Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/Ko8Gs4FYPwlTPevd-r39reTYWm8.roa
File: Ko8Gs4FYPwlTPevd-r39reTYWm8.roa (raw, json)
Hash identifier: ZQVES4UZwHwQKZraA1jUD7AeYt0VyI//5BSdzZdPwPo=
Subject key identifier: 2A:8F:06:B3:81:58:3F:09:53:3D:EB:DD:FA:BD:FD:AD:E4:D8:5A:6F
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 01869E98F3BCD33070D4DC20BB85A9A1344C
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/Ko8Gs4FYPwlTPevd-r39reTYWm8.roa
Signing time: Wed 01 Mar 2023 19:14:29 +0000
ROA not before: Wed 01 Mar 2023 19:14:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 193.164.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Mar 2023 09:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9e:98:f3:bc:d3:30:70:d4:dc:20:bb:85:a9:a1:34:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Mar 1 19:14:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a8f06b381583f09533debddfabdfdade4d85a6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3b:b4:58:a5:cc:74:a8:e9:02:a1:99:bc:6e:
b5:ec:b3:0f:12:95:16:0d:09:d5:1d:e2:83:a3:53:
75:e6:be:86:6c:18:4c:4a:57:ae:b9:24:d0:c0:b5:
61:36:e9:a7:9a:22:b6:ca:a0:d2:37:07:2f:4b:35:
ce:b6:4f:f5:26:c2:6d:21:38:18:53:a4:3e:8e:82:
b7:1c:7d:4d:59:bd:d7:41:65:c7:39:31:4e:82:1e:
02:68:db:c7:0f:d5:da:25:5d:9e:8c:04:70:18:50:
f9:55:b5:73:9e:0a:fa:ed:e5:e1:28:c9:0c:79:b7:
ed:25:65:cb:6c:4b:34:9c:b7:52:e5:94:16:dd:5a:
6a:03:14:1e:89:80:b8:5a:50:48:5e:4d:64:64:9d:
83:43:1c:ed:a0:9d:23:1e:24:9a:72:5e:16:b3:18:
32:4d:98:61:dc:de:bf:a3:82:65:62:6c:ed:a9:02:
1d:2f:97:5c:cc:55:e0:32:9e:e1:bf:cf:68:2e:d5:
ec:d6:0d:10:aa:d5:c2:98:37:af:eb:04:a8:84:e1:
ee:1a:91:88:26:22:c0:22:c3:77:cd:6f:d7:22:b3:
e5:6f:8b:92:a7:24:e8:27:a3:cf:7c:bf:0f:be:7a:
3c:02:87:6b:60:1c:23:c1:f2:17:d6:79:38:4c:8b:
e6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8F:06:B3:81:58:3F:09:53:3D:EB:DD:FA:BD:FD:AD:E4:D8:5A:6F
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/Ko8Gs4FYPwlTPevd-r39reTYWm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.5.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:78:fd:48:c1:84:94:87:f2:fe:cb:15:e5:3a:3a:c0:a7:46:
6b:f4:ca:24:18:88:22:3d:de:44:5c:a3:3b:f3:41:46:61:ab:
11:27:42:f0:67:99:03:32:93:31:e4:39:aa:6e:11:43:74:03:
90:9c:86:7c:cc:30:a3:6a:c5:e5:5a:2d:97:70:67:c8:95:e6:
19:d7:72:55:21:27:47:f2:aa:f3:ad:a3:dd:f2:e6:f9:61:db:
01:ea:6f:c6:f8:7f:73:b5:c5:dd:9f:84:e7:6a:40:64:cf:bd:
41:02:01:1c:49:57:52:d4:6c:1e:04:d8:db:b2:fc:b6:35:ee:
33:87:da:28:ce:5a:92:f0:62:60:6f:b6:8a:f4:e9:c1:7c:9e:
0e:4c:ba:bd:02:56:d8:d4:48:d9:36:0f:e6:b9:4f:85:d2:f5:
de:7b:22:2b:ca:7c:23:d8:f1:8b:94:d2:22:fd:cc:f9:4e:91:
05:11:f9:6b:9b:07:1f:08:f6:f1:19:c6:2b:bc:e3:73:e4:50:
7a:24:09:11:19:01:a4:1c:bd:a0:25:ec:40:bd:e1:c8:15:7d:
8c:22:e3:b2:27:98:d5:92:1e:58:92:eb:c4:86:12:bb:17:88:
18:87:10:86:03:0b:d2:cb:5d:db:b5:76:d2:71:de:32:8c:a3:
ed:95:7f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:12 2024 by rpki-client on console-ams.rpki-client.org