Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/Rr9fGMqofbKmcJ3UZBBN4e2Xxcg.roa
File: Rr9fGMqofbKmcJ3UZBBN4e2Xxcg.roa (raw, json)
Hash identifier: iYYvBAkMM12a1ndymeJAtGyUfu6iYv+EAXj4FzMWMfI=
Subject key identifier: 46:BF:5F:18:CA:A8:7D:B2:A6:70:9D:D4:64:10:4D:E1:ED:97:C5:C8
Certificate issuer: /CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Certificate serial: 0191F2AE838678274C7B13DCE5319B3340EF
Authority key identifier: C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/Rr9fGMqofbKmcJ3UZBBN4e2Xxcg.roa
Signing time: Sat 14 Sep 2024 22:36:48 +0000
ROA not before: Sat 14 Sep 2024 22:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 188.190.0.0/24 maxlen: 24
188.190.1.0/24 maxlen: 24
188.190.2.0/24 maxlen: 24
188.190.3.0/24 maxlen: 24
188.190.4.0/24 maxlen: 24
188.190.5.0/24 maxlen: 24
188.190.6.0/24 maxlen: 24
188.190.7.0/24 maxlen: 24
188.190.8.0/24 maxlen: 24
188.190.9.0/24 maxlen: 24
188.190.11.0/24 maxlen: 24
188.190.12.0/24 maxlen: 24
188.190.13.0/24 maxlen: 24
188.190.14.0/24 maxlen: 24
188.190.15.0/24 maxlen: 24
188.190.16.0/24 maxlen: 24
188.190.17.0/24 maxlen: 24
188.190.18.0/24 maxlen: 24
188.190.19.0/24 maxlen: 24
188.190.20.0/24 maxlen: 24
188.190.21.0/24 maxlen: 24
188.190.22.0/24 maxlen: 24
188.190.23.0/24 maxlen: 24
188.190.24.0/24 maxlen: 24
188.190.25.0/24 maxlen: 24
188.190.26.0/24 maxlen: 24
188.190.27.0/24 maxlen: 24
188.190.28.0/24 maxlen: 24
188.190.29.0/24 maxlen: 24
188.190.30.0/24 maxlen: 24
188.190.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 07:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:f2:ae:83:86:78:27:4c:7b:13:dc:e5:31:9b:33:40:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Validity
Not Before: Sep 14 22:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46bf5f18caa87db2a6709dd464104de1ed97c5c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:af:7d:02:ff:6c:4f:6a:68:1e:75:e9:bb:5c:
2a:33:0c:4a:3f:e3:ff:91:59:32:1f:0b:ca:df:2c:
c2:2c:13:65:f5:db:b0:9d:38:93:9d:42:9c:a8:b4:
c4:d2:f4:e8:8f:7b:68:02:42:d0:b6:ab:f8:e1:91:
b4:bc:83:09:42:eb:b9:d1:4d:3a:bf:87:6b:59:b4:
12:ff:29:2f:b0:c9:aa:97:66:b6:f7:3a:9f:0f:45:
7a:6b:c3:02:52:fd:e6:63:91:6a:38:ae:77:03:96:
8a:53:ba:ae:f8:c9:6a:11:34:81:4c:e3:0d:5d:fc:
cb:3e:a1:c4:14:3c:b7:d0:04:28:07:2e:85:e0:de:
26:cf:59:07:89:2c:dc:51:83:e0:ae:e1:dd:e7:24:
ab:e1:9c:f4:32:b4:67:2a:93:4b:54:83:fe:80:a5:
d0:f6:84:d6:12:18:b7:ec:67:0d:8f:03:49:14:75:
ba:37:93:19:b9:4c:ba:26:52:e5:dc:59:41:e5:12:
6a:26:df:30:23:e1:f4:5a:76:db:36:01:fc:29:da:
1f:30:e6:1e:f7:48:15:e7:60:5b:7a:5c:0c:22:d8:
19:70:69:fa:37:83:73:0c:f8:59:89:af:99:bd:1f:
44:0c:80:7e:9d:f2:e5:42:af:6d:1f:b5:18:4e:e2:
9a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:BF:5F:18:CA:A8:7D:B2:A6:70:9D:D4:64:10:4D:E1:ED:97:C5:C8
X509v3 Authority Key Identifier:
keyid:C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/Rr9fGMqofbKmcJ3UZBBN4e2Xxcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.0.0-188.190.9.255
188.190.11.0-188.190.31.255
Signature Algorithm: sha256WithRSAEncryption
53:e4:42:e8:8b:67:79:4f:44:13:29:00:10:36:8c:97:04:c2:
8a:73:8b:02:61:4f:0f:51:7f:07:35:c3:c0:8c:4b:61:79:be:
d0:7f:84:b8:f8:aa:30:dd:45:76:48:8c:43:6f:34:72:bc:e6:
1e:00:6e:15:02:fa:94:16:fc:22:d1:fc:63:91:74:fb:35:03:
26:59:3a:b5:a7:30:d1:89:66:0f:78:0c:97:36:d5:f5:48:61:
24:57:a9:41:00:dd:7b:1b:28:a0:cf:9e:f9:bd:15:1f:bc:22:
39:1b:be:25:62:9a:a6:12:42:bb:42:9c:18:7e:39:f8:f0:b1:
b1:80:af:34:2a:26:8a:38:bc:71:42:63:c7:9a:1a:8f:03:c3:
8b:7c:04:9c:a8:f7:32:ee:53:cd:5a:09:f0:f9:5a:57:2d:38:
55:8b:4f:ca:e9:51:11:67:29:e3:7a:4d:a7:a7:dc:a4:0a:8f:
58:78:b3:72:78:ba:ba:f2:10:bd:6a:e1:3a:45:d5:3b:e3:3d:
e0:b3:4b:07:25:fa:7d:49:90:18:ea:24:3d:de:07:56:6c:05:
b5:0c:5c:2d:60:6c:6e:72:19:14:f2:1d:64:81:ce:f1:ea:57:
13:d2:4f:f4:59:b9:e8:04:7d:8d:c5:26:02:e6:8c:28:b0:c2:
22:96:8c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:16:49 2025 by rpki-client