Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/4z_eiNzGz8yzQ_tVjhg9qbpmmZw.roa
File: 4z_eiNzGz8yzQ_tVjhg9qbpmmZw.roa (raw, json)
Hash identifier: KehaDdTJMe/i3VnJEZBsupqnKFKf8+78C5oybjP8UKo=
Subject key identifier: E3:3F:DE:88:DC:C6:CF:CC:B3:43:FB:55:8E:18:3D:A9:BA:66:99:9C
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018D5926EC76C1001F21E6053679BEF1CA49
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/4z_eiNzGz8yzQ_tVjhg9qbpmmZw.roa
Signing time: Tue 30 Jan 2024 06:55:39 +0000
ROA not before: Tue 30 Jan 2024 06:55:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 06:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:59:26:ec:76:c1:00:1f:21:e6:05:36:79:be:f1:ca:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 30 06:55:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e33fde88dcc6cfccb343fb558e183da9ba66999c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bc:26:aa:22:c8:52:13:f3:23:fa:dd:85:55:
ba:a4:24:6f:58:27:66:7d:a6:6b:23:2b:55:e9:66:
fd:27:3d:60:b2:fb:f0:36:08:e7:50:a9:d9:44:cd:
38:a1:73:0f:32:5c:36:c3:b2:89:f2:fb:15:5c:be:
fc:9b:15:f7:79:ef:ca:4f:bb:c0:46:8a:2b:01:7f:
54:24:42:f8:10:02:04:85:b5:00:4b:80:bd:26:41:
48:85:73:48:dd:96:9c:8a:88:98:54:2d:ae:ac:47:
66:e2:61:a7:72:66:e8:07:96:db:33:5c:7d:3e:a9:
70:7e:dd:9e:30:77:1c:af:36:c1:d3:3b:50:7d:8e:
a5:98:fb:70:51:33:12:db:b7:b3:05:b1:fd:5e:f3:
44:8b:6a:ed:09:ef:ae:f2:49:f2:a8:96:df:f7:c8:
70:74:6f:5a:28:ba:9f:7c:97:99:91:98:74:5d:f7:
d7:c5:4b:18:ff:c9:cb:11:0d:f5:00:a4:a1:f7:a3:
33:e8:cf:21:1e:8b:7c:51:35:44:cd:51:bc:e2:e2:
73:91:d1:de:2e:2b:e3:e7:b4:df:9a:5d:74:60:29:
86:94:51:2a:d5:d5:5a:2c:54:04:50:3c:72:b7:54:
3b:e4:3b:07:1c:9e:56:22:79:06:47:b7:31:3a:1e:
01:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:3F:DE:88:DC:C6:CF:CC:B3:43:FB:55:8E:18:3D:A9:BA:66:99:9C
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/4z_eiNzGz8yzQ_tVjhg9qbpmmZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
51:34:8d:1d:ad:76:95:e4:f0:02:c8:51:51:25:45:f5:1e:9c:
78:44:a3:7e:20:72:61:f4:f4:c2:d4:67:3c:f5:01:c8:e1:6e:
d4:82:ac:bb:b1:bb:e5:79:9d:47:43:92:50:f5:be:35:4e:92:
b0:69:ab:67:12:73:5f:89:5c:60:00:86:29:40:2e:74:b9:79:
99:dc:1b:d1:87:9d:c0:2c:57:75:43:6d:5f:10:5c:88:26:87:
78:67:e2:9b:1a:68:f0:6d:89:fa:40:b9:2b:de:3e:65:3c:e7:
1c:3f:03:bf:89:5a:fe:a7:39:3f:c5:c1:2b:50:6f:69:b6:ac:
bd:15:de:88:a8:94:09:e8:1c:38:ef:8e:43:03:b3:04:88:82:
d9:d1:97:45:5d:a8:4f:74:14:96:28:b2:12:02:5b:da:ce:b1:
93:30:64:75:8e:7c:09:90:72:18:bc:a4:9b:3b:0b:3c:02:82:
e4:2b:f8:1b:13:6d:93:84:ee:c1:41:72:d4:66:b8:c6:e3:5b:
1c:1d:21:78:3e:cd:6e:f8:8a:46:bb:42:f1:89:ec:94:f9:50:
10:37:e0:02:9d:09:4e:b3:a7:2e:c0:1c:cd:9b:4d:23:dc:f1:
97:03:8c:d1:6a:94:c0:49:fb:ee:bf:db:c0:93:73:bc:9e:e3:
fa:c3:9b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 07:15:24 2024 by rpki-client on console-fra.rpki-client.org