Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/BIgdl6MWixHjZbaQv-6C1EhG9YY.roa
File: BIgdl6MWixHjZbaQv-6C1EhG9YY.roa (raw, json)
Hash identifier: eQXpL3WaBOjwrHcK8j8HSy1hW1H/d7h/t5kuIf0rxns=
Subject key identifier: 04:88:1D:97:A3:16:8B:11:E3:65:B6:90:BF:EE:82:D4:48:46:F5:86
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01893B5A2688A7859453CDBB993C05ACD914
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/BIgdl6MWixHjZbaQv-6C1EhG9YY.roa
Signing time: Sun 09 Jul 2023 15:51:51 +0000
ROA not before: Sun 09 Jul 2023 15:51:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 193.58.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 09:35:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3b:5a:26:88:a7:85:94:53:cd:bb:99:3c:05:ac:d9:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 9 15:51:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04881d97a3168b11e365b690bfee82d44846f586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:10:13:d0:06:bc:bd:23:e7:bd:0d:dc:a7:2f:
d9:f9:a6:b8:7b:c5:61:d3:78:0e:d1:3b:25:ab:0f:
07:d9:61:6c:d3:b5:64:da:57:51:51:08:78:1f:db:
2f:dd:e8:f0:a1:bf:a1:07:1c:9a:b8:aa:f6:bd:8b:
35:45:c7:c5:8d:d7:26:0b:f5:69:02:ae:f2:d2:d1:
29:87:d2:7d:2e:88:43:90:21:08:7d:57:af:5f:0f:
08:d4:db:9a:0a:29:90:60:55:04:91:82:12:87:a6:
cc:9b:06:db:b7:9a:7e:3d:4f:46:dd:bb:21:db:3e:
2e:b7:dd:53:e6:53:d5:96:4a:06:5e:ac:e9:27:25:
28:44:05:8e:5c:63:c1:d3:71:fa:c7:79:4d:1f:67:
2e:a2:f5:db:fd:d0:46:7c:54:02:a0:28:aa:bf:b3:
40:00:03:31:df:18:cc:91:4f:49:b1:11:05:ba:cb:
3d:c6:4c:dd:8d:4b:c9:00:08:11:bc:68:75:da:94:
9f:22:ec:5e:51:0f:48:93:d0:ac:72:0c:ca:47:ee:
51:9d:67:6b:87:7b:bd:a2:bd:ac:35:d6:2d:33:92:
ee:a4:e3:58:0e:5b:44:b1:5b:55:51:33:0e:f2:14:
02:83:ec:fe:39:6d:5a:68:2d:63:08:c0:f9:86:36:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:88:1D:97:A3:16:8B:11:E3:65:B6:90:BF:EE:82:D4:48:46:F5:86
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/BIgdl6MWixHjZbaQv-6C1EhG9YY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.147.0/24
Signature Algorithm: sha256WithRSAEncryption
09:70:23:be:14:77:10:df:de:60:0b:73:30:7e:c4:63:1f:8c:
74:7a:a9:55:0e:8c:26:1f:10:44:44:47:bf:65:14:ce:ef:7d:
19:aa:51:3a:b1:79:99:32:0c:5d:34:0c:9a:e9:1c:39:92:2a:
d5:a2:97:8a:d6:62:4b:b8:f0:b8:e0:7d:3e:66:69:39:b8:d9:
93:e2:6b:6e:63:8f:5f:ed:61:72:05:7c:cf:a2:1a:a5:e7:7c:
7b:f9:25:d7:32:46:1a:5b:5e:d6:f3:3a:09:e4:51:f8:15:80:
d3:e8:84:22:77:8c:19:8f:63:f0:8c:1c:fe:8a:3a:9e:27:40:
1e:07:c1:98:cb:ba:92:7d:0d:d6:85:a4:13:2d:98:8a:25:06:
86:bc:35:93:66:32:cd:99:72:c9:96:00:8d:46:8b:ed:95:46:
d5:c8:86:1c:d3:f2:ce:94:03:69:17:04:c0:e8:fc:ae:b1:2c:
22:39:c7:ea:e3:7f:f3:fc:36:00:8b:81:7e:3b:79:47:49:73:
82:f7:13:03:c3:e4:ba:20:e1:37:51:af:d5:d0:de:cb:94:21:
09:76:1a:bd:f1:73:80:c2:ac:03:71:3b:e3:90:a5:9c:a7:45:
e5:44:08:55:f4:7a:74:64:f0:fd:f6:13:4b:cf:6f:de:15:ce:
97:30:25:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org