Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/1-D-CLlNakKsbjt3lx7XsN_kVfOY.roa
File: 1-D-CLlNakKsbjt3lx7XsN_kVfOY.roa (raw, json)
Hash identifier: I30oMlczCa/LfE87DlDEEkOcfGf3HcukynNVXQBQI5U=
Subject key identifier: F8:3F:82:2E:53:5A:90:AB:1B:8E:DD:E5:C7:B5:EC:37:F9:15:7C:E6
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018AF07BFBE89CFAAB13CA861CCDD23ED9B0
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/1-D-CLlNakKsbjt3lx7XsN_kVfOY.roa
Signing time: Mon 02 Oct 2023 13:02:51 +0000
ROA not before: Mon 02 Oct 2023 13:02:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 188.214.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 15:13:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:7b:fb:e8:9c:fa:ab:13:ca:86:1c:cd:d2:3e:d9:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Oct 2 13:02:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f83f822e535a90ab1b8edde5c7b5ec37f9157ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:f3:75:73:ee:ad:e5:82:cf:65:b0:5c:e1:
a5:86:d3:5b:9f:26:49:54:7e:34:95:d1:b6:2f:44:
d7:72:78:83:29:9b:71:d0:e6:c9:28:8f:6e:0b:1e:
33:c5:04:e2:3d:48:34:09:9f:a7:e6:cb:8d:5a:be:
c7:b1:3a:59:bd:77:af:91:d4:d9:21:86:99:6c:c1:
b6:dd:18:c4:43:0d:06:8c:0c:44:cd:f4:a9:14:a1:
9b:6a:8b:98:79:97:52:8a:d6:89:21:a7:be:3e:db:
c4:22:5e:a0:c8:f1:67:60:0a:f4:20:dc:3f:dd:fc:
8a:62:0d:c9:73:b1:fe:e0:e4:25:35:b3:b1:d1:ab:
24:82:27:ee:5a:e2:76:dd:3f:5f:1e:7a:fe:b9:76:
5e:92:02:c0:bb:02:c4:2c:40:88:28:0b:be:45:b2:
cc:c2:29:b5:9f:9f:6f:70:1b:08:df:2c:a7:33:fc:
1e:21:7d:ca:8d:9b:67:8f:19:2b:11:f8:07:d7:3e:
ae:5a:9d:01:e5:dc:66:35:9a:14:16:fc:7a:66:ec:
d7:fe:46:54:d5:92:61:b3:bd:be:f0:86:2a:d4:05:
ef:03:30:d0:97:12:e6:39:6c:73:b0:8a:d3:76:bd:
67:70:33:2a:89:63:03:8a:8c:16:89:12:a5:fa:53:
4f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3F:82:2E:53:5A:90:AB:1B:8E:DD:E5:C7:B5:EC:37:F9:15:7C:E6
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/1-D-CLlNakKsbjt3lx7XsN_kVfOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
66:4d:74:ec:d4:48:59:42:c0:e0:15:0c:04:6d:d6:1d:de:69:
5e:e8:56:fb:8c:19:bb:a2:fd:2d:6f:db:a9:10:28:2b:5c:71:
e8:1b:64:ff:82:00:02:db:36:00:df:d0:5b:5b:de:d5:4b:10:
b8:93:ae:8f:7a:55:11:86:45:c4:dd:aa:43:72:44:52:f6:f6:
f8:79:f0:4b:33:21:21:5a:8f:60:c7:d7:36:34:2f:70:7e:9a:
4a:bb:4a:66:14:fa:9f:82:4e:47:97:cd:39:2e:fe:b4:33:1b:
3f:fc:2e:2b:36:a6:8a:a3:e1:3b:fb:99:1b:0d:e8:f4:ac:ca:
bd:09:50:2e:d1:3a:77:4b:da:f5:54:7f:99:27:f0:87:f1:7c:
93:5f:2a:ac:1e:b0:97:26:c3:39:a4:bb:5b:e7:2b:63:f6:47:
62:17:eb:4b:70:40:be:cf:18:7e:10:23:fe:45:db:1f:ae:be:
7a:ad:76:21:2c:b2:f7:96:51:05:a6:91:a5:2b:fd:19:0a:a5:
6c:7c:a2:e1:16:4c:be:f8:be:3d:5c:84:e4:ad:ac:ef:f3:82:
6a:91:ec:f7:72:9e:64:0c:0a:d6:86:b5:a7:73:30:05:cd:0d:
da:e8:3b:05:e9:01:95:dd:35:ac:f6:c6:67:e6:d2:6c:c0:37:
0e:52:52:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org