Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kAMWUmK_g1wo3QNV5KBrqaJ4uZY.roa
File: kAMWUmK_g1wo3QNV5KBrqaJ4uZY.roa (raw, json)
Hash identifier: FZgSeGFEYTcqlJDbU49wvl8oLmVMDipr6YiBMAPgPA4=
Subject key identifier: 90:03:16:52:62:BF:83:5C:28:DD:03:55:E4:A0:6B:A9:A2:78:B9:96
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018D8E5BC6DBE2A2220A405BEA193B5B54B1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kAMWUmK_g1wo3QNV5KBrqaJ4uZY.roa
Signing time: Fri 09 Feb 2024 14:53:15 +0000
ROA not before: Fri 09 Feb 2024 14:53:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201575
IP address blocks: 193.8.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 08:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8e:5b:c6:db:e2:a2:22:0a:40:5b:ea:19:3b:5b:54:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 9 14:53:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9003165262bf835c28dd0355e4a06ba9a278b996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a8:24:ca:42:ae:d6:ba:e2:8d:9d:70:f7:7c:
13:27:58:f8:df:90:58:92:8c:6b:35:1d:32:17:a0:
5d:81:bd:7a:14:19:e5:f1:fd:ca:90:2d:de:58:14:
2d:d9:a1:0c:7c:91:02:20:5e:12:50:9c:75:15:33:
9d:9b:db:fc:a5:b9:77:00:16:82:42:08:a9:08:5f:
0a:8a:36:fe:a0:c8:2c:3e:32:f3:03:ee:66:7a:06:
8b:83:06:e9:f8:d1:09:4e:b5:dc:42:d1:99:dc:91:
4e:17:b3:a6:39:dd:0d:15:e7:12:61:69:13:54:5c:
77:a3:ac:b4:a7:4e:a3:b1:a5:31:ab:ef:1f:82:77:
b2:8c:ec:ae:f7:4c:c2:ed:52:bd:d4:15:18:80:cc:
b6:7b:11:ee:3b:32:68:6b:a5:6d:07:51:c4:00:55:
be:d6:c5:b3:69:dc:1a:ee:8d:78:86:3f:9f:b8:78:
ba:ee:c5:24:cb:71:cf:9e:18:e0:78:41:a4:d6:70:
91:33:fe:e0:4d:c3:9d:39:a7:ea:47:e0:de:8c:fb:
89:9b:b1:6a:cc:13:9b:b9:7b:51:ce:9d:d7:88:62:
6c:ab:78:dd:14:c2:ce:2d:51:ca:87:d7:00:42:81:
93:31:63:bb:1b:95:cf:07:97:f9:1c:c3:c2:f1:66:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:03:16:52:62:BF:83:5C:28:DD:03:55:E4:A0:6B:A9:A2:78:B9:96
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/kAMWUmK_g1wo3QNV5KBrqaJ4uZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.114.0/24
Signature Algorithm: sha256WithRSAEncryption
86:db:78:34:57:34:22:42:d9:c6:b9:89:93:9a:0f:ce:94:05:
62:1a:2c:51:4f:cb:ae:0e:6a:a2:1d:7e:50:2e:5a:0c:38:80:
df:e5:af:da:a3:a2:7c:52:da:d7:fb:cc:92:bb:2b:f5:fa:06:
99:4f:42:0d:8a:25:4d:5c:c3:09:cb:fb:9a:79:82:de:61:db:
0a:fc:7f:ac:90:30:a7:c4:f4:f9:cf:24:20:3d:a7:dc:2b:c3:
ff:9b:e1:09:60:42:11:b3:e1:0f:22:82:38:75:04:61:43:b4:
3b:ed:f5:d5:97:76:aa:e6:7d:2a:0f:4a:c5:5c:8c:a1:e9:55:
e7:bb:1a:43:2e:77:f7:bc:1e:96:a0:63:33:4e:19:81:5b:b3:
d1:c5:e0:2e:ac:d8:54:1f:85:a8:09:33:49:be:c7:97:5d:da:
7f:d5:26:f2:88:6e:19:88:37:15:e5:76:7e:fe:cd:f0:51:95:
7c:76:88:f7:fe:84:17:af:63:9a:e2:f5:3d:45:30:11:29:11:
a7:69:54:13:3e:a4:c6:9a:c4:96:9d:4a:90:f3:61:d2:06:7b:
53:6f:47:07:a8:d1:07:8b:fc:e0:bd:85:d0:16:9e:56:9d:79:
9e:83:37:9e:4e:e2:a5:ca:7f:8e:a4:39:ba:a6:b9:e1:33:d1:
af:94:78:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org