Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/u8ky2JNupjpWleHUWMaLZmhnMkY.roa
File: u8ky2JNupjpWleHUWMaLZmhnMkY.roa (raw, json)
Hash identifier: 3BRUEil7Y7TXWKOTVZkojutk12tlbyf4t4xVJk3h0jo=
Subject key identifier: BB:C9:32:D8:93:6E:A6:3A:56:95:E1:D4:58:C6:8B:66:68:67:32:46
Certificate issuer: /CN=2526c138afa42a7d65cc7761ac4f1868366fa7e3
Certificate serial: 018572FA8A4870429975F8E25D81388156F3
Authority key identifier: 25:26:C1:38:AF:A4:2A:7D:65:CC:77:61:AC:4F:18:68:36:6F:A7:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSbBOK-kKn1lzHdhrE8YaDZvp-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/u8ky2JNupjpWleHUWMaLZmhnMkY.roa
Signing time: Mon 02 Jan 2023 14:55:00 +0000
ROA not before: Mon 02 Jan 2023 14:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.111.24.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:8a:48:70:42:99:75:f8:e2:5d:81:38:81:56:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2526c138afa42a7d65cc7761ac4f1868366fa7e3
Validity
Not Before: Jan 2 14:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbc932d8936ea63a5695e1d458c68b6668673246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:84:cf:bc:c5:d1:05:c9:1f:ad:52:b4:9f:90:
f3:8e:ff:69:ee:86:9c:43:21:53:4e:a4:a4:c6:90:
cb:db:da:76:48:34:65:f8:84:26:51:fe:21:c9:10:
41:03:63:ae:bf:75:03:29:d2:48:f0:30:08:ae:79:
d0:d1:85:3b:85:1a:59:20:35:8c:1a:03:b8:c0:7a:
cb:bd:c4:df:d9:e9:ac:cd:b9:f6:cc:16:57:4e:c2:
df:23:f5:16:a9:15:db:d9:1e:92:6b:b2:72:8e:df:
8c:d9:48:89:a4:3b:5e:c9:b3:a3:52:e7:38:ac:ae:
15:2c:f1:67:35:d6:46:89:62:6d:d5:e7:97:b8:cd:
08:54:cc:79:bd:87:1f:35:84:d6:d1:a4:c1:26:b7:
84:24:28:c6:8c:39:8a:c5:7d:b2:f8:01:1d:77:e5:
48:4f:3b:4e:a9:52:41:62:fc:8d:4c:13:39:89:02:
27:0c:d7:b7:c8:22:ad:6e:2d:64:ee:b8:9f:08:ee:
c7:a6:f1:4a:80:a2:eb:f2:ee:e6:05:82:dc:f2:e2:
51:bb:79:b1:21:cd:67:f7:7f:f3:00:be:72:d2:9a:
63:97:c1:7a:f7:ef:5b:47:f2:2f:60:65:04:39:82:
9f:47:58:39:d2:d3:b7:5f:90:7e:07:be:6b:06:8f:
76:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C9:32:D8:93:6E:A6:3A:56:95:E1:D4:58:C6:8B:66:68:67:32:46
X509v3 Authority Key Identifier:
keyid:25:26:C1:38:AF:A4:2A:7D:65:CC:77:61:AC:4F:18:68:36:6F:A7:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSbBOK-kKn1lzHdhrE8YaDZvp-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/u8ky2JNupjpWleHUWMaLZmhnMkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/886f03-dc91-4a74-b034-b06228fcf2c1/1/JSbBOK-kKn1lzHdhrE8YaDZvp-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.24.0/23
Signature Algorithm: sha256WithRSAEncryption
16:b4:06:4e:19:84:61:23:46:30:c3:ce:5a:72:95:b3:1f:d7:
f4:6f:54:5b:8b:bf:4b:bc:a2:6e:72:36:3a:c3:a1:d4:e6:a7:
5a:77:0d:3b:97:ab:5f:c4:4c:09:ff:4a:01:41:f5:40:95:6d:
c2:57:7d:06:9e:7e:cc:15:da:9c:11:61:c2:14:a6:43:5d:76:
c7:31:31:f0:f1:3c:47:ca:de:b6:0b:9c:1c:20:35:d8:3a:26:
3b:11:8b:3d:f3:f2:68:4a:3f:02:34:19:73:a1:44:12:0f:a7:
3c:f8:fc:d9:d7:da:c0:5b:29:58:b5:1b:2d:23:78:b6:2f:a8:
c0:5f:a5:dc:5c:c5:d2:3e:94:46:09:e5:be:6f:bd:4e:05:5e:
d7:c4:7d:d6:53:2d:90:b1:07:63:5b:20:a5:51:23:0d:c8:3d:
49:2f:57:c6:61:6f:88:7c:62:a6:51:0f:62:7b:fa:f2:84:33:
d8:d2:4d:75:80:8b:61:e9:ee:a1:7f:6d:d7:7d:7e:d8:8d:a3:
86:ea:b6:eb:83:65:ec:28:3e:8b:a4:a5:72:ed:e9:ec:3f:96:
00:c1:86:e1:3c:1a:02:74:02:ee:e2:f6:f1:ce:02:62:59:da:
11:8b:d7:dd:b0:5f:f9:57:c5:b1:71:55:85:10:37:36:bb:86:
02:e5:15:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:42 2024 by rpki-client on console-fra.rpki-client.org