Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/2Pkt_qThfHkEsFqCylE-zGejkds.roa
File: 2Pkt_qThfHkEsFqCylE-zGejkds.roa (raw, json)
Hash identifier: eh4t2kFb2wLL+Cg+smDzdWeAT5FqzrftsmuqThtuM6c=
Subject key identifier: D8:F9:2D:FE:A4:E1:7C:79:04:B0:5A:82:CA:51:3E:CC:67:A3:91:DB
Certificate issuer: /CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Certificate serial: 0192FD3C9F03F24D06046F86295BA2531F3A
Authority key identifier: C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/2Pkt_qThfHkEsFqCylE-zGejkds.roa
Signing time: Tue 05 Nov 2024 16:51:01 +0000
ROA not before: Tue 05 Nov 2024 16:51:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213995
IP address blocks: 188.190.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 16:52:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fd:3c:9f:03:f2:4d:06:04:6f:86:29:5b:a2:53:1f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Validity
Not Before: Nov 5 16:51:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8f92dfea4e17c7904b05a82ca513ecc67a391db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b5:ad:7d:5a:5c:b0:e1:00:5a:c6:66:ed:75:
a5:0a:27:40:0b:e5:32:d8:a1:46:50:87:22:ea:cf:
ce:1a:98:e9:2d:dc:b3:f6:56:f8:5e:cd:4a:f0:b5:
89:a0:27:0e:af:4a:d0:9e:74:64:be:f7:26:cb:2f:
12:6e:21:5c:8b:e2:24:a6:06:1d:b6:9f:ee:c1:c8:
13:c3:89:74:65:00:0e:04:84:95:c1:b7:71:d9:74:
e0:25:ac:30:14:27:ad:0e:35:6b:7f:fb:98:dd:82:
9e:86:68:b7:1e:02:45:a4:81:2d:f0:e8:0e:d3:43:
a6:00:27:4f:c7:47:24:4f:2b:80:83:f1:2c:39:81:
5d:52:f8:7b:c3:60:34:3b:db:49:a6:0d:c9:90:e7:
41:df:82:e5:04:2b:e7:6c:3f:09:58:97:30:98:6b:
04:e2:3b:fd:85:8b:e8:e6:86:91:e2:11:71:25:65:
c5:4f:90:bf:58:77:2f:3e:f8:72:cf:ae:63:84:5a:
c9:34:ae:49:34:1a:79:c0:24:55:09:07:68:06:64:
23:a2:57:21:27:92:c6:16:eb:31:d6:57:4e:92:81:
06:38:0a:3b:3c:9a:0d:68:4d:48:d7:1d:78:6e:91:
a5:98:52:6e:a1:f9:c2:23:f0:9a:2c:64:34:71:fd:
a3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F9:2D:FE:A4:E1:7C:79:04:B0:5A:82:CA:51:3E:CC:67:A3:91:DB
X509v3 Authority Key Identifier:
keyid:C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/2Pkt_qThfHkEsFqCylE-zGejkds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.10.0/24
Signature Algorithm: sha256WithRSAEncryption
91:21:7f:b1:fe:1a:a1:67:61:7b:da:ee:1d:75:64:9a:a4:d8:
55:c5:12:06:e6:80:f7:e7:70:9d:a9:ae:0a:44:56:72:a3:e1:
60:bb:d8:c9:6a:be:2e:98:6b:d4:19:9a:95:aa:e4:b5:fe:dc:
f0:e0:1d:60:a2:20:ca:da:76:d5:37:8d:83:84:30:80:11:46:
3b:35:15:18:c1:91:ae:91:8f:2f:91:92:2c:d3:8e:f7:98:b5:
93:c8:57:1e:6d:9d:d1:9f:cc:f1:6a:34:cc:1b:5e:98:6d:d3:
92:cd:6f:56:f1:e2:fc:02:84:46:a2:25:76:e2:9c:78:d4:5a:
fa:04:81:b6:93:cd:93:e0:d0:90:7d:63:b3:ea:9d:a4:79:b5:
c7:63:85:ac:ce:a3:08:bc:82:77:bd:d1:be:59:46:42:b0:e2:
b6:82:b9:a3:b2:87:44:d9:72:f4:9b:a6:d3:6a:c7:3d:b4:a8:
58:2c:0e:67:c6:59:62:9c:be:68:18:f8:71:e3:ee:e0:a8:7f:
5c:10:23:ae:73:43:ec:cb:43:f2:43:e4:b0:52:43:d3:c9:69:
91:a7:3b:f5:3d:ba:a6:be:54:b0:00:80:9d:20:d3:42:e9:a7:
54:d9:9c:f4:6f:e7:18:d1:99:36:75:70:41:9a:6d:6a:a2:05:
24:6c:fb:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 19:54:07 2024 by rpki-client on console-ams.rpki-client.org