Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/uoNNIz6kxfqkK6RxT9UsC4ladcM.roa
File: uoNNIz6kxfqkK6RxT9UsC4ladcM.roa (raw, json)
Hash identifier: eEOvoUf1Q8YczOmors71onVOhHD9MStaGqPOtM4n2y8=
Subject key identifier: BA:83:4D:23:3E:A4:C5:FA:A4:2B:A4:71:4F:D5:2C:0B:89:5A:75:C3
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 0190E9D0F858BF37824BCE1514F14DCFC56E
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/uoNNIz6kxfqkK6RxT9UsC4ladcM.roa
Signing time: Thu 25 Jul 2024 12:15:04 +0000
ROA not before: Thu 25 Jul 2024 12:15:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 188.66.26.0/24 maxlen: 24
193.108.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 09:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:d0:f8:58:bf:37:82:4b:ce:15:14:f1:4d:cf:c5:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Jul 25 12:15:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba834d233ea4c5faa42ba4714fd52c0b895a75c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:97:98:e8:42:e4:68:00:5f:48:91:47:cf:5d:
aa:4c:51:f9:b2:ff:c3:2c:96:60:c7:1a:76:09:3c:
15:38:1f:ea:c5:37:3d:e8:77:f5:a3:c8:63:2e:78:
61:8f:9f:39:6d:12:25:c3:52:3f:05:1d:8c:66:2d:
49:e2:00:b0:aa:21:3c:7c:95:97:0e:e8:b9:2f:6d:
ff:d6:ce:91:54:d2:74:2a:7c:66:53:93:8b:08:99:
56:a0:cd:a7:0f:25:6e:ed:9b:4a:6d:d0:63:0a:49:
53:57:01:c4:e8:42:7f:8f:5d:14:d0:ff:5b:2b:ca:
0e:d2:82:eb:dd:ef:2f:3d:17:8d:ec:9d:a3:4c:ad:
71:fc:b4:99:cf:51:71:25:c9:ba:bf:58:33:e5:7a:
77:4b:2d:a3:80:71:1a:2c:96:c0:40:ad:13:92:02:
59:4a:fe:da:3c:ba:3e:73:f0:3f:8a:88:2c:90:24:
76:ae:00:d3:2a:c2:37:d7:6e:4e:c4:81:46:a6:ae:
b8:55:a5:df:92:a1:8d:db:0b:a0:6b:27:de:99:17:
c6:7e:b9:7c:bb:05:7b:ad:e3:7f:2e:0a:93:d8:44:
2d:68:a4:5d:52:44:c6:10:9f:a7:08:b9:20:d9:13:
08:cc:29:18:3a:98:39:61:c9:ea:42:18:2a:bc:af:
d4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:83:4D:23:3E:A4:C5:FA:A4:2B:A4:71:4F:D5:2C:0B:89:5A:75:C3
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/uoNNIz6kxfqkK6RxT9UsC4ladcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.26.0/24
193.108.59.0/24
Signature Algorithm: sha256WithRSAEncryption
32:80:36:d5:29:94:d1:0a:bc:79:fb:aa:03:8d:ea:7d:bb:51:
0a:0e:00:69:db:7e:59:bd:e9:f8:63:b1:b1:f9:6a:00:de:06:
2f:b1:a6:37:8c:46:09:e3:64:76:70:77:aa:73:bc:30:25:c3:
60:35:23:56:7a:0e:cb:34:ef:63:21:09:92:1d:c2:27:ef:71:
c3:d7:7f:0f:d4:f2:b2:7f:5a:39:6e:b0:9b:79:f5:51:7e:b2:
51:d5:5b:96:17:27:6e:70:53:f8:ea:09:0f:d0:7f:bb:21:1d:
1e:98:36:7a:fa:f2:97:7d:d0:19:08:80:4e:1a:2c:ff:12:74:
c9:f9:a2:21:1f:de:1d:9b:9f:e8:e6:21:8a:be:35:c2:9d:87:
99:0a:54:e9:fe:82:6b:21:67:63:9b:ca:25:bf:c6:13:18:45:
08:a5:73:6a:96:03:87:e7:87:21:4f:7c:b9:8f:c4:63:0c:99:
8e:34:a2:8e:3c:94:37:39:94:1a:91:56:7c:e3:a6:fb:7f:10:
3e:f4:76:79:0e:bd:14:ab:ae:da:70:29:7b:a9:d3:18:77:85:
64:f5:8b:08:ac:bb:eb:1d:36:19:29:5d:15:97:7f:e8:85:7c:
bf:e4:02:d1:71:62:4d:96:5d:51:f9:c1:6f:73:28:f0:49:3f:
5c:c7:f0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 11:30:52 2024 by rpki-client on console-ams.rpki-client.org