Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/70G11eOGXg4IJhZQwVURxHnUC5I.roa
File: 70G11eOGXg4IJhZQwVURxHnUC5I.roa (raw, json)
Hash identifier: 73FKwZzmE8V3ccHLEKbaBY4njupaptHNixXr7Jz/uRU=
Subject key identifier: EF:41:B5:D5:E3:86:5E:0E:08:26:16:50:C1:55:11:C4:79:D4:0B:92
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018CC9A082EA846CD98B42FB76094DF99D98
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/70G11eOGXg4IJhZQwVURxHnUC5I.roa
Signing time: Tue 02 Jan 2024 10:03:08 +0000
ROA not before: Tue 02 Jan 2024 10:03:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31549
IP address blocks: 188.240.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 06:40:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:a0:82:ea:84:6c:d9:8b:42:fb:76:09:4d:f9:9d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 2 10:03:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef41b5d5e3865e0e08261650c15511c479d40b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f1:8b:1b:9d:3e:c4:11:a6:03:77:01:4c:db:
2a:e5:b1:5e:1d:1f:8e:87:18:27:5e:36:e6:ff:df:
f4:98:d2:11:d6:cb:2a:62:aa:19:e4:a3:31:d5:d0:
b9:46:a7:33:db:5c:7f:20:b4:eb:c9:68:2c:2c:57:
a3:20:ad:75:78:25:e9:cf:f2:83:93:e3:de:ce:16:
1b:1c:1d:c6:e7:2c:dd:2f:93:51:4c:a7:6f:d4:63:
72:35:61:8d:6b:bb:35:30:d8:50:91:25:4f:d4:48:
ba:c9:a0:ce:60:14:5c:b8:a4:b0:55:fa:71:f1:11:
c3:9f:5c:f0:12:6f:1e:70:3b:1a:f3:b1:ef:3d:71:
58:64:f3:a4:fd:52:60:96:96:a1:eb:34:4d:7b:37:
60:51:19:37:2d:eb:b1:a0:78:e5:30:98:74:a5:6a:
77:1e:bc:97:99:9c:21:7d:ea:e1:ef:c9:8f:25:dc:
e6:3c:65:01:44:13:d7:03:11:fa:37:d7:46:d0:23:
fe:3f:0e:c1:f4:e0:0d:21:45:d8:89:d2:92:71:f0:
a3:24:34:bd:f3:1f:6c:ed:22:81:47:ef:2c:6a:44:
2c:33:c7:e0:f3:ed:45:fb:ca:ef:1b:99:1f:92:4a:
e9:54:29:8c:54:a3:63:74:5e:b2:37:6f:fd:b0:52:
2d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:41:B5:D5:E3:86:5E:0E:08:26:16:50:C1:55:11:C4:79:D4:0B:92
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/70G11eOGXg4IJhZQwVURxHnUC5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.196.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:29:0b:5d:32:1e:96:77:99:ae:f8:6c:b1:6b:e2:36:2c:cb:
fb:ff:52:fd:af:75:54:42:3e:45:68:b5:d8:c1:8e:c9:ec:3b:
44:6b:36:9e:bb:b8:c0:9e:a1:0d:f5:8e:f3:7f:63:18:ac:5f:
48:33:a0:cb:d3:ac:1c:19:5f:b4:d5:7a:26:d8:e0:ac:6d:79:
7f:a6:99:13:52:47:0a:a5:b1:a0:dd:a3:71:11:8c:c7:10:3a:
07:6f:85:6c:f0:7d:48:bc:e8:35:86:1e:72:75:76:a8:0c:85:
b7:8b:b1:ec:aa:c1:19:4f:94:06:71:87:f3:93:01:2b:45:8d:
d7:ba:ed:4c:81:36:68:9e:94:46:74:e5:3a:f2:78:e7:92:65:
4a:60:a4:78:dd:e4:d6:0c:d4:72:66:8e:d3:85:6e:37:4d:89:
c4:6c:ab:9c:83:b6:a1:b7:6d:0a:63:d2:01:c6:30:a8:f5:83:
45:5c:67:ce:8b:8e:de:f3:a3:ff:8e:f6:ce:0c:36:79:49:2e:
95:cb:6e:ea:91:4e:c2:df:ce:ae:e1:51:d4:c0:4b:8a:5d:31:
01:18:24:46:b0:e9:ee:27:ae:88:07:51:8c:1f:a8:5a:7b:15:
60:b4:40:22:71:65:c9:8b:13:d8:aa:fe:29:4b:c1:70:c6:1a:
a8:5b:a5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:49 2024 by rpki-client on console-ams.rpki-client.org