Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/OuENi860pzGwFyzTgHJwTu1oo0Y.roa
File: OuENi860pzGwFyzTgHJwTu1oo0Y.roa (raw, json)
Hash identifier: k/QcAmovD/blJtBZE/ymFrJg2aGmVuvbsUGMupFjg5s=
Subject key identifier: 3A:E1:0D:8B:CE:B4:A7:31:B0:17:2C:D3:80:72:70:4E:ED:68:A3:46
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018F2AD6F8F8CBC4389302E8C2C06FDA8595
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/OuENi860pzGwFyzTgHJwTu1oo0Y.roa
Signing time: Mon 29 Apr 2024 17:11:22 +0000
ROA not before: Mon 29 Apr 2024 17:11:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49608
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jun 2024 04:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:d6:f8:f8:cb:c4:38:93:02:e8:c2:c0:6f:da:85:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 29 17:11:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ae10d8bceb4a731b0172cd38072704eed68a346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:17:64:24:15:7f:00:46:80:26:c4:37:c3:
54:e6:8c:81:6c:0c:ef:88:fe:31:f6:7e:1d:d9:e6:
3a:47:a7:44:b9:f1:1f:44:8d:13:96:cd:29:33:f2:
b0:84:7c:06:f9:4a:84:1b:58:77:c6:5b:50:23:b6:
dd:f9:9b:43:c5:60:13:eb:0d:a3:a4:77:d8:b3:5a:
7d:41:95:6b:d5:24:24:25:b4:e9:41:f7:6b:68:20:
b7:aa:15:a7:ed:c7:70:c1:bb:4f:d9:50:30:68:a9:
30:1d:f6:65:41:26:24:29:1e:76:62:db:16:42:ef:
f7:09:91:95:2b:85:8f:45:41:e9:ad:ab:91:24:09:
76:77:c2:ee:55:a1:50:38:eb:f7:b2:a4:23:6f:ae:
44:50:db:a3:1f:e3:f7:9d:b1:11:a1:35:fa:5a:4c:
77:3d:0c:58:ce:e7:20:43:cc:6b:59:32:d0:b8:9b:
50:cb:19:32:88:17:13:d0:19:6a:a5:ca:37:03:4e:
9c:76:64:77:22:8f:e9:d3:bd:08:96:3e:62:bb:6f:
d3:01:64:c5:30:7f:21:f2:c7:52:9c:19:28:7c:65:
dc:68:1a:04:16:98:8a:55:63:ee:f7:29:8d:59:08:
5d:4d:59:e7:17:0c:2b:7a:4b:ae:ad:cc:b4:5a:cb:
b1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E1:0D:8B:CE:B4:A7:31:B0:17:2C:D3:80:72:70:4E:ED:68:A3:46
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/OuENi860pzGwFyzTgHJwTu1oo0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:42:84:ad:2b:24:f0:1b:03:2e:62:ce:3b:07:3a:2f:29:31:
d9:1b:ba:04:92:2f:fe:a7:ef:b0:89:c1:0e:74:51:e3:a8:36:
b7:a1:ec:71:b7:c9:61:8c:07:6d:cf:ee:86:ea:e3:85:cd:84:
07:a0:da:6f:d3:7a:cb:52:a6:f7:2b:b4:0c:a4:65:b2:d2:55:
8d:c8:43:45:31:2f:63:28:35:3b:27:40:f1:f7:4d:94:48:9e:
60:f2:9d:55:8e:a1:ec:4b:86:6c:a9:14:ec:91:00:7a:4b:9e:
e8:d7:80:80:e5:02:00:bc:51:cc:cf:49:95:08:8b:f3:27:c3:
4d:a9:a6:57:6d:cd:9f:08:7e:38:94:97:65:12:fc:55:3c:f8:
fb:78:0c:0d:38:92:33:c1:8e:8d:fb:9a:3d:48:de:1c:67:70:
e6:df:fa:dd:4c:d1:b2:70:2e:ef:36:8d:e2:f8:99:f5:ab:a2:
fb:b2:87:ef:3d:b2:15:80:15:f8:98:05:96:1c:a1:79:3d:54:
6c:d7:93:21:03:99:bc:33:9d:7d:dc:40:bf:09:ea:52:ef:eb:
60:ee:63:19:a4:5a:20:4f:9c:83:15:f1:1a:19:bb:f7:c9:fc:
25:ec:cc:0f:46:9e:e8:cc:5e:f3:42:8a:9c:0d:71:58:d6:4b:
e5:5f:34:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 09:26:30 2024 by rpki-client on console-ams.rpki-client.org