4:60:
ef:c9:76:1e:71:37:d6:4f:a2:a6:c5:5f:b6:13:7d:
f1:01:ff:df:59:0c:5d:79:8a:93:b0:b5:d3:cb:d9:
89:8b:86:d1:cd:d8:7e:ee:68:fa:20:8c:81:96:65:
99:05:db:40:ef:8f:fc:9a:dd:8a:72:59:9b:b9:e6:
9c:a5:65:d4:56:fd:00:c0:bb:da:20:09:fe:ce:06:
19:82:29:81:04:bc:ac:28:bf:b5:ae:40:80:ef:8d:
64:bc:d4:d5:13:89:01:01:f4:31:4f:4e:49:ad:66:
04:9b:0a:9d:8d:bf:1b:17:0c:92:12:41:b1:7c:9f:
72:d3:2f:05:65:d6:44:51:f5:4c:ed:92:58:8b:05:
a6:ce:84:b9:1a:e7:5d:ee:34:ce:ac:ef:eb:a6:97:
8e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C9:18:38:EF:4D:09:48:59:5F:AC:8F:7F:7F:B8:05:81:D2:33:EF
X509v3 Authority Key Identifier:
keyid:4C:83:43:ED:C8:43:54:2F:52:9F:BC:3E:65:0C:B6:57:8C:92:06:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIND7chDVC9Sn7w-ZQy2V4ySBsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/iMkYOO9NCUhZX6yPf3-4BYHSM-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/8e8218-6fb6-4e69-92e6-e9ce291d218f/1/TIND7chDVC9Sn7w-ZQy2V4ySBsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.196.0/24
Signature Algorithm: sha256WithRSAEncryption
03:46:40:fa:64:6f:97:cd:f6:e2:a2:f9:95:09:cf:71:06:64:
b7:07:fa:65:c4:93:16:5f:e2:3b:e4:7d:27:cb:ab:59:22:bb:
d7:08:35:1c:ef:16:6d:f0:66:78:f6:0e:5c:3c:d2:00:cc:1c:
c6:15:24:79:9f:af:50:07:13:12:94:4a:5d:f5:70:e6:ca:5a:
22:0c:48:10:da:78:9a:4c:96:af:8b:94:41:46:8a:3d:05:dc:
35:c5:f0:63:b3:cb:80:2e:19:e6:a5:81:73:86:d6:aa:7c:10:
5c:ac:1d:d8:27:a8:9b:43:01:96:97:86:39:ae:46:54:47:a7:
a8:bd:bb:c1:9f:d7:99:9c:8a:af:03:06:d2:7e:bc:ad:b6:13:
1d:b6:9d:3c:b3:58:35:3e:9a:d0:e9:6a:ec:1a:96:78:e8:90:
45:82:50:8f:4a:29:32:34:88:93:1f:af:ad:be:9d:00:87:36:
f2:22:68:c4:16:ad:39:74:bf:44:18:52:1b:c5:8f:00:e5:89:
2f:59:83:ab:e4:9f:49:7f:9d:10:62:c8:5d:4f:3d:1e:00:3e:
3c:bc:22:10:8b:1f:cb:dd:48:2b:ff:b0:08:92:62:d4:09:b4:
43:31:65:0a:a5:dd:6b:29:e3:0e:8b:6a:8f:99:0a:41:37:fa:
e6:1e:fd:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:09 2024 by rpki-client on console-ams.rpki-client.org