Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/o0dOZMlkyR4JxvqRoU9YCFMkbEw.roa
File: o0dOZMlkyR4JxvqRoU9YCFMkbEw.roa (raw, json)
Hash identifier: fp9CBchOeUZpmaEYQuSE3Mw93WGCozE3vGzlaGpD4Y0=
Subject key identifier: A3:47:4E:64:C9:64:C9:1E:09:C6:FA:91:A1:4F:58:08:53:24:6C:4C
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018CC7275A60ED92657FC9401BCF6145483D
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/o0dOZMlkyR4JxvqRoU9YCFMkbEw.roa
Signing time: Mon 01 Jan 2024 22:31:34 +0000
ROA not before: Mon 01 Jan 2024 22:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210107
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 06:55:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:5a:60:ed:92:65:7f:c9:40:1b:cf:61:45:48:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 22:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3474e64c964c91e09c6fa91a14f580853246c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:41:bb:3f:47:6b:26:5d:1a:56:37:da:d9:d2:
0f:e8:30:f6:1b:cb:50:0e:49:2e:36:f6:61:ea:19:
5c:0b:13:f9:2d:3a:aa:f9:76:da:26:42:86:99:44:
d7:33:f3:50:6f:8a:d9:69:08:a5:df:15:21:ee:4c:
ec:13:fa:df:6b:8d:3f:3b:2c:98:69:ce:65:fb:eb:
ee:de:7e:6d:f3:9d:99:65:7e:a9:3e:d7:97:1e:1a:
72:b8:a5:a1:5a:d1:99:f6:5b:71:8a:11:8b:42:03:
6d:f7:0a:62:cf:09:6c:6a:f3:76:4b:77:26:99:e5:
73:c0:cb:0b:80:1e:3f:72:3b:da:4e:f3:28:c5:39:
b7:9f:b4:35:b1:e8:e9:14:7e:3e:ae:3f:62:f9:74:
40:f0:68:5b:54:8b:50:05:ef:68:e1:55:ff:62:57:
b1:33:d6:aa:05:c8:e7:17:c6:f8:13:74:d1:e8:8f:
81:c7:84:f4:81:23:73:cb:b0:f1:74:ec:fd:42:93:
57:9c:47:df:27:66:5d:96:9f:f3:23:84:40:e9:c7:
59:40:f1:9b:29:1c:40:2a:0a:07:a3:0f:71:65:50:
74:06:49:b4:7f:d2:a3:eb:d6:1d:a1:c4:73:ab:56:
31:75:9c:cd:eb:a7:84:9d:6a:92:a2:47:b4:64:73:
6e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:47:4E:64:C9:64:C9:1E:09:C6:FA:91:A1:4F:58:08:53:24:6C:4C
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/o0dOZMlkyR4JxvqRoU9YCFMkbEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
af:f6:59:61:bf:ec:78:6e:08:7f:0d:45:f2:eb:08:e3:1a:44:
4e:5f:62:f7:4d:37:cf:22:3c:9a:c0:60:59:5f:53:2b:55:5f:
24:b9:98:0f:0e:36:92:72:8e:35:e7:19:f4:10:cc:a9:25:be:
3c:a1:ff:01:a6:d4:c5:70:b7:b2:0d:25:27:60:04:85:88:1a:
89:a2:b6:4e:50:29:b1:56:b3:a2:10:e5:d3:81:c2:00:f4:1d:
10:0f:2a:3f:36:85:72:16:73:25:52:e2:72:c5:06:2c:ab:63:
2a:bf:1b:d7:01:12:6f:7f:bd:90:5b:cb:9f:45:89:e3:92:1f:
a0:73:94:21:b8:29:11:44:b0:90:7f:4b:20:82:66:82:13:20:
c2:27:6a:7f:8d:b7:7d:b6:0f:b9:e5:b6:aa:d9:12:63:28:d1:
ff:36:7e:12:1a:5d:3a:f8:97:0a:1a:9d:53:5d:1d:51:42:a1:
98:74:6f:c3:60:df:e8:05:ac:57:af:bd:15:d1:37:f6:08:3f:
e3:41:e1:94:44:66:77:25:7b:c7:e7:54:ee:f7:c0:46:3e:2b:
55:ca:46:a8:3f:88:b7:ec:0b:c5:d5:cf:49:c6:52:e5:b6:b7:
1d:3f:50:1e:9a:8a:c9:a0:ab:b3:d3:8b:1f:6b:3b:cb:c7:f4:
6b:87:22:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 11:24:30 2024 by rpki-client on console-ams.rpki-client.org