Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/mOleRrmC5Lf27AlIx5m3OtlBfss.roa
File: mOleRrmC5Lf27AlIx5m3OtlBfss.roa (raw, json)
Hash identifier: K4eITHlwydlXLB7hUxhJEuJNh76nLIVniFfUY4borBY=
Subject key identifier: 98:E9:5E:46:B9:82:E4:B7:F6:EC:09:48:C7:99:B7:3A:D9:41:7E:CB
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 019383DDC7654D06EC0DBF8ABFD44C6EC685
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/mOleRrmC5Lf27AlIx5m3OtlBfss.roa
Signing time: Sun 01 Dec 2024 20:16:10 +0000
ROA not before: Sun 01 Dec 2024 20:16:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211804
IP address blocks: 188.132.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:83:dd:c7:65:4d:06:ec:0d:bf:8a:bf:d4:4c:6e:c6:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Dec 1 20:16:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98e95e46b982e4b7f6ec0948c799b73ad9417ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0d:19:70:4f:53:24:81:19:fa:c9:53:f3:66:
a7:63:f3:9e:d0:ea:e5:2d:ba:f8:a0:9e:f9:b4:1c:
cf:55:ce:30:1e:be:e1:d1:ba:b0:04:d1:95:0e:a8:
86:16:c3:d6:c7:93:39:7b:2f:08:73:21:4b:28:31:
02:f5:0c:03:94:51:ea:7c:1e:02:10:27:ca:11:39:
95:3b:0a:b3:21:78:b7:3f:f2:d2:94:fc:28:d0:13:
59:92:cf:3d:13:a6:e1:1c:b8:94:64:8b:72:81:8f:
a8:b9:31:56:cc:50:07:d8:12:c3:76:80:9c:80:27:
8f:a0:4c:77:e2:d9:69:94:51:25:bf:97:e8:ab:f2:
fe:ea:e1:32:f4:46:d3:fd:88:43:c4:09:17:32:1c:
d2:1c:48:2a:3d:8b:63:26:1f:2d:1f:7b:c6:c2:87:
ff:1a:a8:e8:c6:8b:cd:12:09:a2:bd:1e:fe:62:2c:
54:64:29:7a:aa:d5:7c:1c:02:ef:33:25:10:80:05:
0a:01:b4:f1:c1:69:ab:05:f5:e9:d8:1f:a6:b5:90:
7d:bb:ea:8a:ce:bf:cf:50:16:eb:ff:59:31:5c:b9:
1d:a6:8c:d6:3f:4b:cf:5e:f1:d3:d0:78:73:61:7c:
6a:22:c5:96:31:0b:18:ab:c0:43:69:b0:0e:08:e9:
ba:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E9:5E:46:B9:82:E4:B7:F6:EC:09:48:C7:99:B7:3A:D9:41:7E:CB
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/mOleRrmC5Lf27AlIx5m3OtlBfss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.153.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:86:34:1f:9d:4a:b4:c4:14:4f:4d:26:12:04:54:a8:bc:62:
db:c2:66:1c:fe:15:76:0e:94:1a:45:a7:15:39:ac:a2:f4:98:
34:1c:f8:00:56:93:7b:2a:3c:47:8c:91:8f:55:a5:99:73:0c:
f3:8b:f2:48:13:98:a7:ff:ad:98:f0:ee:2d:33:a4:54:16:5b:
e3:91:f3:09:7a:08:8a:06:67:14:8c:a5:2c:ca:22:a2:9b:a9:
34:50:f2:b5:b3:9f:20:ff:72:49:c4:67:39:0d:14:ec:1c:ca:
18:69:18:26:28:6b:4b:67:48:9f:e5:3d:55:29:1e:fc:44:11:
2d:c2:a2:66:2b:c4:70:84:3f:f5:e7:57:7c:bd:90:e5:ca:a3:
d5:85:b0:5d:2e:3a:06:90:cb:2a:75:c0:fa:b7:f0:03:67:8e:
b9:c4:46:57:bb:fd:08:a0:01:0d:f2:e0:b4:38:eb:ae:ec:2a:
e6:23:3c:a6:d5:0d:85:15:65:75:16:79:b6:39:ce:20:24:71:
06:39:25:e6:90:6f:db:74:52:f7:2b:16:f5:49:ce:c5:58:0e:
42:97:d2:cd:a7:1d:5b:9f:99:fc:20:98:45:45:8f:c5:bf:b8:
e6:ec:b6:85:c5:ae:5d:ae:8c:75:77:64:87:bc:a1:18:0c:32:
b1:ba:bc:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:58:40 2025 by rpki-client