Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/ob0RGm7brmMhjLTjOtRXAO6crY0.roa
File: ob0RGm7brmMhjLTjOtRXAO6crY0.roa (raw, json)
Hash identifier: GA8tR1wz+jUz9DAhB7b72XIklDJl31KFUeC7fBV8IDs=
Subject key identifier: A1:BD:11:1A:6E:DB:AE:63:21:8C:B4:E3:3A:D4:57:00:EE:9C:AD:8D
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01870FD1E691DDE4121775EE7FC4602E07EC
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/ob0RGm7brmMhjLTjOtRXAO6crY0.roa
Signing time: Thu 23 Mar 2023 18:53:46 +0000
ROA not before: Thu 23 Mar 2023 18:53:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 188.208.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 10:36:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0f:d1:e6:91:dd:e4:12:17:75:ee:7f:c4:60:2e:07:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Mar 23 18:53:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1bd111a6edbae63218cb4e33ad45700ee9cad8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c1:00:48:69:6f:72:35:cc:d0:8b:ab:f0:a4:
a2:a1:02:5d:87:e3:ee:26:45:24:17:dc:61:ee:bd:
a1:5e:bd:19:af:52:9c:7f:13:fa:a6:db:5e:42:78:
1a:7f:d7:d7:f7:0f:bf:b0:6d:49:d6:15:8d:6d:98:
8d:b1:df:3e:01:dd:94:e4:79:c2:a7:95:6b:09:9b:
22:50:7d:3b:4b:cb:bd:9a:9f:7b:93:c9:ce:6c:6b:
f8:58:32:e4:41:c9:74:0a:23:1f:87:e2:60:ca:eb:
14:e4:22:5e:6a:9e:0f:15:0d:39:1e:0b:75:8d:59:
4b:f2:12:e7:be:8b:b0:cd:0f:f0:3a:c4:ab:d4:fc:
f2:83:b8:23:89:d7:d5:6f:38:e8:cf:df:4a:3e:5e:
89:67:75:75:24:c1:e8:b4:2f:4e:b5:af:89:36:15:
4b:5a:60:95:4d:9f:36:e6:2b:db:72:33:5e:d9:1d:
b0:a4:3b:eb:0f:6a:ae:5c:be:e7:21:98:86:68:36:
4f:db:8e:7a:47:f6:33:a4:c1:92:9b:34:06:50:99:
50:31:00:7b:bc:6f:c6:58:5b:51:01:44:2e:7e:73:
18:31:a0:39:a6:07:56:34:b9:24:ad:55:75:cf:4e:
d2:da:d7:8d:65:55:fb:72:0b:24:e3:10:ae:4f:5d:
e1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:BD:11:1A:6E:DB:AE:63:21:8C:B4:E3:3A:D4:57:00:EE:9C:AD:8D
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/ob0RGm7brmMhjLTjOtRXAO6crY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.143.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:9a:a4:ed:39:88:d0:f0:b1:fd:21:e7:a3:b9:9f:52:da:b5:
5a:7c:7f:fd:a5:c0:cc:d3:53:8e:03:17:a2:03:89:0a:63:ab:
de:bb:1c:c1:85:9a:4a:04:ec:9c:f4:6f:63:11:a7:e8:5e:cb:
58:ad:58:3d:11:21:49:bf:52:36:9d:74:81:af:ea:16:9e:6a:
f5:74:db:db:4d:f9:c3:00:26:1d:c4:0c:92:9a:a0:74:c0:49:
d1:77:90:70:fb:fe:3e:77:0a:62:27:28:ee:5f:32:b7:7e:d2:
e4:76:fe:ed:48:5e:82:59:f8:24:97:92:5a:82:e9:72:52:4b:
fe:85:7b:6d:5b:b6:ee:b9:2d:bb:0b:fb:54:26:07:71:42:bb:
5a:61:be:a5:97:c6:25:2d:44:bf:f4:1d:d3:80:61:1d:e9:73:
54:22:58:40:fa:e0:4f:3e:c1:ba:da:29:da:99:4e:f6:a0:b4:
1e:3d:f8:4e:fc:46:95:3d:06:9e:69:91:35:5c:ad:f1:a6:17:
b4:19:fb:2b:52:2f:3d:1b:0b:14:4b:6f:46:ff:13:07:72:00:
11:f3:2f:bc:cc:93:2f:9a:d2:2f:7b:29:4e:5f:91:11:84:dc:
8f:ba:1b:e3:48:66:ac:73:8a:16:ba:3f:33:39:8c:07:95:c1:
bc:3a:87:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:01 2024 by rpki-client on console-fra.rpki-client.org