Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/eOr8eU7nQ98IL6KCJ1QblaOg1uU.roa
File: eOr8eU7nQ98IL6KCJ1QblaOg1uU.roa (raw, json)
Hash identifier: K3lhTpWEEJ1nhpqXI+00iVo80IoWLPeXqvW1XicCmbw=
Subject key identifier: 78:EA:FC:79:4E:E7:43:DF:08:2F:A2:82:27:54:1B:95:A3:A0:D6:E5
Certificate issuer: /CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Certificate serial: 0191EC3F7A3462A94EDA379ABC90C71CFA50
Authority key identifier: C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/eOr8eU7nQ98IL6KCJ1QblaOg1uU.roa
Signing time: Fri 13 Sep 2024 16:37:48 +0000
ROA not before: Fri 13 Sep 2024 16:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 188.190.0.0/24 maxlen: 24
188.190.1.0/24 maxlen: 24
188.190.2.0/24 maxlen: 24
188.190.3.0/24 maxlen: 24
188.190.4.0/24 maxlen: 24
188.190.5.0/24 maxlen: 24
188.190.6.0/24 maxlen: 24
188.190.7.0/24 maxlen: 24
188.190.8.0/24 maxlen: 24
188.190.9.0/24 maxlen: 24
188.190.11.0/24 maxlen: 24
188.190.12.0/24 maxlen: 24
188.190.13.0/24 maxlen: 24
188.190.14.0/24 maxlen: 24
188.190.15.0/24 maxlen: 24
188.190.16.0/24 maxlen: 24
188.190.17.0/24 maxlen: 24
188.190.18.0/24 maxlen: 24
188.190.19.0/24 maxlen: 24
188.190.20.0/24 maxlen: 24
188.190.21.0/24 maxlen: 24
188.190.22.0/24 maxlen: 24
188.190.23.0/24 maxlen: 24
188.190.24.0/24 maxlen: 24
188.190.25.0/24 maxlen: 24
188.190.26.0/24 maxlen: 24
188.190.27.0/24 maxlen: 24
188.190.28.0/24 maxlen: 24
188.190.29.0/24 maxlen: 24
188.190.30.0/24 maxlen: 24
188.190.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Sep 2024 21:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ec:3f:7a:34:62:a9:4e:da:37:9a:bc:90:c7:1c:fa:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c373fae99d651298845d22f89d8d2b2e1d13bc04
Validity
Not Before: Sep 13 16:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78eafc794ee743df082fa28227541b95a3a0d6e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4d:c7:92:e1:99:e5:33:0f:48:e2:0a:0f:83:
cd:2a:44:10:86:f9:8b:45:2e:72:f5:61:4f:52:36:
c9:44:7f:77:81:18:f7:f3:10:3d:ef:b7:51:45:8c:
61:dd:74:80:91:81:12:34:6f:ad:28:56:05:c8:70:
3f:c8:57:2f:21:e4:b3:9d:d7:79:9f:91:ae:f4:d3:
b3:c7:49:17:40:b8:51:ab:c0:5a:cd:f1:26:27:b1:
8c:15:94:3d:9e:65:b2:99:43:41:f1:d2:46:63:7b:
99:33:df:80:16:84:8e:ba:8a:39:33:ec:10:4c:ac:
94:79:c7:75:ff:32:f3:36:d8:a1:f2:d4:24:ad:3a:
89:f8:79:5d:0f:c5:39:bc:cd:ee:10:81:11:2f:5f:
02:46:4c:08:a8:2e:cc:32:22:43:3c:36:1c:a9:ad:
44:23:cf:c8:dd:58:da:25:22:4f:dc:34:8a:6c:a5:
43:e6:2f:ee:88:9b:0a:7b:97:a2:15:6b:c3:83:4d:
01:db:6d:ee:59:ce:12:b6:37:91:35:a1:d0:23:18:
8a:5e:9d:1a:fb:30:61:98:e5:f7:5f:cf:c5:60:9e:
bc:1a:1a:f6:09:45:3d:ab:ca:43:ed:23:b2:43:41:
db:9e:83:a1:dd:36:ee:f2:c4:78:cf:69:71:eb:1b:
f5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:EA:FC:79:4E:E7:43:DF:08:2F:A2:82:27:54:1B:95:A3:A0:D6:E5
X509v3 Authority Key Identifier:
keyid:C3:73:FA:E9:9D:65:12:98:84:5D:22:F8:9D:8D:2B:2E:1D:13:BC:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/eOr8eU7nQ98IL6KCJ1QblaOg1uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8ce795-3fa9-4cb7-831a-1de56e475fbf/1/w3P66Z1lEpiEXSL4nY0rLh0TvAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.0.0-188.190.9.255
188.190.11.0-188.190.31.255
Signature Algorithm: sha256WithRSAEncryption
61:05:72:7b:92:24:a0:26:21:ea:76:7d:cb:c5:b7:e0:72:05:
44:be:76:a5:d5:f0:e7:e2:92:01:d0:ea:97:9a:79:46:d8:38:
b4:82:97:a2:0d:a2:ff:73:2f:e0:5e:12:fa:94:2f:86:9f:ba:
66:7b:62:5f:c0:2e:64:76:31:bc:fa:c6:d3:36:cc:8b:5b:45:
11:85:ea:8e:83:72:49:77:95:34:ed:40:88:14:50:17:92:04:
86:78:92:7a:5f:30:00:b2:bc:5d:90:f1:e1:d0:3a:0b:0e:98:
0a:14:69:4e:90:30:dd:04:b2:69:4b:bb:c2:39:af:52:2c:86:
11:19:9f:02:59:17:7a:ad:56:a0:8e:58:b7:47:c4:30:ee:26:
84:26:78:0d:d2:55:9c:72:08:65:80:71:ec:67:b3:ea:b7:50:
0d:04:3d:0e:5f:1b:91:bb:7d:cb:56:c6:6d:78:a4:bd:b9:b0:
43:43:be:2b:45:db:f8:ea:2e:05:c5:ba:11:a8:7c:12:94:d0:
a3:9e:2c:65:53:4b:69:96:3b:cf:f1:5b:9e:e1:33:26:58:26:
0b:c2:cb:b3:d6:f5:92:ba:8a:9f:4b:2d:6b:c0:df:dc:7a:5e:
e1:17:5b:e5:3c:63:76:59:d9:30:00:58:53:ba:e5:e2:12:08:
1f:75:92:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 14 22:49:23 2024 by rpki-client on console-ams.rpki-client.org