Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/BOcXrxwNP5coNTqTodlOCSNN-wY.roa
File: BOcXrxwNP5coNTqTodlOCSNN-wY.roa (raw, json)
Hash identifier: e5e3Zn3+qgmQGAL3ty7hDoFpR2Q1LjyuQh3qgXKAZKU=
Subject key identifier: 04:E7:17:AF:1C:0D:3F:97:28:35:3A:93:A1:D9:4E:09:23:4D:FB:06
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0190898FC4B4B6FEFCBB76BB830152AE0198
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/BOcXrxwNP5coNTqTodlOCSNN-wY.roa
Signing time: Sat 06 Jul 2024 19:40:18 +0000
ROA not before: Sat 06 Jul 2024 19:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 18:24:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:89:8f:c4:b4:b6:fe:fc:bb:76:bb:83:01:52:ae:01:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jul 6 19:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04e717af1c0d3f9728353a93a1d94e09234dfb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4b:01:b2:8e:50:04:2a:76:8e:45:fc:62:4d:
d7:4e:1b:60:54:d9:7c:bb:1e:83:b5:1d:c9:0f:b0:
ef:0a:8f:11:b5:64:d4:e5:13:d0:37:96:88:a0:b4:
74:e3:23:95:12:67:ea:e1:04:b5:ab:d9:c5:57:ac:
47:6d:87:cf:5d:d5:2a:06:e7:e4:1f:1f:96:40:54:
8a:85:3b:5e:27:1b:70:a4:9d:ad:42:92:fd:d7:81:
b4:50:23:e2:2f:05:d3:5b:ef:69:a6:6a:8c:82:32:
d1:cf:1e:e1:4c:2a:81:4f:7f:a8:f5:ad:64:11:31:
5a:0e:47:91:57:59:d8:ff:c8:a5:13:63:dd:e5:b4:
06:90:40:9b:52:7a:fc:1c:8e:ef:92:40:87:a8:93:
a1:2a:c0:e4:26:2b:42:21:a3:81:52:82:db:ff:6c:
f2:d8:69:f2:8d:d6:cf:68:a3:42:33:24:31:66:80:
66:42:4a:6a:72:f8:7f:31:4e:2b:57:b1:53:51:34:
46:3b:95:30:6c:45:18:8d:ba:08:47:f2:56:75:32:
9a:9a:75:41:1c:26:b1:c7:84:6b:46:4f:55:b5:3c:
5e:72:8f:52:e5:64:82:01:f6:38:8a:cc:4f:bc:ec:
ca:55:f5:70:96:10:e2:be:f0:bc:36:a5:03:b3:c7:
c8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E7:17:AF:1C:0D:3F:97:28:35:3A:93:A1:D9:4E:09:23:4D:FB:06
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/BOcXrxwNP5coNTqTodlOCSNN-wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:62:0d:6e:43:02:8f:9a:4f:33:5b:aa:20:c9:3f:63:41:96:
21:3f:7c:15:63:88:31:9b:52:30:0a:9d:10:31:a1:c9:c2:0c:
d0:e5:7f:d5:b1:8b:37:ea:82:ab:a7:86:a0:32:01:34:3e:4a:
ae:9b:d4:ed:aa:1b:db:4b:56:a4:19:36:e5:59:c2:db:91:5e:
42:45:ec:5e:1a:80:62:2e:7e:b5:7c:52:17:49:62:6f:6a:5b:
27:41:7d:18:96:d9:70:93:56:e0:c5:ee:ee:60:bb:f7:64:5d:
fb:e9:48:f3:76:86:e7:85:b0:f9:8b:57:69:42:06:f2:ba:c3:
fc:da:3d:6a:7e:9e:ec:8f:4c:6e:06:eb:35:67:9e:51:4c:af:
bc:77:5d:80:a4:d9:d7:82:39:e5:d2:2d:58:92:18:f5:cc:69:
7d:16:e0:86:7f:53:87:82:8d:96:cf:b7:3b:97:cf:44:b2:24:
98:94:46:e1:77:90:fa:2e:5d:d2:a8:28:b3:10:18:32:cf:e8:
e4:e2:dc:f4:3a:47:e9:4e:3f:b0:7f:1b:0f:c3:6e:a1:d8:5d:
2a:83:f8:64:39:6d:2f:53:38:fa:68:36:aa:95:99:eb:da:a8:
74:08:e0:91:0d:a1:d7:97:55:b6:30:62:af:3d:c6:a2:69:ad:
32:fc:8b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 19:31:06 2024 by rpki-client on console-fra.rpki-client.org