Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/i-bLTfkzt__boD40rlXjEAEF-a0.roa
File: i-bLTfkzt__boD40rlXjEAEF-a0.roa (raw, json)
Hash identifier: 9lblezJhjI7vVpgQspWh3MFtPc6ykI0f/17G+fgYcu4=
Subject key identifier: 8B:E6:CB:4D:F9:33:B7:FF:DB:A0:3E:34:AE:55:E3:10:01:05:F9:AD
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 0187D33C8B2064459AA31575515779215319
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/i-bLTfkzt__boD40rlXjEAEF-a0.roa
Signing time: Sun 30 Apr 2023 17:36:13 +0000
ROA not before: Sun 30 Apr 2023 17:36:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 185.93.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 21:58:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d3:3c:8b:20:64:45:9a:a3:15:75:51:57:79:21:53:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Apr 30 17:36:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8be6cb4df933b7ffdba03e34ae55e3100105f9ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:51:73:de:dc:c6:85:9b:6e:7e:2f:83:14:
a5:3f:73:65:4e:33:96:0a:6c:ba:68:1a:70:c3:c1:
58:8d:ac:99:5c:38:25:66:0b:69:e8:5a:17:05:7d:
5a:a3:76:58:2a:71:c7:68:05:1b:e2:2c:0e:e6:62:
cd:1f:85:f0:d2:83:5c:b1:55:d0:94:da:16:de:b8:
6f:50:9e:0f:24:92:76:85:ed:00:27:be:ea:e2:3d:
3b:3e:20:cc:6f:50:c1:f3:a9:32:01:34:d2:a2:86:
c2:07:4f:65:d9:cf:41:27:66:45:bc:4e:10:98:00:
b6:30:04:72:46:68:44:8a:99:18:48:8f:70:d3:e7:
ae:61:9b:a2:a5:6d:22:71:7d:d0:ea:ae:d3:3a:a6:
fe:71:7d:4e:e1:29:5d:6a:d5:db:fd:09:4e:02:c6:
ba:d5:1c:c1:30:d0:f9:22:de:70:2f:1c:06:3f:85:
82:e5:07:32:7e:f4:1c:c9:c2:c0:f0:ae:9b:9b:3b:
60:5f:05:e1:3e:86:7d:e5:5b:0d:c0:15:af:b0:49:
2c:0a:4f:67:61:40:4d:a9:fa:9c:49:ec:85:26:a2:
64:d2:cd:6f:da:be:f7:c1:82:90:a5:75:31:58:ae:
f0:92:43:54:fc:2a:04:9c:68:14:23:83:a9:0d:5e:
0d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E6:CB:4D:F9:33:B7:FF:DB:A0:3E:34:AE:55:E3:10:01:05:F9:AD
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/i-bLTfkzt__boD40rlXjEAEF-a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.71.0/24
Signature Algorithm: sha256WithRSAEncryption
57:20:0f:23:9d:77:50:22:89:82:92:1b:a0:4c:1f:68:fe:8e:
3d:ef:a6:a4:68:b5:b3:cd:95:f8:e2:20:95:96:07:bc:04:d3:
95:33:1f:77:22:88:3e:41:ae:6a:dc:3b:ed:66:7d:aa:60:a9:
71:26:16:9a:c9:f7:b6:c4:63:0e:6e:91:1d:8f:57:8a:41:d3:
b1:4e:1b:67:a6:41:9d:d4:7f:06:ea:7d:90:75:8a:ec:f6:42:
a0:04:78:10:d0:87:60:da:a5:87:19:0e:b5:ef:4a:f1:a4:c4:
60:c6:79:08:b0:e3:d0:21:8e:e6:d5:33:bf:e7:59:5b:68:94:
5b:89:d5:70:af:cc:ed:43:be:55:72:ad:cb:87:53:fa:9a:59:
75:56:69:ee:77:c4:57:98:59:6f:cb:3c:42:18:0a:0a:e0:73:
15:7c:a1:d9:26:38:60:ae:76:b1:61:ba:35:1d:5d:2c:8d:eb:
8b:76:b8:86:9b:02:1e:68:69:93:07:0f:4d:36:1b:d1:50:ef:
54:4c:eb:ae:0f:2f:dd:53:a9:fd:f8:26:99:19:d4:e3:88:ec:
26:fb:1e:c1:f3:48:b3:13:f6:a0:67:da:ba:cd:19:9e:ea:a2:
57:c4:0f:48:d7:05:8b:cd:56:29:6e:0d:e0:e7:0f:26:63:b7:
2e:b2:ec:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:32 2024 by rpki-client on console-fra.rpki-client.org