Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/f9511KhcNqODeoI8ns7kUHAKKUE.roa
File: f9511KhcNqODeoI8ns7kUHAKKUE.roa (raw, json)
Hash identifier: TcAt/Jjt454+YkdcIU5goabB2dA9m6Z83GlrNk8F5TA=
Subject key identifier: 7F:DE:75:D4:A8:5C:36:A3:83:7A:82:3C:9E:CE:E4:50:70:0A:29:41
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018D5E4420BB0060034588615252F1EEDF39
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/f9511KhcNqODeoI8ns7kUHAKKUE.roa
Signing time: Wed 31 Jan 2024 06:45:39 +0000
ROA not before: Wed 31 Jan 2024 06:45:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 188.212.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 08:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:44:20:bb:00:60:03:45:88:61:52:52:f1:ee:df:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 31 06:45:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fde75d4a85c36a3837a823c9ecee450700a2941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2f:ee:70:9e:fa:56:81:27:c8:f1:a9:6d:d0:
3c:cb:b8:61:89:10:97:43:2a:38:18:9f:7a:79:2c:
00:1f:a4:06:89:28:1c:ca:64:93:41:e9:09:b0:3b:
00:d9:dc:24:80:83:95:0e:b3:56:f6:db:e9:a7:e8:
91:7e:b5:cd:2c:bf:c7:bb:85:1d:de:f3:41:b9:71:
be:7f:91:5d:23:62:ad:68:95:b8:59:76:f6:be:29:
bb:02:89:f5:e7:ed:e3:47:f0:eb:a9:d6:7f:c0:cd:
f9:4b:67:17:e9:c6:65:b8:55:b5:33:90:60:b9:7c:
89:c8:f4:49:c4:dc:6e:e4:a3:fd:64:df:b9:0e:88:
fa:41:f8:ed:8b:d4:50:39:ae:f9:ea:67:37:94:01:
1f:4c:3e:70:71:6c:9c:e5:bd:7b:a8:15:03:ce:4c:
9c:b1:37:8d:24:d6:b9:4d:ff:f9:b6:e7:79:75:b9:
a2:69:70:bb:a6:33:20:f0:5d:70:02:b5:ea:d3:e6:
e6:b3:21:02:b1:ff:8b:c6:2d:15:3b:9d:05:f6:0c:
f1:dd:84:af:ca:ca:ba:2b:5b:bc:5d:be:d5:ca:3b:
65:0a:b2:29:eb:70:3f:b3:f6:0a:15:d8:ad:15:d2:
f8:b6:fa:29:99:f9:0b:e3:2d:2b:88:33:bd:94:42:
6c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:DE:75:D4:A8:5C:36:A3:83:7A:82:3C:9E:CE:E4:50:70:0A:29:41
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/f9511KhcNqODeoI8ns7kUHAKKUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.99.0/24
Signature Algorithm: sha256WithRSAEncryption
57:af:1b:8f:ce:c6:07:95:3f:20:ae:fe:63:95:96:01:ad:eb:
7c:2d:39:38:4b:1c:77:b0:fc:52:56:ec:ca:2d:10:09:7a:ea:
7f:b4:67:18:99:ac:15:7e:53:ab:30:65:9c:e6:87:65:e8:45:
3b:66:b2:6f:cc:66:5d:26:dd:bb:6d:00:3a:e5:09:fb:93:00:
83:dc:36:61:5e:12:9b:f7:98:29:df:68:30:f7:59:26:29:7b:
90:44:6b:7a:9b:25:be:62:30:6e:9e:b2:ea:a4:1f:2c:65:0b:
2f:96:59:cf:83:33:65:9f:b7:8a:03:b4:71:bf:54:70:4a:22:
0e:41:bb:5d:a4:73:5b:0a:4f:25:53:28:c5:9e:67:2d:da:a8:
a5:98:55:90:ee:b6:d3:6d:9a:85:f7:d2:2f:25:17:7a:a2:e3:
e8:49:0b:c4:83:9a:3d:cb:5f:35:21:95:4d:2f:79:aa:97:0f:
24:02:c6:6c:c6:dd:b3:2b:20:15:0d:01:1d:cf:9f:d8:98:de:
10:40:40:5f:d9:53:1f:33:3d:a1:26:a6:f8:72:52:b2:27:02:
85:33:81:3d:8c:c5:70:1d:94:8e:38:6b:e0:b9:a3:b1:bb:77:
c4:b9:db:20:28:03:10:fa:dc:0b:77:78:c9:09:b3:11:e0:96:
ee:e9:b9:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:49 2024 by rpki-client on console-ams.rpki-client.org