Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/IzTkojSFWVBY0A1zDi99j8HHiRw.roa
File: IzTkojSFWVBY0A1zDi99j8HHiRw.roa (raw, json)
Hash identifier: X7HZURs1eLMGqHT2UqCZYT9ukMz/KKO3eLoGP4Ee8pg=
Subject key identifier: 23:34:E4:A2:34:85:59:50:58:D0:0D:73:0E:2F:7D:8F:C1:C7:89:1C
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 018635925666FE363A7DBBBF7B4C0B13B983
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/IzTkojSFWVBY0A1zDi99j8HHiRw.roa
Signing time: Thu 09 Feb 2023 09:47:08 +0000
ROA not before: Thu 09 Feb 2023 09:47:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60446
IP address blocks: 185.93.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 21:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:92:56:66:fe:36:3a:7d:bb:bf:7b:4c:0b:13:b9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Feb 9 09:47:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2334e4a23485595058d00d730e2f7d8fc1c7891c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:32:eb:94:72:65:fd:1c:e1:26:8d:82:b3:21:
fe:55:a8:15:c1:5c:08:7e:c4:91:e0:06:9a:22:8e:
cd:25:13:12:f0:79:42:38:83:2b:51:f9:da:40:ab:
a3:34:ee:66:21:26:a0:15:7f:30:ff:34:bf:10:9e:
6b:14:04:6e:d3:78:d9:35:b4:51:0c:c1:ff:00:42:
7e:9e:01:9b:9d:34:90:06:18:93:68:5d:3f:5b:4f:
7e:1c:4f:2f:02:0c:25:12:a6:4a:46:e3:dc:bd:e8:
9f:c7:a5:84:43:41:d9:e4:8b:9f:30:0e:8a:64:6d:
bb:7d:a0:33:7b:44:43:16:07:de:6c:9a:99:07:a5:
3e:46:18:65:a6:46:ee:2c:c3:df:8d:f0:fd:92:ac:
75:63:6a:80:0e:da:80:9b:a5:40:ca:f5:26:87:42:
4b:ec:f5:fd:c2:6b:0a:06:ec:1d:3e:0e:03:48:d4:
eb:68:7c:2b:95:e1:5c:57:64:4a:0a:ab:ce:b1:d4:
87:dd:46:e8:09:0a:45:49:64:da:1b:c5:3a:53:2a:
65:93:92:aa:23:ac:1e:89:c4:7f:34:3c:8e:be:ca:
34:70:1f:ca:40:7c:7c:55:e2:ae:74:7d:99:ca:8a:
60:a3:ac:fa:2d:b2:be:de:6f:79:f6:0e:c7:38:17:
8c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:34:E4:A2:34:85:59:50:58:D0:0D:73:0E:2F:7D:8F:C1:C7:89:1C
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/IzTkojSFWVBY0A1zDi99j8HHiRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.71.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:3c:16:79:8e:26:46:36:2f:a9:b1:fc:39:60:e2:bb:68:ff:
63:71:51:76:e3:e6:c6:41:d1:6f:56:49:a3:01:22:1a:6c:ed:
3c:b1:74:ec:29:94:ad:4a:11:5f:30:cc:8c:0a:46:80:be:c0:
13:4f:53:9b:4d:fc:12:68:2b:85:b3:b5:b0:0d:fe:80:6d:77:
de:aa:33:eb:55:60:b2:9c:c8:6e:bf:aa:58:dd:30:86:e3:1c:
9d:a7:bf:73:35:26:ec:5d:e4:5b:4c:4d:d4:76:c3:62:08:2e:
e2:55:c5:2d:0c:47:7c:f4:23:76:64:68:bb:a6:ee:ce:4a:c1:
68:9f:02:f2:38:eb:3e:d5:ec:a1:1a:28:dc:f3:6e:a9:b5:3d:
44:26:80:56:c4:4b:16:28:57:43:15:6c:10:74:6a:9b:2f:99:
be:f7:86:a1:d7:70:8c:0d:cc:69:7f:fe:8e:de:b7:79:10:23:
bd:10:aa:0b:c6:4b:bf:6e:21:3f:41:d6:1a:8d:de:ef:b2:35:
d1:a1:64:7e:10:9e:70:d3:a1:aa:d0:68:a8:7d:65:a6:75:33:
15:12:df:a9:b1:97:33:ae:04:f3:5d:2e:53:17:18:30:02:13:
6d:89:8a:31:2d:b1:28:bd:6e:eb:5c:a6:46:84:49:f2:5e:e5:
29:dc:5d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org