Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/yai2rgmpDt4TesimdZyT2iY5kqg.roa
File: yai2rgmpDt4TesimdZyT2iY5kqg.roa (raw, json)
Hash identifier: +48HuElkAWbIyDDm1CUK6hjqpH9N2iwizwFXRfQdABE=
Subject key identifier: C9:A8:B6:AE:09:A9:0E:DE:13:7A:C8:A6:75:9C:93:DA:26:39:92:A8
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 0189F2D391E2F95A362435CFB9E960B9953D
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/yai2rgmpDt4TesimdZyT2iY5kqg.roa
Signing time: Mon 14 Aug 2023 06:54:58 +0000
ROA not before: Mon 14 Aug 2023 06:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203999
IP address blocks: 185.188.63.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f2:d3:91:e2:f9:5a:36:24:35:cf:b9:e9:60:b9:95:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Aug 14 06:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9a8b6ae09a90ede137ac8a6759c93da263992a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4c:eb:f1:09:94:97:f8:ba:d2:2b:47:b8:be:
06:b6:17:c3:33:25:43:05:27:33:55:e1:4f:c8:d1:
72:61:d6:b4:fb:a4:90:c3:6e:02:c7:c2:cf:a9:a0:
04:0d:be:79:9d:57:f4:c9:cc:b1:12:9a:9c:1a:2f:
18:cb:b0:e0:65:da:b4:43:f0:c7:7c:f7:2b:b4:30:
ed:41:9b:cf:0e:83:ff:79:9a:66:b7:53:60:df:90:
69:d9:e8:e6:cf:44:86:2c:2b:51:f6:89:0f:9b:2c:
fd:23:14:5d:64:b0:fa:10:ab:41:c2:14:34:5d:83:
7e:f5:ec:ea:69:69:1d:83:88:2f:c2:c0:04:ec:ee:
0f:d3:30:28:90:75:ab:3f:5e:29:9d:f2:9c:fc:77:
b1:8b:19:a8:7e:5f:e1:7b:2e:6d:42:58:c5:bb:69:
8b:e0:fd:06:45:e8:ab:25:b0:da:30:37:d5:59:3f:
44:d0:fb:3d:a4:40:23:79:11:5c:0a:94:e6:d9:0e:
42:19:38:c6:cc:5a:3c:35:40:b7:24:bf:46:bb:72:
07:16:a5:35:d9:3a:de:ea:1d:82:f6:80:21:c6:9c:
c1:c1:80:69:21:80:62:b4:70:4e:58:af:6f:65:21:
52:84:5d:0b:c3:af:44:d0:09:6e:87:0f:12:5c:d4:
b1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A8:B6:AE:09:A9:0E:DE:13:7A:C8:A6:75:9C:93:DA:26:39:92:A8
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/yai2rgmpDt4TesimdZyT2iY5kqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.63.0/24
Signature Algorithm: sha256WithRSAEncryption
52:b5:d4:89:b7:a4:b8:c6:a7:e4:1f:5d:b7:12:7f:9f:c1:b2:
c4:8f:e7:d6:02:74:19:94:c5:a3:94:00:9f:59:98:a9:3d:67:
69:c3:b8:59:3d:e3:15:c3:74:3c:0f:33:83:29:e6:d5:a4:66:
d7:66:14:81:ee:26:e4:63:c4:69:20:b0:fc:3b:9e:12:26:23:
05:ad:65:cc:22:17:55:ac:93:1f:48:70:a0:ee:47:93:53:7e:
d4:7d:a5:09:48:40:32:c9:d7:95:e4:0b:d9:2f:10:31:de:61:
8b:7a:be:60:9f:e0:07:37:d5:43:78:c3:9e:29:d5:00:d8:87:
89:d7:c8:27:b3:60:86:54:63:37:2d:84:33:04:9e:7a:c7:d7:
f6:5c:9d:1b:5c:a3:5d:e4:6e:84:8a:cd:ab:6a:2a:75:da:72:
8d:01:7f:c9:f0:9c:01:6e:f7:47:e7:ce:ad:6e:0f:67:e4:5d:
17:78:e8:09:74:0d:8a:f0:ef:97:d1:ab:d7:07:37:2c:bf:54:
27:7b:4d:52:ba:a4:37:3f:a7:d0:21:6f:c4:9f:7b:c4:0f:96:
02:6c:85:9c:c5:bf:5a:77:3f:87:53:43:8a:8f:9e:a6:e5:98:
9d:2b:38:42:b4:2f:8f:85:46:3f:8f:87:8f:50:b6:96:e4:38:
29:9c:ea:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:46 2024 by rpki-client on console-fra.rpki-client.org