Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/18c856-18b1-4375-bcac-19f22ed613a5/1/bC8GjZ--eih_pJ4jctdCViJOUK4.roa
File: bC8GjZ--eih_pJ4jctdCViJOUK4.roa (raw, json)
Hash identifier: pJRs9YpLwhg7Lo07Vq7oT8wFD8UE5O8nQsay1lKiKKY=
Subject key identifier: 6C:2F:06:8D:9F:BE:7A:28:7F:A4:9E:23:72:D7:42:56:22:4E:50:AE
Certificate issuer: /CN=068cb85bc4e9e4b732e957f08aa1c0237aadc47f
Certificate serial: 01857079BFDCEEA8130D09C9A7781354EA21
Authority key identifier: 06:8C:B8:5B:C4:E9:E4:B7:32:E9:57:F0:8A:A1:C0:23:7A:AD:C4:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Boy4W8Tp5Lcy6VfwiqHAI3qtxH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/18c856-18b1-4375-bcac-19f22ed613a5/1/bC8GjZ--eih_pJ4jctdCViJOUK4.roa
Signing time: Mon 02 Jan 2023 03:15:05 +0000
ROA not before: Mon 02 Jan 2023 03:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29686
IP address blocks: 194.0.208.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:bf:dc:ee:a8:13:0d:09:c9:a7:78:13:54:ea:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cb85bc4e9e4b732e957f08aa1c0237aadc47f
Validity
Not Before: Jan 2 03:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c2f068d9fbe7a287fa49e2372d74256224e50ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ae:e5:bc:88:d1:c7:fc:4b:63:15:a0:61:9c:
7a:bc:70:3e:3a:02:e1:37:a3:25:58:53:de:13:81:
26:64:5a:0e:76:63:24:6e:19:9a:54:a8:f3:87:8a:
ba:c9:a2:32:27:09:4b:17:40:51:f4:5c:e8:01:40:
c3:86:f3:f2:bc:62:05:23:57:07:d3:19:3a:ca:53:
ff:83:84:b8:60:b1:9f:47:9b:ed:56:98:70:b7:88:
db:ed:5d:a5:ce:7c:08:3a:b2:da:1b:2a:aa:29:b1:
17:13:ab:75:a1:95:0f:c1:65:d0:71:ef:76:d9:40:
30:5c:4e:5f:4f:12:c1:f3:88:75:33:db:5d:3e:6c:
3e:43:93:ca:b0:9b:32:dd:1b:1a:37:ca:ad:68:cc:
95:05:1d:43:cf:36:66:7b:73:14:90:53:7f:1b:a4:
d2:4e:e6:0f:f6:d1:b0:8d:27:8f:19:d6:58:1b:e6:
5b:e3:d0:37:e4:ce:28:c7:e7:4d:e5:dc:16:46:76:
67:07:c0:ba:54:d5:d4:18:d8:d8:4b:d7:ba:38:f7:
1a:e4:1f:04:7e:af:98:a3:14:ba:2b:04:2e:af:a3:
8a:02:20:7b:3e:3e:3a:ca:37:a3:65:97:bf:6c:81:
d6:7b:35:80:b3:d3:0b:d3:11:d2:db:5e:38:4c:30:
fd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2F:06:8D:9F:BE:7A:28:7F:A4:9E:23:72:D7:42:56:22:4E:50:AE
X509v3 Authority Key Identifier:
keyid:06:8C:B8:5B:C4:E9:E4:B7:32:E9:57:F0:8A:A1:C0:23:7A:AD:C4:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Boy4W8Tp5Lcy6VfwiqHAI3qtxH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/18c856-18b1-4375-bcac-19f22ed613a5/1/bC8GjZ--eih_pJ4jctdCViJOUK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/18c856-18b1-4375-bcac-19f22ed613a5/1/Boy4W8Tp5Lcy6VfwiqHAI3qtxH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.208.0/24
Signature Algorithm: sha256WithRSAEncryption
56:52:36:02:b1:b4:bd:1f:32:6b:72:68:34:b6:a9:f9:64:7e:
d5:39:58:0b:82:32:2b:02:ad:78:8e:c5:da:01:a0:7b:4b:38:
16:48:fb:e8:78:90:5f:44:37:c7:af:51:4b:da:b3:9c:e7:89:
98:ff:24:3d:7f:1a:9b:3c:7d:e4:15:24:16:33:fa:f0:21:e5:
5a:61:87:f6:de:f6:50:7c:1b:02:74:8b:03:30:a6:4d:2d:c4:
c3:d0:f8:3c:79:f6:6f:9d:01:f2:56:da:a0:be:d9:78:1d:a1:
8a:9d:40:ad:e2:ab:e8:6e:cf:dd:d0:b3:f6:d8:89:73:c5:e8:
9e:ce:b1:84:47:b4:47:c1:b5:98:17:b2:60:36:b3:10:a1:85:
6b:45:76:2e:02:aa:c5:36:b8:dd:69:d6:48:bf:ad:ff:40:07:
a3:48:bf:2a:dc:c1:69:a0:84:64:da:db:32:80:7f:82:2d:09:
e4:e3:38:51:e9:92:0e:a0:85:dd:29:36:0b:50:f8:1d:9a:fb:
ce:36:ea:96:b7:84:fe:de:34:22:5f:e5:29:3a:a9:90:25:db:
5c:4c:27:7d:06:2b:c6:09:2f:23:c0:1c:5c:7d:f0:69:a5:7f:
16:b3:9b:6f:d8:3b:ec:07:9d:c3:9a:07:ca:0d:38:b6:72:20:
f8:66:1b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:12 2024 by rpki-client on console-fra.rpki-client.org