Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/gVVOU3KLSXIUxjY7YoW5pLeAfoM.roa
File: gVVOU3KLSXIUxjY7YoW5pLeAfoM.roa (raw, json)
Hash identifier: FEewml475zZotq9ZYpdQnhQs46jzLiJTFcPAjuIY7PU=
Subject key identifier: 81:55:4E:53:72:8B:49:72:14:C6:36:3B:62:85:B9:A4:B7:80:7E:83
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 0187C76FBD496C04E08DDA644DCAFA267EE2
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/gVVOU3KLSXIUxjY7YoW5pLeAfoM.roa
Signing time: Fri 28 Apr 2023 10:36:41 +0000
ROA not before: Fri 28 Apr 2023 10:36:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 188.241.60.0/24 maxlen: 24
188.241.61.0/24 maxlen: 24
188.208.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:6f:bd:49:6c:04:e0:8d:da:64:4d:ca:fa:26:7e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Apr 28 10:36:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81554e53728b497214c6363b6285b9a4b7807e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:50:c2:0b:8d:26:3b:1d:55:78:7a:0d:40:da:
f6:c7:f5:ac:01:b3:c6:7e:8f:be:01:9f:f3:32:65:
33:87:a1:ec:05:fe:fb:eb:2f:8d:03:45:1d:92:77:
07:1e:ba:45:43:ea:eb:df:e9:9f:5f:78:c4:e8:73:
14:43:3b:1b:2d:ee:bd:ed:fd:2b:a4:8b:32:a3:8c:
26:7a:ae:e1:85:d5:80:97:8c:16:f2:04:b6:2e:b7:
98:f5:b9:f2:41:30:9e:a2:89:1d:77:a0:4f:23:fd:
d4:be:d9:d7:a4:e0:f4:5c:5e:e7:02:c0:e6:6f:31:
ac:54:ec:f0:11:e4:13:ca:7a:af:27:f7:2f:24:8a:
71:c7:e2:d8:23:aa:df:cd:ca:5c:68:e7:cd:ac:e2:
61:4f:ab:4b:16:f2:a1:4d:88:3c:86:91:b3:b9:7b:
16:bb:cb:d5:40:48:13:88:36:dd:3c:a4:a8:4f:cb:
de:6c:2e:96:38:aa:6a:4f:ff:12:33:32:df:28:49:
db:9d:99:78:1a:a4:af:22:b0:63:46:97:55:da:35:
d5:c4:17:b0:e7:3a:84:ff:5a:3f:30:32:81:ff:fa:
35:e2:38:14:49:83:53:0f:96:5a:41:c4:12:a8:bb:
cf:71:8e:50:0a:56:ab:78:f9:7d:13:77:1a:0f:5f:
15:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:55:4E:53:72:8B:49:72:14:C6:36:3B:62:85:B9:A4:B7:80:7E:83
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/gVVOU3KLSXIUxjY7YoW5pLeAfoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.143.0/24
188.241.60.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:d4:c8:b7:07:20:5a:4a:1e:e1:82:b9:b1:55:5e:16:41:88:
36:78:c3:1c:d6:dd:04:45:54:1a:fd:65:0c:ab:b0:88:37:4b:
da:78:62:d6:43:08:bc:0d:be:11:70:bc:03:fd:a5:49:52:5c:
ef:d9:1d:44:89:ce:2c:d5:59:40:10:12:0a:69:06:22:1d:dc:
9f:f4:39:e6:c0:2e:81:f0:78:15:29:87:ef:0d:28:d9:9c:91:
9d:dc:d8:57:fd:a4:cf:1c:1a:1a:80:b7:04:c7:0f:a2:97:5c:
63:c3:54:f6:5a:c3:47:ef:ec:1c:ad:04:fc:37:ae:e9:72:ba:
5f:45:8b:37:36:ab:49:6c:19:06:a4:82:6c:9e:74:d2:25:8a:
62:a6:ee:64:fb:f0:d8:90:17:25:c4:93:84:9f:bc:c1:08:43:
4f:d9:4c:dc:35:b2:e9:ff:d0:ee:73:95:14:b4:c4:21:fd:08:
04:81:18:2e:32:bb:1f:eb:54:60:2e:d7:16:be:7e:9f:e8:ea:
0a:4c:46:23:ce:e5:15:fd:ed:e1:f1:5d:d1:5c:08:df:40:4b:
32:73:2b:35:86:b4:5f:5d:f6:16:46:d8:19:f3:1a:6c:90:e6:
4f:f3:98:13:fa:f3:e4:f9:ec:fd:8b:b9:e9:c7:f8:1b:30:4e:
41:39:62:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org