Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/eRxiWIg8JMal3YykmXhwyJhThP0.roa
File: eRxiWIg8JMal3YykmXhwyJhThP0.roa (raw, json)
Hash identifier: mXWSJq7KCh+wCVN6fPctMqPvSY9YN9dDIlvr3DnYxNQ=
Subject key identifier: 79:1C:62:58:88:3C:24:C6:A5:DD:8C:A4:99:78:70:C8:98:53:84:FD
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 01897E0C5D04532A36275018925DE6E05F78
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/eRxiWIg8JMal3YykmXhwyJhThP0.roa
Signing time: Sat 22 Jul 2023 14:41:26 +0000
ROA not before: Sat 22 Jul 2023 14:41:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.214.232.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 07 Aug 2023 00:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7e:0c:5d:04:53:2a:36:27:50:18:92:5d:e6:e0:5f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jul 22 14:41:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=791c6258883c24c6a5dd8ca4997870c8985384fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:93:f4:99:b4:53:8d:34:fe:76:c8:8b:f4:b7:
06:88:98:6e:2b:a2:6f:ef:59:03:b8:96:82:8e:be:
80:42:5b:58:86:10:9e:9e:ff:0f:f2:9a:85:f8:ae:
f1:f9:c1:df:75:54:0a:fb:1c:f0:62:38:bb:42:01:
09:c5:81:c4:ff:5c:01:bf:9d:f6:b9:11:ca:15:7a:
cf:46:82:f7:5d:7c:e5:5e:3a:af:14:36:f2:44:a7:
b7:13:8e:40:e5:e3:21:e7:f3:c8:64:47:35:5f:fc:
2b:b2:06:3c:53:09:b3:8f:cd:b2:13:c0:ac:e6:a6:
d8:0d:49:06:37:7b:17:5a:59:92:80:b5:28:41:cf:
3a:21:84:f2:8c:49:07:3e:c6:ec:7b:61:bc:a2:7e:
9c:fc:32:3a:4d:59:02:8e:74:62:98:33:1d:58:a1:
27:b3:a8:07:8b:2e:96:23:3a:61:43:c0:2a:7b:81:
39:74:1c:37:94:9b:e0:0d:b7:3f:9f:b2:48:93:08:
df:57:c1:c7:12:c9:c8:ac:39:1f:a8:29:2f:8d:1e:
1f:92:52:46:5d:e5:5a:be:d5:f8:e8:87:fb:67:23:
86:e3:f4:e0:8a:63:ad:89:ae:cd:1a:91:36:16:04:
e1:9c:5d:1a:51:0e:71:2a:dc:71:3d:f5:95:62:1d:
f9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1C:62:58:88:3C:24:C6:A5:DD:8C:A4:99:78:70:C8:98:53:84:FD
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/eRxiWIg8JMal3YykmXhwyJhThP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:29:81:24:63:2e:12:cc:57:81:00:25:53:66:5d:63:39:69:
ee:9f:ce:59:3d:fe:5d:36:26:01:1a:ae:f9:d9:83:1c:cc:93:
8d:c9:fd:d0:f4:67:37:6c:97:00:e0:a5:2a:3a:e7:32:a9:e0:
0f:f2:c7:46:d5:26:90:ae:58:56:e0:34:75:4c:57:10:33:2e:
28:f2:0f:31:39:b5:62:7e:70:17:31:8d:b8:d9:87:2b:d5:63:
38:2a:12:ec:b3:19:b3:35:55:0f:56:3d:39:ba:73:bf:1e:f3:
fe:8d:eb:80:5a:01:ab:a1:ed:af:3c:f7:a8:36:88:ac:34:c8:
bf:0a:0c:3b:ca:cb:0d:e2:a8:41:78:8d:88:75:0c:5c:d7:e6:
51:36:f0:be:05:43:ec:dd:1c:ea:95:75:5a:12:cc:7d:e0:19:
9f:80:4a:01:d9:bc:0b:9c:29:bd:3e:72:61:99:01:46:b6:e0:
a5:ba:d0:cf:f7:be:92:72:63:09:ca:87:86:c6:d2:ba:c9:8d:
ef:5a:d4:43:36:46:a3:28:07:72:cf:2e:ce:f4:54:94:c0:81:
36:09:96:8a:70:3c:f7:57:77:cb:a1:b5:cf:38:05:45:ce:d6:
94:0f:43:b2:b4:8a:44:48:c5:86:15:32:85:63:c9:f9:c6:3c:
b7:9d:6e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org