Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/ExBOvsJDYVMLSsyeFW60EHbPaZI.roa
File: ExBOvsJDYVMLSsyeFW60EHbPaZI.roa (raw, json)
Hash identifier: Qi6SS6lRoXZ9et/I9GKVq2v1bDf/ooaDlJPCxT5r54g=
Subject key identifier: 13:10:4E:BE:C2:43:61:53:0B:4A:CC:9E:15:6E:B4:10:76:CF:69:92
Certificate issuer: /CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Certificate serial: 018AD645B515F185EBAD62316D9EA4B06DE9
Authority key identifier: 41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/ExBOvsJDYVMLSsyeFW60EHbPaZI.roa
Signing time: Wed 27 Sep 2023 10:53:27 +0000
ROA not before: Wed 27 Sep 2023 10:53:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 192.109.200.0/24 maxlen: 24
192.109.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:45:b5:15:f1:85:eb:ad:62:31:6d:9e:a4:b0:6d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Validity
Not Before: Sep 27 10:53:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13104ebec24361530b4acc9e156eb41076cf6992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cd:2d:52:8e:97:7f:41:50:87:dc:cb:f2:d9:
a3:9c:4a:53:2c:ea:6e:34:c1:09:82:22:75:b9:e3:
f2:63:7c:f2:a0:5c:00:89:09:d6:3e:88:e5:80:2f:
e5:e2:ec:75:95:d7:0a:db:2e:fa:0a:e5:4c:2c:3b:
31:6f:98:46:ea:a7:4c:50:01:f9:50:95:81:aa:24:
1e:8f:3f:fa:f6:da:c2:6a:b2:9b:57:b3:b9:20:cd:
3d:a5:3e:5a:55:ad:53:61:48:5a:52:62:cc:df:9f:
bf:08:8d:eb:cb:ee:a9:00:71:78:e1:ab:b0:4a:8a:
d6:3a:8f:18:58:48:71:02:7d:d6:90:6a:f2:c6:39:
a5:15:95:4a:07:f6:fe:bd:96:42:3b:26:98:f2:90:
9e:6c:6e:a6:a2:27:c5:83:0c:1a:e3:c8:51:d5:bf:
b8:e1:a4:03:35:00:fe:ea:21:d4:83:aa:20:f0:67:
7d:66:6f:0a:f6:fb:6d:74:54:fd:1f:ca:30:c3:4b:
3f:28:54:24:64:27:9b:66:42:d0:3d:16:b2:ec:08:
03:d7:27:f8:ea:02:53:52:a2:42:54:22:24:ac:f9:
55:da:7e:d5:e4:b3:5e:17:fe:61:20:12:4b:de:71:
c9:66:91:12:03:4e:01:63:5e:53:ec:83:1d:46:b3:
7b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:10:4E:BE:C2:43:61:53:0B:4A:CC:9E:15:6E:B4:10:76:CF:69:92
X509v3 Authority Key Identifier:
keyid:41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/ExBOvsJDYVMLSsyeFW60EHbPaZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.139.0/24
192.109.200.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:90:92:c4:8b:40:93:5a:95:dd:97:3b:82:04:64:80:61:7f:
13:f6:27:bd:c9:32:ab:c8:99:1c:55:ef:62:34:7e:e2:d1:69:
e0:94:db:66:f2:54:4f:53:dc:f9:65:4d:74:81:66:33:d4:d9:
4f:d5:b0:68:71:46:82:50:19:eb:fe:bf:f1:af:6f:7c:b1:40:
00:ca:e2:3d:e4:3b:cd:f3:09:17:93:33:c1:34:d0:4e:03:4a:
20:b6:3f:2c:b0:72:57:e3:cc:e2:03:24:86:9e:46:a9:11:d1:
62:86:1e:bc:e3:d1:4a:f4:6b:78:78:e5:fc:18:6b:15:8a:cc:
46:01:00:62:cc:a4:99:b8:ba:dc:b8:0d:7f:6a:19:49:32:88:
28:ad:8e:0e:32:a5:5f:37:35:df:0a:50:96:80:24:c2:84:45:
9b:f4:cc:ee:31:59:98:f7:41:fa:3b:fc:96:0f:2d:dc:c2:f3:
b0:95:9c:73:82:68:f1:ca:55:2e:11:5e:ba:75:91:15:4a:85:
b3:b9:8b:bd:21:4f:4f:1c:55:ec:e9:69:56:5f:4c:a3:f2:22:
bb:de:37:e1:82:81:70:d8:e0:45:ff:4f:6d:e8:05:ee:c3:95:
6a:30:f6:ed:a8:e8:43:4e:1e:af:a5:bb:7d:96:a2:0a:c3:7d:
95:8a:13:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:01 2024 by rpki-client on console-ams.rpki-client.org