Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/EOZ-LJLcp7hFcWW3LEupPxkhTAA.roa
File: EOZ-LJLcp7hFcWW3LEupPxkhTAA.roa (raw, json)
Hash identifier: vUYYxm50+b7CLxjE+8GXc3c4zV+txiDciWRyfOyT6nw=
Subject key identifier: 10:E6:7E:2C:92:DC:A7:B8:45:71:65:B7:2C:4B:A9:3F:19:21:4C:00
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0190863F1159FFED3CCE8C30C55DD8D84CD6
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/EOZ-LJLcp7hFcWW3LEupPxkhTAA.roa
Signing time: Sat 06 Jul 2024 04:13:18 +0000
ROA not before: Sat 06 Jul 2024 04:13:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.191.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 03:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:86:3f:11:59:ff:ed:3c:ce:8c:30:c5:5d:d8:d8:4c:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jul 6 04:13:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10e67e2c92dca7b8457165b72c4ba93f19214c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:df:f4:e3:fd:b7:ed:3e:1f:7e:9d:c9:64:15:
4f:e7:0a:ff:06:ad:c0:e3:30:f9:03:4e:00:95:0d:
fb:fa:cc:6c:de:3c:31:15:a8:ed:ff:2c:da:8b:bc:
20:e8:63:64:c2:83:9c:55:96:67:a0:e1:4f:ba:1b:
f1:19:a0:9a:94:76:00:27:18:9c:d0:33:27:f9:e6:
5b:d9:13:27:2b:09:fd:51:ee:88:6e:98:d0:80:19:
91:a0:e8:e9:6b:2b:e5:37:63:7d:3b:72:48:d5:b4:
f4:97:09:0c:af:33:ac:18:04:78:1f:b4:60:2e:ee:
23:f1:bf:7c:9a:0f:ae:b9:1f:c0:49:8d:12:e0:ea:
62:09:df:13:35:a3:d7:e4:62:08:7a:51:47:20:aa:
8b:03:f5:f4:fb:04:63:77:72:52:1e:85:c8:d5:2d:
7b:35:44:71:1d:3e:2d:13:e1:df:bc:bf:d4:7d:d2:
c4:ee:2e:3f:9d:04:a4:a1:e5:89:83:dc:f5:ff:ed:
36:d9:d5:96:c7:e0:b8:32:43:a3:5f:e3:94:96:19:
60:a7:db:d3:e3:f4:04:6e:74:55:62:c7:96:cf:7a:
70:62:0d:d2:99:7e:49:59:42:12:81:12:55:b2:48:
16:4b:cd:dc:cc:a2:a7:1a:0c:4e:50:d9:75:b8:a2:
d6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E6:7E:2C:92:DC:A7:B8:45:71:65:B7:2C:4B:A9:3F:19:21:4C:00
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/EOZ-LJLcp7hFcWW3LEupPxkhTAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.97.0/24
Signature Algorithm: sha256WithRSAEncryption
84:68:ae:cd:6c:a2:2b:86:6e:6e:ab:7f:f2:71:bc:6a:74:e9:
c3:72:9b:83:03:da:ba:b4:52:ef:b8:7e:27:07:1c:ce:0f:9b:
10:c4:9f:9a:5b:e8:27:f6:c2:76:d9:3c:bc:08:0e:83:25:3d:
3f:3b:73:31:51:51:5b:c6:b6:e7:85:c9:fe:b6:66:a2:c1:bc:
48:38:84:9d:be:05:a9:f3:06:0e:af:d4:a8:d5:c8:69:f0:b1:
5f:9c:77:fd:58:8f:8b:f4:30:ba:da:91:4f:35:ee:6c:42:03:
5e:a1:39:bc:06:06:fe:08:cb:0d:df:1b:2f:53:a1:30:6d:09:
81:bc:1e:65:46:f8:2f:a2:41:41:48:63:05:e3:81:4e:1e:2c:
fc:0a:6c:fa:95:f0:21:22:ab:3a:a0:34:e1:7e:f1:af:b1:21:
2d:a5:95:4c:9f:c1:29:5c:d5:ab:e7:2a:7f:8f:6d:af:fb:f6:
56:ad:42:c0:e7:92:04:c8:aa:7e:13:83:9b:06:d4:b8:8e:73:
df:a8:99:05:31:3f:10:29:c3:92:f0:fe:bd:d6:3a:66:9f:29:
15:e2:d5:25:99:e6:ba:d0:8b:76:eb:7f:50:a1:c3:c6:7a:86:
f4:f8:1a:5c:3e:21:9d:ff:38:cf:5c:3e:1d:00:37:7a:93:6e:
f0:7d:37:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 05:13:44 2024 by rpki-client on console-fra.rpki-client.org