Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/08cd46-1019-4f7d-867b-297e03066f7d/1/m_eSNvQbBETOejMdiXiNzIheNpQ.roa
File: m_eSNvQbBETOejMdiXiNzIheNpQ.roa (raw, json)
Hash identifier: 4TMZOYGEsXYWHLcd3QQiL/E9Al4HV7dcNX3euiuot0Q=
Subject key identifier: 9B:F7:92:36:F4:1B:04:44:CE:7A:33:1D:89:78:8D:CC:88:5E:36:94
Certificate issuer: /CN=b02b1f76e8c2ba4928ac280b27aa84d5967a3504
Certificate serial: 018824DC9A3C3818A9BDE9D43508F33C5521
Authority key identifier: B0:2B:1F:76:E8:C2:BA:49:28:AC:28:0B:27:AA:84:D5:96:7A:35:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCsfdujCukkorCgLJ6qE1ZZ6NQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/08cd46-1019-4f7d-867b-297e03066f7d/1/m_eSNvQbBETOejMdiXiNzIheNpQ.roa
Signing time: Tue 16 May 2023 14:00:17 +0000
ROA not before: Tue 16 May 2023 14:00:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196822
IP address blocks: 188.116.64.0/18 maxlen: 18
2a09:4dc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:24:dc:9a:3c:38:18:a9:bd:e9:d4:35:08:f3:3c:55:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02b1f76e8c2ba4928ac280b27aa84d5967a3504
Validity
Not Before: May 16 14:00:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bf79236f41b0444ce7a331d89788dcc885e3694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d1:35:29:7e:aa:e4:bc:1c:87:5e:c6:ba:f9:
e9:1c:b1:76:d5:8e:1e:04:3b:1c:53:65:52:2f:f3:
6e:58:c7:eb:6d:76:a8:c8:b2:29:87:0f:f8:1c:02:
c4:18:ad:4a:11:1e:9a:97:7b:0d:28:9d:d6:21:13:
7f:98:ca:bd:e7:1e:ca:2c:0b:a7:7d:1f:8a:6c:cf:
49:0e:74:2e:08:92:cb:62:09:0e:9e:f4:84:dc:06:
0c:e0:bb:f8:c1:f5:7f:cf:51:eb:98:5a:16:a5:18:
4b:bd:f2:ff:92:00:22:bb:df:e7:2e:3b:bb:94:a6:
a1:83:cd:aa:32:f8:c0:97:1c:0d:55:14:7d:76:2e:
35:7b:e7:8e:3a:f1:1d:2d:b1:ba:1e:b3:16:96:c5:
c8:2b:c4:0a:b2:1f:84:c9:0f:f1:9c:50:69:47:81:
7e:23:40:8c:5b:e8:2a:e5:02:70:7a:e4:93:c8:d4:
e8:af:de:40:af:66:8b:20:c5:3b:e5:17:a3:0b:ef:
f6:43:a6:69:e1:08:0b:db:ad:40:4f:50:cb:32:ad:
5a:d2:ec:53:0b:21:57:d4:5a:57:f9:a7:6f:d3:e5:
e9:de:81:b7:6a:ec:e8:bb:c7:3f:37:41:09:cf:e3:
5d:3a:a3:2d:4d:3b:1b:79:c9:0e:4f:77:9d:51:e5:
4c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:F7:92:36:F4:1B:04:44:CE:7A:33:1D:89:78:8D:CC:88:5E:36:94
X509v3 Authority Key Identifier:
keyid:B0:2B:1F:76:E8:C2:BA:49:28:AC:28:0B:27:AA:84:D5:96:7A:35:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCsfdujCukkorCgLJ6qE1ZZ6NQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/08cd46-1019-4f7d-867b-297e03066f7d/1/m_eSNvQbBETOejMdiXiNzIheNpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/08cd46-1019-4f7d-867b-297e03066f7d/1/sCsfdujCukkorCgLJ6qE1ZZ6NQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.116.64.0/18
IPv6:
2a09:4dc0::/32
Signature Algorithm: sha256WithRSAEncryption
81:d9:bc:57:26:8b:fb:64:f2:d1:99:a0:03:d3:f7:c1:5a:27:
5d:bb:d7:e4:38:02:7d:b4:76:cc:60:ac:10:fc:71:0f:de:65:
d9:80:0a:58:cf:02:44:a1:ab:e7:d5:73:94:c3:d7:6c:12:97:
e5:f3:65:64:05:c1:12:8a:47:2c:0f:e5:d6:c7:58:60:35:71:
b3:da:cb:4c:62:6f:65:42:6b:03:ae:a8:27:ec:db:08:52:95:
2d:6b:13:f4:18:2d:03:e8:07:e6:51:62:ad:41:78:b4:12:0a:
1c:af:d0:05:5f:c1:05:19:04:b4:a9:6b:f2:8b:df:a2:ea:3a:
2e:0d:3e:ef:fe:b5:98:45:53:0b:75:f3:65:78:fb:cd:0f:aa:
dd:56:35:6e:06:64:2e:67:ce:51:be:8e:20:69:3f:bd:90:07:
c8:25:04:36:7b:3e:bc:0f:fd:05:13:e1:e2:c8:95:8b:3b:dd:
0d:55:6c:b6:b0:84:79:3c:90:b7:3a:68:de:49:c3:61:58:56:
3b:35:65:4b:76:c7:33:7a:57:df:18:07:d2:e2:82:3b:fc:32:
6f:04:ae:ad:19:26:f5:de:09:15:6c:58:3c:15:be:dd:67:1c:
81:98:60:1f:15:a1:15:ec:4f:97:dc:2a:03:a0:c8:02:c2:d9:
f0:c8:2c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:45 2024 by rpki-client on console-fra.rpki-client.org