Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/2xcdXG-WZ1L2b1I7DILseAmdlEA.roa
File: 2xcdXG-WZ1L2b1I7DILseAmdlEA.roa (raw, json)
Hash identifier: 3UPw2dS8gVeiiNichKh7wrni4wbAo0Z5V+XQMPPeiWM=
Subject key identifier: DB:17:1D:5C:6F:96:67:52:F6:6F:52:3B:0C:82:EC:78:09:9D:94:40
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018DFAC85089569131CB016F14EB2D731E2B
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/2xcdXG-WZ1L2b1I7DILseAmdlEA.roa
Signing time: Fri 01 Mar 2024 16:10:48 +0000
ROA not before: Fri 01 Mar 2024 16:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15731
IP address blocks: 188.255.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 14:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fa:c8:50:89:56:91:31:cb:01:6f:14:eb:2d:73:1e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 1 16:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db171d5c6f966752f66f523b0c82ec78099d9440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:af:52:50:af:a7:e2:30:fd:03:ac:fc:70:38:
59:03:39:cb:cc:6f:a9:f2:45:d0:2b:cf:a8:e8:f5:
89:82:2c:c1:90:fc:ba:0c:cb:04:03:f4:80:b7:d4:
2b:c9:4e:46:53:3d:9f:d6:8c:a6:f6:d7:66:5d:44:
fa:5e:6b:01:1e:6e:d3:53:01:29:06:7e:f4:84:98:
a6:4e:cd:ff:bd:48:3c:9f:c8:6c:bb:3e:29:d3:e4:
16:a1:ab:9a:33:08:26:c7:9b:ea:66:83:4e:69:2b:
9d:4e:5e:0e:cb:f8:ee:c0:bd:08:ce:38:a9:54:01:
02:2e:2a:8f:f8:7e:98:17:c8:f9:88:7b:ef:94:6a:
a4:bc:22:1d:2c:71:04:aa:69:3c:b7:2c:5d:2d:56:
f6:01:6c:d6:02:84:f7:3d:a1:dc:85:eb:60:ea:dd:
8a:92:d7:17:b4:e6:70:ef:2a:50:98:ab:82:9f:c7:
f1:ff:49:99:57:24:06:da:23:e4:0f:fe:80:23:05:
90:53:07:08:72:da:83:27:36:2d:10:10:a7:17:07:
38:f5:af:91:1f:17:fe:02:e3:04:a7:5f:a4:f0:64:
eb:8f:e6:36:4d:a6:a4:9d:09:15:c8:28:37:dc:29:
b0:c4:16:bb:2c:ad:2b:de:c9:15:22:20:4d:32:c2:
68:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:17:1D:5C:6F:96:67:52:F6:6F:52:3B:0C:82:EC:78:09:9D:94:40
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/2xcdXG-WZ1L2b1I7DILseAmdlEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.215.0/24
Signature Algorithm: sha256WithRSAEncryption
32:6c:7b:73:00:ad:89:79:db:8e:c9:b6:ee:57:de:2d:f4:ba:
7d:49:92:d3:5a:f3:ab:57:e8:0c:11:0f:4d:d0:48:d5:53:69:
64:be:c1:1e:ec:a2:63:ac:d8:b0:8c:28:b1:2d:5c:97:76:5b:
96:61:2a:a4:51:28:a5:75:7c:be:de:b7:e6:c5:59:b6:49:8f:
cc:99:f3:2d:d6:3c:f2:d3:65:40:2b:ce:21:af:3f:c0:b7:da:
4b:68:25:9f:a0:4a:8f:7d:b6:68:1b:7a:d6:e3:86:58:ff:61:
f3:5e:ab:29:86:5e:87:83:55:71:d6:07:15:4c:94:68:b0:94:
a9:70:48:e3:02:d9:37:33:7a:c9:b9:45:48:02:06:f1:d9:a2:
06:d4:3b:77:1d:c0:62:da:88:b4:53:87:a6:7b:03:46:78:0b:
52:4c:91:41:8b:3c:ad:44:d3:26:d8:50:bd:45:c7:08:4f:b4:
1c:b0:79:49:d8:dd:2b:81:b3:77:d5:23:fc:a8:c9:0d:78:20:
2a:28:d9:c9:59:be:00:4d:c8:9e:03:cd:ae:b5:43:83:0c:0b:
5c:5a:44:39:3b:a3:7f:ee:ef:ed:9b:13:85:95:0f:1f:5a:9b:
d3:0c:e3:f3:40:53:f5:8d:07:5d:08:50:67:cf:b3:86:4e:7c:
5a:53:79:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 17:08:11 2024 by rpki-client on console-fra.rpki-client.org