Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/0mMyicvACWB2XBUDJUcnC4lslOo.roa
File: 0mMyicvACWB2XBUDJUcnC4lslOo.roa (raw, json)
Hash identifier: 23mvvhlJg9ME7yIrFdbawH+izXsbWWNJYWREFPaR7qU=
Subject key identifier: D2:63:32:89:CB:C0:09:60:76:5C:15:03:25:47:27:0B:89:6C:94:EA
Certificate issuer: /CN=464952bc165441ec6e2e2010c933dc830f361731
Certificate serial: 0193AF0C0D7BD4BC0A37ADE5DE9945A3CE48
Authority key identifier: 46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/0mMyicvACWB2XBUDJUcnC4lslOo.roa
Signing time: Tue 10 Dec 2024 05:30:22 +0000
ROA not before: Tue 10 Dec 2024 05:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48955
IP address blocks: 188.213.1.0/24 maxlen: 24
188.214.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 12:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:af:0c:0d:7b:d4:bc:0a:37:ad:e5:de:99:45:a3:ce:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464952bc165441ec6e2e2010c933dc830f361731
Validity
Not Before: Dec 10 05:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2633289cbc00960765c15032547270b896c94ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:de:ad:cc:ac:32:89:05:be:8d:f9:2d:d9:ab:
90:b1:1f:17:49:9a:6d:76:8c:54:a1:a3:f4:3e:ba:
76:7e:c9:84:db:57:7f:d8:aa:96:24:f6:b6:68:9c:
72:ce:59:bd:5f:d9:95:c9:92:9b:b1:73:f9:33:23:
c8:b3:62:5f:af:f8:4d:61:94:71:fc:81:50:07:af:
3b:2d:4e:10:21:42:9f:90:4a:a3:e7:57:c1:61:65:
44:87:d1:00:8d:cc:af:52:88:a2:bd:3d:20:ba:67:
b0:53:7c:25:c1:21:9e:3a:06:58:db:42:4e:c5:bd:
a0:6e:ae:0f:1c:b1:cc:f8:5f:ae:24:bd:be:25:25:
c7:8d:91:cf:52:fa:12:1c:92:a6:44:6c:60:f6:b6:
d3:56:15:fd:7c:1d:ea:73:2d:38:c0:b0:f1:33:23:
e7:ea:99:b0:19:1a:4b:38:30:66:6d:2c:6a:a3:fa:
24:ac:52:e7:1e:29:32:9d:e7:e2:b2:58:37:1d:15:
23:a1:39:26:17:c1:10:c8:f4:60:00:bb:57:62:07:
3f:2f:81:a7:b9:3a:14:08:e3:33:da:84:aa:32:75:
c9:7b:f6:44:2d:1e:c2:f3:63:71:46:c0:b8:04:b0:
27:97:1c:cf:e6:7c:83:bd:78:90:6e:8f:e3:0b:4a:
bb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:63:32:89:CB:C0:09:60:76:5C:15:03:25:47:27:0B:89:6C:94:EA
X509v3 Authority Key Identifier:
keyid:46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/0mMyicvACWB2XBUDJUcnC4lslOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.1.0/24
188.214.227.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:a7:2f:39:99:47:95:3e:3e:31:14:27:1d:da:a3:b3:e7:36:
27:05:7e:fc:d4:2a:d8:9d:79:65:e6:2a:31:ae:95:2e:17:46:
e6:a4:ef:5f:1f:2e:3c:17:ac:27:54:58:ac:27:a5:ba:5e:2b:
d0:d6:71:14:09:70:e3:58:76:2b:5f:2e:80:2b:7d:62:1f:04:
63:71:8d:2b:6c:f2:66:d6:bc:83:d4:33:94:62:a5:d2:16:92:
56:42:09:b6:9f:00:12:39:81:a8:c7:0b:4e:5d:7c:44:e4:0c:
86:aa:40:eb:a6:62:29:63:f5:3f:8e:a9:0e:38:de:bf:76:ff:
7e:aa:23:d8:08:43:8a:42:15:d4:51:03:fd:46:f8:9f:81:95:
7b:5f:9e:20:4e:55:65:2f:09:82:f8:65:03:62:12:ab:aa:14:
3c:3d:59:52:7f:14:98:ab:e4:c8:74:49:65:56:f5:3d:c8:d5:
76:5c:39:5d:70:d9:c6:32:60:d7:1e:b3:09:fa:5e:06:ff:8a:
03:22:12:a8:58:90:36:bf:18:41:ae:81:7d:9d:b5:1c:88:b4:
f1:47:dc:e3:8d:20:04:42:5c:12:88:8c:39:51:c1:0b:60:2f:
88:5c:3a:6c:22:b4:2c:4c:f4:68:21:2b:46:ee:e9:72:09:c6:
d4:28:a5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:48:43 2025 by rpki-client