Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ITM5CWM2GZI0ZfUlYTtjrmySzJw.roa
File: ITM5CWM2GZI0ZfUlYTtjrmySzJw.roa (raw, json)
Hash identifier: YrCbl0f4R8W1J6q67fyMDxwOWOopBrYy4qqaUIlqE2Y=
Subject key identifier: 21:33:39:09:63:36:19:92:34:65:F5:25:61:3B:63:AE:6C:92:CC:9C
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018635BE499141259BB8093ADCD7A96221DF
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ITM5CWM2GZI0ZfUlYTtjrmySzJw.roa
Signing time: Thu 09 Feb 2023 10:35:08 +0000
ROA not before: Thu 09 Feb 2023 10:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 188.191.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 18:45:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:be:49:91:41:25:9b:b8:09:3a:dc:d7:a9:62:21:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Feb 9 10:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21333909633619923465f525613b63ae6c92cc9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f7:28:5e:09:fd:5b:37:8d:03:f8:62:15:af:
df:d6:24:90:8d:f4:f6:b7:b9:9f:6e:fc:dd:c0:c3:
d4:3e:0f:34:23:f9:3f:9e:d9:e7:15:c9:7d:7f:b8:
65:c6:8c:7a:d1:1d:04:88:1f:23:ca:4e:7c:73:e0:
65:24:e0:7a:e9:54:44:b5:54:a4:db:fa:7d:8b:a1:
79:d9:b7:45:65:99:f5:96:6b:0a:9d:02:c6:ed:4b:
15:9f:4c:bc:99:23:36:90:e4:5a:2d:03:ba:ea:8a:
8f:dc:50:8b:27:c5:6c:2b:b8:91:dd:55:9c:ff:8e:
08:e4:4f:92:c6:57:59:68:94:78:a9:cc:7c:0a:01:
ab:f8:bc:dc:05:9a:d4:2d:29:eb:81:e8:76:49:b4:
86:82:8d:1a:3d:28:24:1c:e7:8b:a8:aa:c3:5c:97:
5f:50:5f:b9:e5:f1:f1:0f:aa:fd:3c:80:85:07:8f:
94:1b:ae:42:30:95:97:25:7b:f6:7f:3d:eb:23:06:
5a:91:a6:cf:be:ab:f8:a0:1b:03:c0:c7:25:0f:3e:
88:f7:df:00:e5:34:20:20:09:23:fb:b7:3a:96:61:
d5:a4:36:ad:5e:e5:9d:55:e7:b5:a5:8e:34:99:48:
81:9e:a6:a1:1f:94:92:54:ec:a8:f2:a3:c8:ec:ef:
4a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:33:39:09:63:36:19:92:34:65:F5:25:61:3B:63:AE:6C:92:CC:9C
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/ITM5CWM2GZI0ZfUlYTtjrmySzJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.108.0/24
Signature Algorithm: sha256WithRSAEncryption
57:f3:a4:42:b2:13:85:41:e5:be:c1:9b:b9:56:5f:61:71:f3:
13:44:fe:53:a7:40:b1:e5:7e:d5:3d:e0:cb:32:ee:44:dd:2f:
ac:5b:d7:4f:06:8b:68:f0:06:1e:f2:59:4f:be:f0:06:52:e7:
21:e8:cf:1b:e9:c1:36:77:d0:f0:2a:a2:af:78:fd:d7:d0:b7:
dd:c6:c3:e0:cb:0e:b5:ea:82:6e:94:7d:10:b4:0e:bb:e2:71:
8b:f1:99:72:ee:5b:43:92:db:e1:52:a9:15:2f:4b:30:e5:42:
84:87:15:60:bf:88:71:9f:a4:4d:22:d4:71:a1:17:7e:88:90:
2a:1a:5b:97:11:23:ab:b4:53:60:2b:35:55:74:84:60:61:b0:
89:a7:00:70:e1:e6:f5:f4:47:0e:30:02:f1:de:06:ff:48:6f:
5d:6d:b8:3e:22:58:c5:8a:8e:e8:87:57:01:8f:d9:62:f1:cb:
34:41:7c:7a:24:40:f9:c5:38:fc:53:bd:2d:5c:72:f7:75:fe:
db:e7:da:66:06:ab:db:35:c2:ce:39:f7:48:67:a1:e8:e8:5b:
3f:aa:55:1d:73:7f:e5:e9:f9:1f:b6:f0:29:9c:87:58:9b:39:
81:ca:43:d4:5f:98:71:24:f0:13:b5:d8:13:ed:83:ec:54:cb:
d5:4f:0d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org