Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/lb680MJ9a1aBGe1kLLfgLGjRhTI.roa
File: lb680MJ9a1aBGe1kLLfgLGjRhTI.roa (raw, json)
Hash identifier: mM/Kj214l7PL8AJg5YqN2A6CXRfCjJ4ngjz95OZxcZ0=
Subject key identifier: 95:BE:BC:D0:C2:7D:6B:56:81:19:ED:64:2C:B7:E0:2C:68:D1:85:32
Certificate issuer: /CN=e069ab6f09572afb46e9f8e9a0639d820b969422
Certificate serial: 01857142D4E338618546799FDA5F08D21608
Authority key identifier: E0:69:AB:6F:09:57:2A:FB:46:E9:F8:E9:A0:63:9D:82:0B:96:94:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GmrbwlXKvtG6fjpoGOdgguWlCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/lb680MJ9a1aBGe1kLLfgLGjRhTI.roa
Signing time: Mon 02 Jan 2023 06:54:43 +0000
ROA not before: Mon 02 Jan 2023 06:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 194.15.138.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:d4:e3:38:61:85:46:79:9f:da:5f:08:d2:16:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e069ab6f09572afb46e9f8e9a0639d820b969422
Validity
Not Before: Jan 2 06:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95bebcd0c27d6b568119ed642cb7e02c68d18532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ca:e8:af:5e:9b:c4:05:9f:e4:10:05:dd:90:
12:3e:9b:bc:6e:b9:fc:8c:eb:19:e7:52:3e:80:3d:
ee:c6:ba:07:e0:79:94:35:b7:93:b1:4d:a8:c7:cb:
aa:0c:96:50:b1:6f:c6:7d:79:cd:6e:9b:91:d0:48:
f6:ed:70:06:73:76:3e:e6:c5:83:78:87:80:2d:64:
83:9d:8e:b3:36:2c:8b:0c:41:6c:e2:74:2b:37:bc:
4b:87:85:c8:3c:fe:cd:58:2a:e0:06:87:74:00:ec:
dd:a9:c6:91:4f:78:35:95:44:91:b4:72:96:64:71:
84:0d:73:fb:0b:90:45:2e:b3:30:65:3f:16:cf:ae:
43:04:c4:86:6b:31:c1:61:c5:6f:81:e8:3f:66:5c:
ce:c7:d6:7c:77:fa:35:07:eb:3f:72:c7:59:b6:b9:
58:7e:eb:45:8a:85:07:6f:8f:b1:3b:1f:7e:41:18:
e6:11:c7:3e:20:77:ef:a4:f4:27:5f:af:f0:f8:d3:
ce:5c:35:b3:2b:9a:f6:f1:82:d7:5b:03:24:56:0f:
e1:69:54:a9:56:f9:2e:97:fb:87:8f:62:50:b8:48:
cb:1d:16:94:bd:2f:e3:99:3c:f5:bb:7f:ae:0f:fa:
ae:7b:5b:66:cb:c2:65:3c:99:62:71:7b:b5:c9:ee:
c5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BE:BC:D0:C2:7D:6B:56:81:19:ED:64:2C:B7:E0:2C:68:D1:85:32
X509v3 Authority Key Identifier:
keyid:E0:69:AB:6F:09:57:2A:FB:46:E9:F8:E9:A0:63:9D:82:0B:96:94:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GmrbwlXKvtG6fjpoGOdgguWlCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/lb680MJ9a1aBGe1kLLfgLGjRhTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/aa5cc0-bb56-4b47-b7c1-44f41d9e1277/1/4GmrbwlXKvtG6fjpoGOdgguWlCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.138.0/23
Signature Algorithm: sha256WithRSAEncryption
56:55:f5:b2:37:a5:a5:8b:f5:98:15:a9:28:ec:c0:7c:ef:ba:
91:16:b6:b1:51:5c:7c:19:de:02:b9:28:7e:c0:61:74:ff:8f:
d5:85:18:2b:a0:2f:2f:a2:ef:4c:09:4b:f7:84:19:90:83:d9:
5c:90:47:dd:17:28:f3:ee:65:9a:e8:f1:1a:b2:08:7d:4f:b7:
d1:39:c8:40:bb:da:ec:2b:9f:72:2a:e0:d4:7c:57:5e:dd:87:
ca:6b:92:38:69:56:ab:4b:a6:60:d9:f9:03:43:c5:ce:3a:a3:
64:25:d8:c6:4b:9a:a6:6c:78:9b:68:90:7f:13:bb:ee:db:d4:
77:45:eb:b1:62:95:37:92:25:0a:9b:78:5f:ed:78:4e:cf:c1:
39:11:5b:56:bb:54:74:7d:6e:2a:00:65:72:8b:0e:a5:6f:91:
1d:21:3e:f2:bb:9b:90:00:6b:ec:f1:1c:32:35:b1:3a:81:f7:
f1:5d:81:a7:73:c4:54:5b:a1:19:3b:31:fc:23:3a:05:6c:eb:
ba:2c:ea:de:52:1e:a9:7d:57:9f:46:b2:4d:6f:90:e7:9b:97:
94:b1:16:c3:7b:9c:43:b9:c3:ae:ea:b0:2c:4a:01:ba:d1:00:
e5:7a:0b:8a:ff:c4:bc:11:d9:15:75:0a:4d:f1:a0:d4:ed:32:
db:7c:bb:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:43 2024 by rpki-client on console-fra.rpki-client.org