Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/2vGOOKn5O3yUK45Ky90PJzh2VWk.roa
File: 2vGOOKn5O3yUK45Ky90PJzh2VWk.roa (raw, json)
Hash identifier: zfW2U9h9s1p38j1SvDVdLgl6kaW1ZoEVUvxALOmvK7Q=
Subject key identifier: DA:F1:8E:38:A9:F9:3B:7C:94:2B:8E:4A:CB:DD:0F:27:38:76:55:69
Certificate issuer: /CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Certificate serial: 0191EC3F7AEF5A84213A3A36F21253276102
Authority key identifier: C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/2vGOOKn5O3yUK45Ky90PJzh2VWk.roa
Signing time: Fri 13 Sep 2024 16:37:48 +0000
ROA not before: Fri 13 Sep 2024 16:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214940
IP address blocks: 188.190.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 15:45:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ec:3f:7a:ef:5a:84:21:3a:3a:36:f2:12:53:27:61:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Validity
Not Before: Sep 13 16:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=daf18e38a9f93b7c942b8e4acbdd0f2738765569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dd:5e:e6:30:d2:bd:fb:99:ef:ca:6b:87:0c:
d3:68:ab:bb:81:e0:62:2d:41:e5:28:d1:60:c0:42:
66:86:90:0c:35:80:c3:e1:66:54:2e:d2:18:e9:cb:
4d:aa:c5:5f:8c:3d:58:8f:91:fd:78:f5:3e:58:21:
78:ba:05:db:80:32:c8:a8:b3:84:5a:68:cf:ce:49:
56:c5:cd:23:f7:ae:3d:c3:a3:05:a8:82:e0:c3:48:
08:d4:72:b9:56:e4:87:f3:d7:4d:2d:48:96:79:f0:
63:bb:2b:4e:f1:6d:f2:6d:29:75:eb:c3:20:af:9d:
af:7f:0c:7d:3f:9f:71:d6:6a:ca:f3:ef:c2:1d:99:
3f:3c:8c:f5:cc:5b:ee:60:c9:23:62:d3:04:31:59:
34:9c:f9:24:83:96:20:bb:8a:4f:b2:3f:ae:06:c4:
6d:06:13:b6:e3:23:43:1f:ce:59:36:9f:0f:4f:ca:
ba:14:05:db:07:f0:66:1c:68:cc:08:20:9f:1e:7d:
33:29:d3:45:18:be:ef:2e:14:85:30:22:1a:6d:d2:
0d:2d:f3:90:9c:a1:14:07:55:5d:85:aa:f7:2d:1a:
23:19:c7:76:a2:b3:2f:bc:67:99:76:9b:73:17:3e:
54:ff:c0:b6:52:ef:8b:f3:e0:94:97:02:28:b2:fb:
12:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F1:8E:38:A9:F9:3B:7C:94:2B:8E:4A:CB:DD:0F:27:38:76:55:69
X509v3 Authority Key Identifier:
keyid:C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/2vGOOKn5O3yUK45Ky90PJzh2VWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.10.0/24
Signature Algorithm: sha256WithRSAEncryption
21:e9:75:06:4b:bf:f7:43:35:13:d8:9f:73:b8:5c:a9:a6:39:
70:fb:a4:53:0b:3b:9b:1e:6e:53:a7:42:1c:a8:86:36:d9:fd:
d5:68:5c:f0:24:cd:d3:c1:0a:82:86:7b:a4:68:57:f6:37:3b:
28:28:2d:00:43:0f:49:18:19:b8:59:af:6b:f6:9d:b7:71:56:
ce:f5:70:4d:1f:67:f9:9e:7f:53:bb:5d:31:2c:23:ea:82:c7:
50:3d:5d:69:5e:9a:7a:5b:27:03:84:2b:02:15:50:da:14:93:
51:7e:bb:90:51:16:3e:5b:53:33:e9:66:11:c1:13:ad:26:ee:
32:57:03:d3:55:36:97:7d:07:14:95:4f:04:45:9e:78:ed:c6:
6b:46:71:ec:22:f5:b4:8b:55:00:d3:39:f1:e3:7f:e7:c6:b8:
d7:c9:95:bd:3d:05:d3:9c:69:75:64:7e:57:6d:7a:39:8c:e0:
a7:07:af:27:7a:94:f5:13:62:5b:7e:c7:fa:46:a2:65:eb:3c:
9b:07:13:3d:1f:fd:75:b0:16:9f:e2:2d:54:e6:2a:4c:b3:d8:
75:2b:b0:a6:43:19:53:81:e7:0a:25:2b:d7:5b:f9:37:7e:6f:
ba:a3:a9:62:98:f4:b6:4e:b4:d2:78:99:1c:8c:1b:b2:33:fe:
1f:7d:db:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHsP3rvWoQhOjo28hJTJ2ECMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNzNmYWU5OWQ2NTEyOTg4NDVkMjJmODlkOGQyYjJlMWQx
M2JjMDQwHhcNMjQwOTEzMTYzNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWYxOGUzOGE5ZjkzYjdjOTQyYjhlNGFjYmRkMGYyNzM4NzY1NTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq91e5jDSvfuZ78prhwzTaKu7geBi
LUHlKNFgwEJmhpAMNYDD4WZULtIY6ctNqsVfjD1Yj5H9ePU+WCF4ugXbgDLIqLOE
WmjPzklWxc0j9649w6MFqILgw0gI1HK5VuSH89dNLUiWefBjuytO8W3ybSl168Mg
r52vfwx9P59x1mrK8+/CHZk/PIz1zFvuYMkjYtMEMVk0nPkkg5Ygu4pPsj+uBsRt
BhO24yNDH85ZNp8PT8q6FAXbB/BmHGjMCCCfHn0zKdNFGL7vLhSFMCIabdINLfOQ
nKEUB1Vdhar3LRojGcd2orMvvGeZdptzFz5U/8C2Uu+L8+CUlwIosvsSJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNrxjjip+Tt8lCuOSsvdDyc4dlVpMB8GA1UdIwQY
MBaAFMNz+umdZRKYhF0i+J2NKy4dE7wEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzNQNjZaMWxFcGlFWFNMNG5ZMHJMaDBUdkFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC84Y2U3OTUtM2ZhOS00Y2I3LTgzMWEt
MWRlNTZlNDc1ZmJmLzEvMnZHT09LbjVPM3lVSzQ1S3k5MFBKemgyVldrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC84Y2U3OTUtM2ZhOS00Y2I3LTgzMWEtMWRlNTZlNDc1ZmJm
LzEvdzNQNjZaMWxFcGlFWFNMNG5ZMHJMaDBUdkFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL4KMA0G
CSqGSIb3DQEBCwUAA4IBAQAh6XUGS7/3QzUT2J9zuFyppjlw+6RTCzubHm5Tp0Ic
qIY22f3VaFzwJM3TwQqChnukaFf2NzsoKC0AQw9JGBm4Wa9r9p23cVbO9XBNH2f5
nn9Tu10xLCPqgsdQPV1pXpp6WycDhCsCFVDaFJNRfruQURY+W1Mz6WYRwROtJu4y
VwPTVTaXfQcUlU8ERZ547cZrRnHsIvW0i1UA0znx43/nxrjXyZW9PQXTnGl1ZH5X
bXo5jOCnB68nepT1E2Jbfsf6RqJl6zybBxM9H/11sBaf4i1U5ipMs9h1K7CmQxlT
gecKJSvXW/k3fm+6o6limPS2TrTSeJkcjBuyM/4ffdsQ
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:59:42 2025 by rpki-client