Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/0BWUT5cAzBrcWR9TrDU8FQ4D7Wk.roa
File: 0BWUT5cAzBrcWR9TrDU8FQ4D7Wk.roa (raw, json)
Hash identifier: 0rZ2b/KJvQJI+CHwruOndTRVllWwEJu3CmHl3teJzz4=
Subject key identifier: D0:15:94:4F:97:00:CC:1A:DC:59:1F:53:AC:35:3C:15:0E:03:ED:69
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 0185EFD23F8BF374DD5809BAE45044C51E64
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/0BWUT5cAzBrcWR9TrDU8FQ4D7Wk.roa
Signing time: Thu 26 Jan 2023 20:43:31 +0000
ROA not before: Thu 26 Jan 2023 20:43:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 188.212.104.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ef:d2:3f:8b:f3:74:dd:58:09:ba:e4:50:44:c5:1e:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 26 20:43:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d015944f9700cc1adc591f53ac353c150e03ed69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c6:8f:b5:0f:7d:93:a0:95:fd:5a:03:d2:60:
d4:48:d8:49:68:b5:9a:92:ee:0c:4e:2b:0f:94:4e:
ba:9f:a4:f1:4b:3c:9c:a5:55:e4:7f:4f:c0:71:c8:
5b:3b:2e:5c:d3:85:9b:3a:f1:c9:8e:2d:c9:ad:e3:
08:a7:99:9c:5b:b0:5c:ea:c9:80:13:1b:a2:ce:41:
70:77:10:7a:39:58:c3:b7:be:9b:cc:07:c1:f5:72:
0a:b1:2c:ee:1c:bd:01:6e:a4:b6:d2:b0:ee:53:2f:
da:9a:a6:0a:dc:3a:82:d3:f9:1c:67:31:b1:25:37:
34:70:6f:50:d6:50:06:42:91:7e:86:68:e4:47:2d:
35:d8:0e:eb:f3:f2:f0:e7:13:80:3c:76:b0:03:ff:
a3:9d:d5:b9:97:1b:f6:d3:96:ed:a0:0c:dc:55:6d:
98:10:31:0e:eb:14:95:73:4c:e3:43:78:f6:69:9a:
6e:7c:64:f3:43:c4:60:58:12:30:52:6a:32:b9:39:
fb:b9:e9:82:93:d3:b6:fa:71:8d:3f:eb:ea:44:7e:
4b:04:2d:22:80:f7:1d:02:a3:1b:f6:93:c2:d9:80:
a4:31:c6:c2:86:11:dd:89:4a:5e:3b:f5:0f:44:34:
8e:dc:34:c9:d9:ac:d5:71:ad:6f:6b:cc:f7:9c:26:
99:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:15:94:4F:97:00:CC:1A:DC:59:1F:53:AC:35:3C:15:0E:03:ED:69
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/0BWUT5cAzBrcWR9TrDU8FQ4D7Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.104.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:61:8b:dc:a2:37:25:80:22:f2:b1:10:fb:11:13:25:36:39:
dd:49:fa:ed:28:ca:f8:98:f4:8b:51:1a:16:2c:83:03:3d:f1:
3a:e4:21:30:d7:c3:79:6a:92:53:3b:58:15:d6:42:21:70:5f:
b3:26:ed:3f:e2:d1:87:b7:62:9e:5c:18:10:ae:7f:9e:e8:b0:
e1:6d:cc:a4:35:1e:00:9c:2b:6d:69:9a:8d:fe:80:0a:c3:6d:
94:2a:a4:ef:38:29:cd:03:f2:39:98:cf:e0:0e:c4:b8:ea:ed:
e7:30:22:f0:1b:a9:07:52:9f:9f:f3:29:d9:ce:53:55:0c:fd:
86:ce:58:35:3e:80:81:d6:2c:39:5f:d9:26:33:df:55:4b:75:
54:b6:46:05:a7:d1:52:ff:e4:17:bb:c4:17:51:2d:fc:47:e8:
a3:f2:dc:7a:21:ae:01:29:e7:84:a6:e6:ba:7b:ce:4e:24:a0:
c6:53:d9:4e:cb:44:19:05:0b:c8:a1:18:ef:4e:10:25:b7:2e:
d0:59:76:61:6d:29:42:b4:dc:2e:1e:c1:05:23:de:ab:20:e7:
3e:92:d5:f3:75:d9:60:20:84:cf:c4:b0:48:2d:bc:19:20:17:
bc:82:30:11:c8:eb:78:3b:a0:2e:ed:93:36:1f:02:4c:92:65:
ac:8d:a8:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:55 2023 by rpki-client on console-ams.rpki-client.org