Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/0-eUKe_MV71WZLHxHBvRC4qdfAo.roa
File: 0-eUKe_MV71WZLHxHBvRC4qdfAo.roa (raw, json)
Hash identifier: kq+qEcAowNQd7CmkZjCeM6BWYFdbSTxCiYac8BtQOAo=
Subject key identifier: D3:E7:94:29:EF:CC:57:BD:56:64:B1:F1:1C:1B:D1:0B:8A:9D:7C:0A
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01922F2555B99D45738065C6AED4900A9AD5
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/0-eUKe_MV71WZLHxHBvRC4qdfAo.roa
Signing time: Thu 26 Sep 2024 16:23:48 +0000
ROA not before: Thu 26 Sep 2024 16:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Oct 2024 19:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2f:25:55:b9:9d:45:73:80:65:c6:ae:d4:90:0a:9a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Sep 26 16:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3e79429efcc57bd5664b1f11c1bd10b8a9d7c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:d1:92:88:c9:e4:9b:3c:a2:1a:d7:00:7a:
ca:a7:6d:70:11:d1:79:59:9d:4a:da:5c:4f:ee:e8:
d0:97:46:62:1d:ba:42:ff:34:5c:51:17:df:71:d8:
10:a3:e7:c7:13:3d:38:3b:02:6f:cb:a2:f2:d5:1a:
5a:36:48:42:d3:57:f0:e3:75:76:bf:7e:11:41:3d:
e6:6b:58:3f:31:33:1c:ad:80:0c:ce:9b:c9:40:58:
6a:7c:e1:16:d0:38:bd:b1:9c:4c:fa:e6:9c:cb:3b:
54:93:03:e2:bd:4a:65:d9:40:96:9b:0c:42:61:1b:
de:10:18:98:36:28:82:c6:47:eb:9c:e1:37:21:73:
7c:c3:27:e5:b0:ef:3f:b1:94:4e:e1:d2:c2:07:4b:
06:c1:34:32:46:38:30:b1:ea:79:5a:9e:2d:89:c4:
93:e0:0e:3b:3f:32:a2:9b:d6:74:64:6b:17:0c:aa:
9e:5a:23:98:e4:7a:7d:ca:40:3f:d3:84:62:f7:66:
f0:ac:17:8d:30:6a:08:ba:8f:dc:21:68:0b:4e:aa:
cf:1e:44:ed:b6:fe:b6:b7:f5:52:4b:82:65:ed:6d:
39:a9:b9:d9:80:f2:6a:62:4e:c6:db:d3:08:f5:5a:
95:44:89:73:7c:1f:e4:f5:75:11:4f:0a:2a:f9:43:
d7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E7:94:29:EF:CC:57:BD:56:64:B1:F1:1C:1B:D1:0B:8A:9D:7C:0A
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/0-eUKe_MV71WZLHxHBvRC4qdfAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:3f:ca:df:80:15:e7:63:36:a7:1d:3f:50:e1:47:f4:06:db:
b3:02:48:e1:5b:fb:10:c5:b3:59:0a:c9:7f:0d:2a:51:10:43:
ff:e5:17:28:04:a2:ae:52:b4:66:fe:6d:9a:06:25:11:0f:1c:
1a:22:63:db:f4:4a:6c:50:4d:2c:36:c3:15:de:73:5c:14:78:
e7:76:f9:13:53:63:9c:cf:ce:8c:35:5e:7f:1f:5b:23:44:83:
ae:76:2f:66:46:2b:37:e4:c5:80:ed:86:44:66:3f:11:b9:7a:
72:47:6d:61:fd:c2:6c:14:9c:0c:49:7b:2c:5a:98:5c:72:fb:
09:dd:48:64:ce:2c:1a:6d:60:a7:28:6e:d6:4a:d8:ab:e7:5b:
fb:22:2d:3b:f4:b9:57:d5:09:ff:46:67:1f:3b:7d:35:07:ba:
35:e8:23:36:9f:a2:b6:ef:54:aa:a8:ca:c4:0e:52:0b:3d:6e:
eb:a0:52:be:d0:76:11:12:b8:76:a2:b0:c0:65:55:96:80:65:
c9:12:7c:4e:e0:f9:e8:b6:a2:c6:ec:cf:23:f4:d7:55:b7:ab:
2c:20:a4:59:43:42:cf:8d:44:d9:2b:ab:ea:ec:6d:c5:c4:10:
c7:e3:d9:b3:a2:42:5c:61:13:d7:ce:32:43:1c:fc:6d:00:e3:
c2:e9:2b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 23:39:19 2024 by rpki-client on console-ams.rpki-client.org