Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/aKHxGP43G-EvhCHE6eZrVc9Y5s8.roa
File: aKHxGP43G-EvhCHE6eZrVc9Y5s8.roa (raw, json)
Hash identifier: wbd1qDCbvVLKGg1XF8D/IKa6zidoumB5wG8VaQo8jsw=
Subject key identifier: 68:A1:F1:18:FE:37:1B:E1:2F:84:21:C4:E9:E6:6B:55:CF:58:E6:CF
Certificate issuer: /CN=7e5c8528f81787c489c54a993839269f5a6b1f94
Certificate serial: 01856F8BA18CC6A49F9C607B52EC7C8D2BB5
Authority key identifier: 7E:5C:85:28:F8:17:87:C4:89:C5:4A:99:38:39:26:9F:5A:6B:1F:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/flyFKPgXh8SJxUqZODkmn1prH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/aKHxGP43G-EvhCHE6eZrVc9Y5s8.roa
Signing time: Sun 01 Jan 2023 22:54:59 +0000
ROA not before: Sun 01 Jan 2023 22:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12676
IP address blocks: 193.108.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:a1:8c:c6:a4:9f:9c:60:7b:52:ec:7c:8d:2b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e5c8528f81787c489c54a993839269f5a6b1f94
Validity
Not Before: Jan 1 22:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68a1f118fe371be12f8421c4e9e66b55cf58e6cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:49:aa:88:cf:37:f6:46:a3:dd:96:14:e1:33:
1d:c2:5e:2c:fe:30:b6:d0:cb:3b:23:ce:37:a2:c6:
93:db:d1:3f:5c:96:dd:dc:48:51:96:f4:d1:24:20:
70:f1:08:8f:1e:18:6b:04:c6:f3:6d:33:65:d6:ac:
ae:69:fd:a4:e0:db:a3:f2:ea:20:e5:73:4f:0f:3f:
1f:78:9e:f1:35:fb:d1:28:72:f5:95:9e:ab:c3:c4:
79:3e:11:cf:79:a2:20:10:32:b0:f8:d4:3d:29:bf:
47:aa:73:bb:83:9a:09:c3:a9:9c:c1:7a:eb:25:3f:
63:10:86:04:42:d2:47:1d:c3:64:09:41:6b:20:ee:
3c:4f:0e:58:c8:37:14:5a:6a:78:1e:45:dd:cf:ef:
06:03:4d:fe:4d:35:1b:e3:b5:74:83:1c:5b:55:23:
7c:3d:af:23:5e:b8:75:d4:d5:18:4b:49:68:91:76:
d4:26:eb:d6:0d:1e:b6:b6:88:84:89:da:1b:de:32:
61:b1:6d:f2:bc:51:d9:64:6b:aa:d7:b5:83:30:d1:
74:a7:ab:ad:f9:8a:d1:44:88:2e:9e:fa:b2:13:37:
cb:75:e8:56:d0:d7:1c:25:d1:e3:0c:bb:c5:c5:f7:
78:b9:fd:1c:3a:4f:e9:39:0d:5b:62:95:be:f9:70:
1b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A1:F1:18:FE:37:1B:E1:2F:84:21:C4:E9:E6:6B:55:CF:58:E6:CF
X509v3 Authority Key Identifier:
keyid:7E:5C:85:28:F8:17:87:C4:89:C5:4A:99:38:39:26:9F:5A:6B:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/flyFKPgXh8SJxUqZODkmn1prH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/aKHxGP43G-EvhCHE6eZrVc9Y5s8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ea10b5-21f6-46b9-aad6-3f7a3e025e8b/1/flyFKPgXh8SJxUqZODkmn1prH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.190.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:a3:c4:06:49:b4:6e:a5:b3:24:38:6a:0a:e4:77:87:8b:a4:
23:dd:43:46:fc:54:b1:01:6d:65:c2:a0:ec:a8:77:c7:e7:68:
46:ef:5f:21:3a:57:59:25:ab:1d:2a:3d:4e:ad:05:0a:e8:e4:
b3:82:12:43:3d:2a:aa:4e:a5:27:41:a1:80:5f:27:24:06:aa:
a4:fa:09:6b:7b:1c:b6:c2:3a:5e:89:06:27:86:d7:ce:28:8d:
73:67:58:67:93:2b:5d:13:24:b9:5b:cf:c8:0a:1a:b6:34:80:
88:91:cb:1e:a9:4a:6d:01:0c:af:9a:09:93:65:5c:a2:8e:91:
a2:d6:0f:36:47:55:79:cd:63:7b:ff:ae:47:c1:4c:bc:b3:a0:
c4:e4:33:37:31:ac:ac:2f:8f:ba:72:87:c0:06:ae:b3:6d:9c:
9f:da:74:eb:7d:8d:17:2d:02:b5:ce:f6:c1:e9:9a:31:da:b6:
fd:d3:f1:b5:a5:d3:06:0f:c3:31:f1:29:74:07:ea:fe:8d:b9:
e6:07:9d:02:7c:d2:f5:14:6e:30:31:71:30:54:c5:5f:28:34:
21:b3:fb:64:c4:06:4d:7d:33:46:d3:d7:4f:5e:97:21:1a:a7:
be:53:01:83:eb:63:92:e9:fd:01:94:48:67:88:d3:4f:e1:67:
91:5e:e2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:41 2024 by rpki-client on console-fra.rpki-client.org