Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/488p4f2PBtkF4PJCfgK_aNqv8Zo.roa
File: 488p4f2PBtkF4PJCfgK_aNqv8Zo.roa (raw, json)
Hash identifier: rfJfDcgTHTCguCJ1nrK4JVrbN9gvDm8LMXJidEn470U=
Subject key identifier: E3:CF:29:E1:FD:8F:06:D9:05:E0:F2:42:7E:02:BF:68:DA:AF:F1:9A
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7E34CD81E4E6C2161614BE9D16BEF
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/488p4f2PBtkF4PJCfgK_aNqv8Zo.roa
Signing time: Mon 02 Jan 2023 09:37:31 +0000
ROA not before: Mon 02 Jan 2023 09:37:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 188.255.140.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:e3:4c:d8:1e:4e:6c:21:61:61:4b:e9:d1:6b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3cf29e1fd8f06d905e0f2427e02bf68daaff19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d8:7e:90:b9:37:c3:89:91:ea:01:69:31:c3:
ed:67:eb:26:69:c3:a4:08:fb:df:04:69:94:8a:ed:
fd:38:a1:16:e8:e1:6a:d8:2a:12:84:89:28:0e:e3:
78:f6:a3:d2:61:fd:88:e8:3a:51:d4:d8:14:93:8b:
c7:e8:9d:64:d5:02:4e:47:5b:96:e7:dc:cf:d7:f4:
bc:b7:fb:92:a4:7f:19:31:e7:1e:b5:d0:d5:3c:4a:
ea:c7:72:e6:34:c3:2e:8f:46:04:ac:c4:7b:96:62:
5b:3b:1d:07:2c:54:f3:8d:6f:cd:3c:1c:c4:7b:a4:
ce:3d:3b:11:53:33:eb:f7:3c:7d:fe:e6:f9:02:00:
53:06:1b:af:0f:5e:4e:a9:79:cb:44:b5:bf:0e:68:
e4:5d:ac:6a:51:78:7f:5c:f6:62:46:b5:a5:99:f1:
37:9d:3a:43:8f:7c:f0:4c:9d:e1:69:f9:ca:91:bb:
d0:2f:78:77:af:66:bb:e4:05:fc:26:c6:9a:9f:34:
47:d8:86:a0:88:fc:67:0b:b9:af:ad:a3:2d:6a:b2:
be:eb:73:6d:b2:90:ba:cd:d5:8d:5b:64:fc:8a:35:
97:bc:f4:bb:78:1a:0e:3e:6b:61:b0:3b:d5:d8:52:
19:01:bf:dc:b3:d1:bc:5c:ce:25:3b:b7:21:b1:d0:
81:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CF:29:E1:FD:8F:06:D9:05:E0:F2:42:7E:02:BF:68:DA:AF:F1:9A
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/488p4f2PBtkF4PJCfgK_aNqv8Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.140.0/24
Signature Algorithm: sha256WithRSAEncryption
40:72:ee:ce:a1:00:7b:31:67:16:54:4b:74:2d:c3:9b:77:99:
46:33:3c:85:68:b2:f9:aa:7f:7f:c8:bc:09:97:bd:f8:27:1e:
23:37:3c:7e:99:b3:d1:5e:f6:94:18:2d:6c:a2:44:68:53:09:
4c:8e:c2:e9:42:73:f0:ec:d1:e1:c1:50:5b:2b:5e:30:14:6a:
72:04:b8:24:d8:72:98:ef:f5:52:c8:82:52:de:16:54:ff:e6:
66:0a:c6:81:fe:7d:7e:5d:39:3c:92:96:42:35:e0:8c:89:b8:
16:71:df:b1:2e:11:92:b7:05:31:03:f0:19:35:3e:15:86:58:
bd:7b:a6:ba:ae:fc:8c:91:ee:67:17:f9:60:2f:d5:46:6f:20:
83:30:34:4d:65:b0:68:ac:50:94:0e:a5:5d:cf:f7:33:46:d9:
cd:36:32:a4:c6:5d:25:7e:b7:c0:ea:ab:83:fa:76:ac:79:9e:
fd:62:62:ea:de:27:ab:0d:31:ab:f3:c8:15:42:b0:57:41:81:
47:d3:ed:86:13:86:de:23:7b:43:6c:1d:34:e7:87:41:f3:dd:
78:2b:43:a5:80:da:46:ee:b2:62:69:85:11:b8:b6:8b:ce:74:
5d:a9:f7:f9:19:86:12:44:b8:e5:68:38:31:31:c3:7d:9a:64:
6e:32:2c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org