Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/2hgEfD5FY3IaFQyiHRr_sFKXJ8Q.roa
File: 2hgEfD5FY3IaFQyiHRr_sFKXJ8Q.roa (raw, json)
Hash identifier: YJHcTfKOT3FOTy4OYzZb/5jyqG3DPC7yjWQrm/BAXJk=
Subject key identifier: DA:18:04:7C:3E:45:63:72:1A:15:0C:A2:1D:1A:FF:B0:52:97:27:C4
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 01856E78FAB9A08CBDD3F004D03BDEBBC7EE
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/2hgEfD5FY3IaFQyiHRr_sFKXJ8Q.roa
Signing time: Sun 01 Jan 2023 17:55:00 +0000
ROA not before: Sun 01 Jan 2023 17:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210745
IP address blocks: 188.93.114.0/24 maxlen: 24
2a11:10c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:fa:b9:a0:8c:bd:d3:f0:04:d0:3b:de:bb:c7:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Jan 1 17:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da18047c3e4563721a150ca21d1affb0529727c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2f:59:82:23:0e:25:ff:84:c0:b3:99:25:7f:
5a:4a:ea:d7:63:05:b2:22:02:e2:ca:be:01:52:82:
d5:d8:c4:4f:05:ab:83:9f:f6:f4:c0:21:d3:1d:72:
e5:82:0a:4a:e8:bb:e9:5e:b4:25:50:5b:73:5f:70:
7c:e5:f1:39:bc:63:2c:e3:78:cd:ec:10:5f:7f:35:
8a:f9:c8:63:2f:0b:0f:e3:66:5c:60:78:6d:06:35:
5b:f1:8e:4c:d6:68:53:60:3e:74:b7:66:d1:d9:b2:
24:0d:3e:24:23:36:88:c3:f6:15:99:68:05:5f:a2:
34:a2:5f:0e:34:80:af:f9:98:02:00:32:92:18:dd:
f7:6a:e1:c3:30:90:b8:2d:a4:2b:f8:d8:01:f7:8e:
6d:77:c8:62:09:dd:16:4f:65:4e:3b:76:8c:37:a0:
11:9f:a2:56:5f:02:8b:70:e5:21:b5:5f:ae:91:97:
58:27:32:7d:5f:9e:7a:21:b0:af:ce:f0:22:f7:69:
1a:25:bd:73:45:fc:04:72:fd:a3:3a:27:76:fb:29:
e5:30:0c:81:af:0f:ef:e8:75:f6:6d:bc:d3:4e:2a:
11:ab:fb:fe:69:6c:20:5f:5f:f7:e7:cf:3c:2b:7e:
4f:88:6d:0a:f3:a3:3e:60:bf:fa:4f:8f:9d:33:ae:
82:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:18:04:7C:3E:45:63:72:1A:15:0C:A2:1D:1A:FF:B0:52:97:27:C4
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/2hgEfD5FY3IaFQyiHRr_sFKXJ8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.114.0/24
IPv6:
2a11:10c0::/29
Signature Algorithm: sha256WithRSAEncryption
de:8c:16:a6:17:ff:48:c1:c4:8b:9e:54:ea:aa:69:f3:1e:d1:
93:c6:5d:67:f7:1b:48:e3:02:5d:fd:2d:8f:70:2f:93:fe:e3:
96:14:47:4c:c2:54:d3:f6:4e:bb:63:3c:4a:fc:86:f9:61:db:
e0:f9:73:d8:a6:de:8b:12:d5:9b:23:59:b2:4a:19:29:4a:5b:
0c:46:38:30:bb:1e:02:27:97:3e:57:b9:e4:62:ab:99:d5:9d:
3e:e8:8e:09:cd:99:17:c1:1f:49:d6:ee:a9:e8:5d:c3:0b:f9:
69:65:16:5f:d6:a8:38:d4:3f:32:a9:2f:ed:13:7c:79:b0:62:
01:aa:be:ed:69:c9:fc:eb:e5:d4:69:1c:eb:d9:48:06:b8:d7:
d9:99:06:9a:36:b9:ff:dd:c7:ed:bf:67:d5:ef:a6:ee:b3:c6:
2e:25:04:85:9a:5a:b5:f1:dc:38:91:1a:40:a3:1c:d4:f4:00:
4f:bc:1c:b1:62:6b:17:16:da:39:0a:a7:8f:dd:fb:39:fb:9e:
a3:97:35:d8:ab:90:92:2a:cb:86:ae:38:82:f0:8f:96:da:e8:
33:6c:02:b5:c8:af:42:37:5f:fd:8f:8a:d3:2f:b9:71:f6:3f:
4a:fa:58:e8:13:f9:68:85:b8:ba:7c:f7:62:6b:19:8a:c2:d3:
72:b6:82:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:59 2024 by rpki-client on console-fra.rpki-client.org