Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/O0QE4DkH09agwG3YEZsus6TQT00.roa
File: O0QE4DkH09agwG3YEZsus6TQT00.roa (raw, json)
Hash identifier: qhgIq+nprNydX3BjiYZJXS2VUfoleSWW38DPrOf250w=
Subject key identifier: 3B:44:04:E0:39:07:D3:D6:A0:C0:6D:D8:11:9B:2E:B3:A4:D0:4F:4D
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0187FB782D0AB294317B3E26957E716306E2
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/O0QE4DkH09agwG3YEZsus6TQT00.roa
Signing time: Mon 08 May 2023 13:06:09 +0000
ROA not before: Mon 08 May 2023 13:06:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 188.255.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:78:2d:0a:b2:94:31:7b:3e:26:95:7e:71:63:06:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: May 8 13:06:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b4404e03907d3d6a0c06dd8119b2eb3a4d04f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0d:c5:b5:31:3f:37:83:b6:67:9f:c4:81:d6:
01:47:00:66:61:33:45:84:4f:e1:cf:7d:f1:90:c4:
bf:e9:a3:be:20:be:76:e6:0c:f5:fc:9f:85:20:3a:
d2:8b:0e:93:8f:29:75:19:bb:48:96:1a:9f:ab:ce:
d2:c5:b7:31:be:ae:e7:0a:26:68:36:df:c5:9a:d8:
83:cf:9d:d2:9f:ee:4f:d8:f8:8d:b5:f8:a1:b9:eb:
5a:60:ed:e2:60:5c:85:e9:ce:37:35:1a:af:f8:40:
6d:c1:6c:06:7c:93:db:b8:db:7e:8d:06:42:48:23:
32:bd:d5:0d:6f:89:42:c4:e7:1b:0c:90:70:1e:dc:
56:31:0d:80:e4:06:20:f9:a4:6b:33:22:ac:93:92:
53:69:05:4e:81:e3:3b:6c:a7:6c:7c:35:26:fc:e9:
f1:1a:8c:e1:96:4b:63:16:81:d4:2e:92:a3:39:47:
29:e2:0e:87:b8:79:21:51:d3:5d:aa:01:bc:83:d6:
9b:35:05:b2:8c:39:76:ed:99:f8:be:58:42:84:0f:
87:65:5a:49:6e:bd:ba:37:39:f4:15:fb:b8:69:cb:
b7:40:0c:97:1c:1a:5a:1a:cd:dc:8a:23:32:90:49:
73:72:a4:82:18:7a:49:76:b8:9a:37:a2:ec:2a:06:
1d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:44:04:E0:39:07:D3:D6:A0:C0:6D:D8:11:9B:2E:B3:A4:D0:4F:4D
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/O0QE4DkH09agwG3YEZsus6TQT00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.215.0/24
Signature Algorithm: sha256WithRSAEncryption
19:20:bd:97:59:7e:6b:cd:fa:f2:18:18:25:1c:ea:28:21:41:
06:78:9d:97:1d:e9:1c:3d:e2:54:e0:46:0d:6b:2c:d0:2c:05:
63:89:72:5c:a7:2c:17:ee:59:9c:c6:8f:a1:6c:46:56:fb:f2:
2c:28:4e:d5:1f:65:a3:c5:e1:4d:81:8f:af:57:34:54:f3:f9:
7f:52:ba:36:a3:89:b3:ff:e3:50:82:3f:86:a5:28:7d:48:6a:
47:2d:e9:91:ee:0a:54:2a:1c:0d:5d:42:0a:53:43:68:1f:a3:
18:61:fe:20:cf:04:a7:05:e9:03:ed:00:7e:ec:51:fa:57:f9:
9d:d3:ff:05:cf:c4:d6:83:93:96:28:ab:27:70:3b:99:08:76:
9a:aa:5d:71:9f:92:e6:08:a0:f6:7d:f7:98:82:b4:12:38:e9:
9c:4a:d7:22:62:6e:e2:71:87:b7:9f:d5:5c:d7:41:e8:70:a5:
01:27:8c:19:22:4e:8b:1b:6e:5b:36:49:0f:a2:e0:e0:9b:8c:
95:41:93:99:4d:8c:70:9e:bf:28:5b:9d:88:b7:8c:11:00:cc:
ff:72:36:07:32:b0:5e:88:ff:cc:b8:b6:84:2e:0c:d5:5e:7e:
0b:cd:35:c3:45:19:26:cb:1f:a3:e7:ac:c2:e9:e4:15:8e:f4:
a4:a5:45:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org