Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/0hC1p7Kg_ROQgSjFfmyRJSXtmbI.roa
File: 0hC1p7Kg_ROQgSjFfmyRJSXtmbI.roa (raw, json)
Hash identifier: vvEaiYejhlnTYHho9UHBgJdT+96gT9TS53EAQRIcVQI=
Subject key identifier: D2:10:B5:A7:B2:A0:FD:13:90:81:28:C5:7E:6C:91:25:25:ED:99:B2
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A32B193A52F9D33179A3EB7957137
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/0hC1p7Kg_ROQgSjFfmyRJSXtmbI.roa
Signing time: Mon 02 Jan 2023 12:34:48 +0000
ROA not before: Mon 02 Jan 2023 12:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 188.253.8.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Feb 2023 00:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:32:b1:93:a5:2f:9d:33:17:9a:3e:b7:95:71:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d210b5a7b2a0fd13908128c57e6c912525ed99b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c8:c5:19:8d:f4:23:df:d3:5b:d3:a1:02:87:
ef:f2:df:6e:b5:c3:50:c6:7a:b2:27:68:74:d5:6a:
68:e6:ef:6c:8b:b3:97:5f:56:e6:84:2a:4b:2e:9f:
fb:9b:24:ee:92:73:35:85:fe:80:c2:a5:db:5b:62:
cc:e7:af:9b:d4:61:c1:67:dc:78:d7:8b:72:b8:af:
7c:d3:a1:95:8b:0c:d8:76:15:c0:3b:6e:de:9f:8f:
a3:2e:26:ae:35:20:97:bc:eb:04:0f:0d:b1:55:f4:
95:31:c9:0b:67:85:39:71:66:88:df:45:f1:76:53:
b6:eb:35:58:15:ff:91:6a:7d:f6:e1:98:0b:72:2a:
14:d6:f3:fe:5b:2a:dc:fd:2e:02:90:de:0a:f4:ad:
9a:30:bb:86:54:44:10:a1:75:2a:9f:b2:3c:e3:ec:
af:a6:13:87:97:0b:25:5f:ca:1e:60:22:09:1c:c4:
72:a3:45:11:6e:0d:84:f1:a9:b0:00:a9:24:94:a2:
7c:59:5c:18:22:08:79:c1:35:29:ba:a2:21:24:21:
22:cd:c0:00:2c:5d:48:d6:61:a7:90:e2:9a:d9:4b:
6a:f6:a9:45:7d:2e:df:49:cb:83:30:20:71:2f:29:
1d:ef:f2:bd:a4:39:20:53:91:08:c8:1c:95:90:bf:
f9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:10:B5:A7:B2:A0:FD:13:90:81:28:C5:7E:6C:91:25:25:ED:99:B2
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/0hC1p7Kg_ROQgSjFfmyRJSXtmbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.253.8.0/21
Signature Algorithm: sha256WithRSAEncryption
d7:50:e3:c6:99:c5:24:dd:de:f1:44:3b:6e:16:b9:8a:8a:3a:
dc:00:35:9d:d0:06:4d:10:f5:76:70:14:91:d2:f7:26:5f:5d:
bb:44:12:6f:a9:02:89:d8:83:ab:d0:18:cf:15:e3:b8:e6:cb:
1d:56:2e:b5:20:27:95:e0:0d:62:31:0b:71:8b:11:17:cc:3c:
7d:a1:a7:2e:8b:a8:e4:ea:ce:91:ea:b8:fe:d9:c0:0b:96:f9:
07:bd:50:5a:91:5d:82:21:ad:d9:07:3a:23:fd:6d:3a:9f:52:
80:3e:d4:76:5a:14:75:68:fb:39:ce:27:51:d0:d7:06:8e:53:
2b:d0:dc:aa:73:6e:82:86:46:97:c4:2f:38:25:fe:b4:c0:c6:
7d:37:bc:ea:ed:21:60:56:c5:fc:aa:b7:7d:cd:d5:8a:4e:6d:
ff:97:ab:d5:34:d7:f5:f8:25:e2:39:bb:6f:04:91:5d:3e:72:
64:ad:45:bf:14:14:69:ba:7d:04:5d:2e:f8:52:5f:83:34:9f:
a7:3e:56:75:c5:7e:7e:6b:0c:79:6b:8e:97:d2:65:ba:16:ed:
45:c4:1d:7f:ef:34:43:f4:6e:d1:5e:aa:53:be:74:17:b7:3b:
21:7e:97:82:ac:1d:97:53:1e:82:65:9d:13:a9:72:49:66:7d:
e4:ea:ba:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org