Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Dhxfe5MK3EL83ozgAOyb19lCHtc.roa
File: Dhxfe5MK3EL83ozgAOyb19lCHtc.roa (raw, json)
Hash identifier: uHaS1E2vFtmgWsJDpFKkTF8+4NSi4YmNy5Qot7XbXi8=
Subject key identifier: 0E:1C:5F:7B:93:0A:DC:42:FC:DE:8C:E0:00:EC:9B:D7:D9:42:1E:D7
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018CC56E11E50D585E87B374C75167C46536
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Dhxfe5MK3EL83ozgAOyb19lCHtc.roa
Signing time: Mon 01 Jan 2024 14:29:34 +0000
ROA not before: Mon 01 Jan 2024 14:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198786
IP address blocks: 188.255.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 10:44:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:11:e5:0d:58:5e:87:b3:74:c7:51:67:c4:65:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 1 14:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e1c5f7b930adc42fcde8ce000ec9bd7d9421ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:63:ee:3c:7a:eb:be:9d:a7:8e:da:ca:fb:31:
10:f0:86:5c:73:b1:32:00:4f:45:a2:b0:2f:40:1f:
de:d0:98:f0:65:62:ee:e0:10:89:bb:e3:a2:ef:db:
89:27:52:6b:f2:f6:1d:27:62:7f:eb:3f:5a:61:72:
80:0d:18:7d:17:89:42:2b:77:4a:38:d4:2f:62:2d:
b7:c3:6a:74:35:19:2c:48:e3:34:43:ac:17:59:5a:
c2:10:be:ed:fc:8d:9a:a0:f4:c6:3c:28:1c:03:cc:
e7:a5:49:cd:f0:90:74:bd:37:2a:ef:25:64:73:69:
3b:c4:a1:e8:c2:86:f4:96:3f:58:35:4d:0e:0f:36:
66:28:2f:88:84:a5:c1:de:20:38:9e:77:e1:44:56:
25:3f:42:ae:1c:85:44:3d:06:34:ee:a1:8f:38:26:
9e:73:22:9f:81:31:af:07:b5:f3:89:a8:09:a1:4a:
c1:1d:0a:1b:2b:aa:f8:01:db:5c:76:42:c4:b1:03:
f0:e3:2b:1a:3a:00:57:01:f5:82:58:15:cb:48:99:
78:ed:d8:1f:6a:ca:c7:1b:bf:72:a1:f1:62:5e:95:
c3:81:c6:32:91:5b:6f:b2:69:2d:f3:d6:4a:bd:ef:
0d:fc:07:ac:76:38:db:5e:7c:29:5a:f0:f9:a9:43:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1C:5F:7B:93:0A:DC:42:FC:DE:8C:E0:00:EC:9B:D7:D9:42:1E:D7
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/Dhxfe5MK3EL83ozgAOyb19lCHtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.200.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:87:bd:31:c0:6e:de:7f:4e:c8:31:f9:3a:9b:27:5c:da:d7:
b5:3b:36:f7:dc:06:86:95:d8:34:4e:93:a9:20:28:7b:c3:e1:
3f:2d:b9:54:63:3e:6a:2d:e1:fc:65:dc:cf:88:e6:63:1f:40:
b7:7a:94:b4:b4:dc:28:be:6e:af:f2:70:41:9e:ae:6c:e6:56:
f1:f1:fb:f2:ea:24:6d:2e:4d:e6:82:2b:3e:63:3a:49:2e:96:
da:e2:74:b5:31:5a:80:ea:4c:66:a2:82:51:38:12:af:b8:f8:
9f:42:50:2a:da:5e:c7:b3:de:56:2a:c2:bc:e1:dc:98:63:c2:
11:2b:4f:97:d8:ac:64:55:42:1f:fc:80:d9:af:22:90:e7:4c:
43:b3:eb:f0:9d:f2:2a:45:d5:80:40:5a:0a:67:38:cf:62:ff:
43:44:1b:9b:26:10:8f:73:41:48:5f:a9:85:f7:4a:cb:a5:03:
58:0d:cc:c9:12:cf:5c:fc:5a:b7:35:73:a2:dc:92:12:09:a5:
b2:36:a2:ad:97:cb:b0:e6:f5:70:6b:54:c4:0c:34:ed:60:50:
ba:f5:d3:ba:75:90:60:7c:f7:e9:1b:68:ea:56:b7:11:85:77:
42:55:8c:9c:72:ac:de:f3:1f:fd:29:33:6b:13:d0:cf:56:a5:
e5:c0:84:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 5 14:32:33 2024 by rpki-client on console-fra.rpki-client.org