Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/oYpegWcw08waeTKp49IGwreqiWE.roa
File: oYpegWcw08waeTKp49IGwreqiWE.roa (raw, json)
Hash identifier: oQtSDDjnSKuXDiiIEnvwGLjOaTuOOs/4u9BoDJGfUaI=
Subject key identifier: A1:8A:5E:81:67:30:D3:CC:1A:79:32:A9:E3:D2:06:C2:B7:AA:89:61
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 01882A550272C9DDBFFCE4DD4DAB0F0CDDFB
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/oYpegWcw08waeTKp49IGwreqiWE.roa
Signing time: Wed 17 May 2023 15:29:54 +0000
ROA not before: Wed 17 May 2023 15:29:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61002
IP address blocks: 188.211.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Dec 2023 09:20:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2a:55:02:72:c9:dd:bf:fc:e4:dd:4d:ab:0f:0c:dd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: May 17 15:29:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a18a5e816730d3cc1a7932a9e3d206c2b7aa8961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:43:73:2e:8d:67:b9:ba:1e:01:0b:4e:8b:4f:
74:9e:b9:61:c3:e2:32:c4:d9:00:1e:6f:99:c3:20:
6d:b6:10:25:d9:c6:a7:8f:01:27:77:a3:e9:3b:57:
62:86:c1:30:53:27:28:c5:17:32:bc:1b:00:60:19:
30:e1:c8:3a:46:93:ec:2a:18:a2:74:f9:6f:fa:d3:
cf:b2:0d:ce:20:cd:ac:cf:ca:0c:a0:4a:d2:3e:44:
18:2a:38:35:8e:32:39:3c:bd:42:06:ec:7e:40:a7:
cf:2e:be:d2:7e:d7:57:bd:f2:b5:5f:57:55:b4:40:
59:85:2c:c1:5c:ad:bd:f3:d6:84:13:83:c6:0b:d1:
ee:63:43:17:8a:f4:3d:a5:ea:49:48:93:a5:ff:7c:
07:6f:be:45:e2:2c:3e:a2:a0:cf:cc:00:44:76:fd:
dd:74:0a:d6:bf:00:d9:20:2e:d3:04:b0:e3:2e:6f:
3c:a1:96:5d:8d:14:dc:e7:b8:49:cc:58:e2:0e:6a:
cd:72:ed:c2:90:27:c3:b4:d7:37:2d:28:2c:da:49:
f6:f0:12:e1:11:5b:22:74:bb:91:38:b0:ca:09:f4:
98:b6:f9:e3:4e:15:43:89:8b:23:d8:09:bf:38:8d:
18:36:0c:6e:85:70:b0:b6:78:9e:66:38:2c:26:64:
c8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:8A:5E:81:67:30:D3:CC:1A:79:32:A9:E3:D2:06:C2:B7:AA:89:61
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/oYpegWcw08waeTKp49IGwreqiWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.211.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:43:20:94:38:a3:5f:ce:39:dd:8b:74:d5:80:b1:69:3a:9f:
bb:dd:dc:7a:e4:49:ae:90:3c:5b:61:a1:60:c5:be:ff:f6:7f:
d3:f4:65:46:ee:c5:dc:46:8c:39:26:c8:58:c6:b9:71:39:64:
a5:ad:0a:e7:08:29:33:92:dd:ca:cb:c0:17:e3:22:4e:bc:2a:
80:50:34:4e:7f:3c:d6:db:f1:f7:e5:13:31:61:67:2b:7e:f1:
3a:f9:d4:4b:6a:a2:3b:b3:07:88:bf:ed:26:3b:56:19:04:90:
59:a0:31:aa:b0:5f:21:fc:94:1c:8e:cc:19:c3:eb:85:88:b5:
9e:73:ae:51:3d:a4:c9:28:1d:57:67:e7:4e:93:1e:57:4b:8b:
8b:4f:31:22:e0:34:cd:e7:ac:43:d5:21:c5:15:a2:b6:29:89:
37:0c:9d:27:ea:8f:56:8a:66:22:ce:85:29:49:ae:0f:a3:ef:
9e:f7:dc:1c:91:05:39:c9:f6:f5:8e:4f:3a:e4:89:e1:16:80:
42:61:4a:bf:7b:93:4c:b8:50:da:66:fe:ad:cf:27:e1:a1:07:
eb:d3:4b:bb:7a:4e:cc:fd:b0:a4:8d:b1:56:02:75:2d:56:81:
54:0a:55:57:1f:3d:f5:d4:f4:31:26:e2:ef:55:8b:09:74:ab:
ad:b0:82:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:40 2024 by rpki-client on console-ams.rpki-client.org