Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/zHVVqgxqjMrBW8veBKVEjgk9B_A.roa
File: zHVVqgxqjMrBW8veBKVEjgk9B_A.roa (raw, json)
Hash identifier: GGCNQbU2hneha7vl8xNEdfecmI1O7m1DxKIY8HmN4dg=
Subject key identifier: CC:75:55:AA:0C:6A:8C:CA:C1:5B:CB:DE:04:A5:44:8E:09:3D:07:F0
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018BAEB322A0A9A74E60723F7221D2590DF3
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/zHVVqgxqjMrBW8veBKVEjgk9B_A.roa
Signing time: Wed 08 Nov 2023 11:30:57 +0000
ROA not before: Wed 08 Nov 2023 11:30:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210512
IP address blocks: 188.119.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:b3:22:a0:a9:a7:4e:60:72:3f:72:21:d2:59:0d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Nov 8 11:30:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc7555aa0c6a8ccac15bcbde04a5448e093d07f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7c:87:87:cd:84:62:2c:5b:91:a4:25:ec:12:
8f:63:b0:e7:0e:f0:3b:f0:3d:7b:8e:5b:c8:0a:8b:
51:e3:17:88:d0:ef:96:7a:fb:96:14:1f:19:65:7d:
35:4f:3b:24:45:73:cc:5d:18:8a:0d:7f:37:87:fa:
c4:2a:ba:57:58:c9:9a:c6:de:a7:2b:57:9a:bd:8a:
88:c4:e4:a4:ba:36:b6:9d:a2:b5:65:e3:c3:8a:da:
0d:ca:7f:f8:37:1c:fa:5b:e4:4b:63:9d:a3:81:5d:
17:f9:96:2f:12:ef:8f:1e:45:8f:f3:28:48:25:82:
97:ae:7f:1c:41:52:52:6d:8c:ca:7f:6b:4a:e9:93:
06:e9:7d:cf:97:c2:35:9b:1a:32:ce:83:17:f1:86:
69:1e:b0:7b:6e:ad:b2:44:3f:6e:47:a8:a0:88:d5:
62:8e:71:7b:7b:87:b8:16:df:26:66:c6:0d:a4:8c:
8d:cf:f0:68:ce:a4:ad:3b:72:da:c4:3a:10:9f:17:
54:c1:b4:b4:1e:fe:ea:3c:0d:79:f0:8a:7c:61:c9:
66:18:57:c4:8d:89:28:b2:49:e3:20:b4:62:68:75:
67:f9:4b:3d:e4:d3:4f:ff:a7:57:32:92:b8:ef:a5:
f3:59:5e:bb:95:2d:20:d1:8a:aa:bd:75:37:3e:a8:
1d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:75:55:AA:0C:6A:8C:CA:C1:5B:CB:DE:04:A5:44:8E:09:3D:07:F0
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/zHVVqgxqjMrBW8veBKVEjgk9B_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.124.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:d2:8b:52:c8:7d:91:fe:f2:dd:4c:3f:9e:86:a4:54:cc:8d:
a8:af:cf:35:42:8a:b5:a1:19:d7:c2:3b:ae:67:d7:30:de:90:
02:4b:b8:09:8a:5b:5c:47:22:81:3c:77:9d:ec:36:e9:e7:23:
6e:61:a4:fc:a6:b0:19:5f:20:09:42:54:ba:4a:97:a1:aa:e1:
4b:bd:b8:48:0f:fc:5c:e7:40:88:aa:3f:5a:26:59:e9:9b:c7:
64:10:cb:46:e5:1c:1b:99:94:27:19:fe:ed:8a:3f:2b:84:e4:
ac:d7:cc:7f:b8:c3:78:a2:fd:e6:21:98:ef:8c:5b:85:c9:56:
0b:a9:50:a4:ea:68:61:34:0e:37:2b:97:9b:00:7f:63:af:0f:
dc:14:c5:31:76:63:f5:09:45:0b:65:8c:ed:8a:53:cc:09:6b:
a8:2b:d1:85:89:1d:64:71:55:65:5a:2a:58:a2:f5:1d:b9:c2:
ec:58:21:e7:62:df:31:87:5f:f1:ee:0a:c7:5f:39:30:76:7c:
30:0d:8a:1d:73:aa:b5:75:c8:e7:a1:3e:84:3b:1b:8d:97:a7:
54:5e:43:a1:a2:de:44:d6:7d:f7:f4:e4:58:a2:7d:90:2f:70:
a7:95:e1:57:87:da:78:35:00:d7:b9:fa:bd:b4:ae:a1:24:cd:
74:da:4b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:18 2024 by rpki-client on console-ams.rpki-client.org