Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/tjJLL5ciZFOlFVPETmvLaavua7Q.roa
File: tjJLL5ciZFOlFVPETmvLaavua7Q.roa (raw, json)
Hash identifier: AGmyiZ/cmPyAy+e0j8xTDWwsSNOpeebi00bVmByUtIo=
Subject key identifier: B6:32:4B:2F:97:22:64:53:A5:15:53:C4:4E:6B:CB:69:AB:EE:6B:B4
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018BC9600E3F373B80A205B8380D6DB2A16F
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/tjJLL5ciZFOlFVPETmvLaavua7Q.roa
Signing time: Mon 13 Nov 2023 15:49:57 +0000
ROA not before: Mon 13 Nov 2023 15:49:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8409
IP address blocks: 188.93.104.0/23 maxlen: 23
83.149.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:60:0e:3f:37:3b:80:a2:05:b8:38:0d:6d:b2:a1:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Nov 13 15:49:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6324b2f97226453a51553c44e6bcb69abee6bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1a:a3:77:f5:e9:4e:4e:bb:87:39:d8:fc:cf:
c9:7c:13:7d:06:01:13:63:50:80:d6:f1:2f:51:ed:
f9:d1:d8:c6:c3:4a:f8:0f:47:ea:4a:15:f5:44:42:
ec:32:c2:2d:7b:4c:b5:d5:ef:3c:dc:42:45:52:84:
49:36:e0:69:47:93:e0:a7:8e:e5:28:db:7f:bc:e9:
d9:07:24:cc:ed:27:fa:03:44:71:32:29:bf:c2:e9:
e4:f3:7e:54:d5:c0:56:f6:c1:8f:c0:ea:66:da:a5:
94:38:4f:84:a1:fb:93:c6:ad:49:6e:06:dc:7d:06:
c6:02:2e:74:f8:e3:5f:d5:6b:cf:0f:ae:2e:4a:cb:
99:f9:da:18:54:bf:1a:ac:5c:f2:58:16:a2:7c:63:
11:ec:15:e3:c6:05:2a:46:bf:27:95:a7:04:86:97:
97:9e:a0:eb:83:1f:94:ab:cc:71:9b:3b:90:35:f6:
ea:0a:c9:79:5a:93:c7:35:a4:05:e2:9e:aa:6b:07:
03:a4:e3:05:3f:6d:d6:bb:22:d6:7c:ef:2c:8c:14:
c4:84:10:ae:2a:48:87:2f:40:ae:47:dd:58:93:9a:
5a:14:de:52:ae:0d:f6:97:04:c5:8e:c7:e6:44:bc:
9a:0d:9f:71:2a:5d:5e:11:b5:21:c4:4a:4d:e3:78:
29:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:32:4B:2F:97:22:64:53:A5:15:53:C4:4E:6B:CB:69:AB:EE:6B:B4
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/tjJLL5ciZFOlFVPETmvLaavua7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.149.250.0/24
188.93.104.0/23
Signature Algorithm: sha256WithRSAEncryption
93:71:6d:ce:fd:be:45:50:31:55:ab:92:5c:eb:5c:76:bb:2d:
58:18:bb:19:93:bb:87:30:c4:62:69:a0:e6:2a:78:73:75:45:
7b:28:fb:bc:05:8f:3a:92:c0:68:8d:40:3f:0c:93:38:f1:88:
38:30:fe:23:e1:8a:67:38:27:09:db:2d:06:16:99:7f:81:97:
47:ee:58:b6:44:f7:eb:57:b8:96:e4:0f:66:9a:f2:00:85:db:
90:6f:40:e1:05:47:46:d9:5e:2f:05:cb:61:12:7f:81:9f:8f:
c7:ea:b1:fd:42:b6:d5:3b:e9:e4:48:a1:b2:c4:16:32:78:c8:
3e:33:d4:c7:68:16:8d:d0:ab:fc:c8:ff:85:bf:4b:1f:2a:61:
64:ee:55:b6:4a:d1:67:7a:22:83:a9:bf:04:68:0c:0d:fd:1d:
e6:10:00:a1:ed:e3:6b:f7:10:6d:e8:a1:b8:80:63:e4:09:81:
bd:55:f9:e0:ee:14:e1:aa:b9:42:db:0d:7c:83:cc:6d:f9:60:
2d:28:9c:41:8c:ca:bc:e5:f1:81:ba:6f:01:21:d3:0c:65:6a:
88:5c:e8:ef:bc:af:c6:85:c5:68:15:cd:81:f5:7d:98:97:37:
c1:e0:37:93:d8:55:03:a5:63:fe:18:c5:7b:83:31:ed:07:8b:
37:13:dc:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org