Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/dONjj_lLno3rj1YALcAeIdqUEnE.roa
File: dONjj_lLno3rj1YALcAeIdqUEnE.roa (raw, json)
Hash identifier: pn5nqHUWuBJayZSjJollVXtSFbayvDSjUmBaZA9XX20=
Subject key identifier: 74:E3:63:8F:F9:4B:9E:8D:EB:8F:56:00:2D:C0:1E:21:DA:94:12:71
Certificate issuer: /CN=4ce74cf63723c0269d5283b1065821af384a9a26
Certificate serial: 018CC26D528777109CB02379C315D569F7B3
Authority key identifier: 4C:E7:4C:F6:37:23:C0:26:9D:52:83:B1:06:58:21:AF:38:4A:9A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOdM9jcjwCadUoOxBlghrzhKmiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/dONjj_lLno3rj1YALcAeIdqUEnE.roa
Signing time: Mon 01 Jan 2024 00:29:53 +0000
ROA not before: Mon 01 Jan 2024 00:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 188.227.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 16 Feb 2024 02:52:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:52:87:77:10:9c:b0:23:79:c3:15:d5:69:f7:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce74cf63723c0269d5283b1065821af384a9a26
Validity
Not Before: Jan 1 00:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74e3638ff94b9e8deb8f56002dc01e21da941271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a4:45:80:e1:2a:79:d3:3b:bf:db:07:fe:8a:
d9:93:e5:74:20:2b:25:fe:6b:76:05:83:d2:9f:ed:
77:0e:70:5a:55:35:87:44:91:05:33:6d:e6:f2:35:
b6:28:a3:a0:02:c3:43:6f:f7:93:0d:cb:ce:dc:ff:
6d:b5:7b:b3:40:d2:d8:72:64:b8:13:b9:de:24:03:
5b:7c:8e:e8:aa:24:6b:07:d3:7e:65:4c:60:8e:9b:
67:c2:d7:ef:56:84:89:9c:1c:ed:56:15:6f:2f:11:
f2:0b:5e:72:81:a3:95:91:08:b3:d8:cc:a9:b4:7f:
40:cd:f2:d9:fe:78:d6:35:23:9a:28:bf:6d:8f:bf:
90:30:e9:9c:c6:7c:ef:22:c3:af:81:b6:21:82:83:
b4:7d:1f:66:56:5e:12:41:88:b6:b6:5e:87:b1:ed:
08:de:d9:f1:5a:0d:9e:54:85:d9:89:4f:16:cd:80:
d9:f3:b8:ab:bb:70:06:7d:7a:45:1e:95:3c:e7:6b:
50:7e:8e:13:ba:e7:0c:1f:3a:d2:36:45:f3:70:b8:
01:58:e4:38:70:e5:8e:9c:e2:75:cf:45:76:21:cf:
d1:8a:89:00:42:c5:31:ac:66:25:18:3a:9a:92:36:
8a:3c:69:a3:a9:07:d5:41:1b:ab:ec:d9:95:69:fe:
3a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E3:63:8F:F9:4B:9E:8D:EB:8F:56:00:2D:C0:1E:21:DA:94:12:71
X509v3 Authority Key Identifier:
keyid:4C:E7:4C:F6:37:23:C0:26:9D:52:83:B1:06:58:21:AF:38:4A:9A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOdM9jcjwCadUoOxBlghrzhKmiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/dONjj_lLno3rj1YALcAeIdqUEnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/TOdM9jcjwCadUoOxBlghrzhKmiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.227.198.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:07:f3:34:04:18:1e:5b:27:1b:b1:e0:85:dc:58:e0:30:1e:
45:ba:3c:c2:97:08:f0:8d:a5:04:73:b7:39:d1:64:aa:23:fc:
72:d3:d1:15:7b:69:77:38:fc:25:a4:30:09:34:e4:2c:87:0c:
d6:97:8d:c4:14:45:8f:0e:7c:8e:22:e3:5b:7a:eb:f1:85:b5:
38:2b:ae:3a:e6:71:a8:fc:85:cc:93:b9:1f:07:db:03:10:78:
36:7c:9f:7d:c3:30:e2:1d:42:a2:ec:4b:c1:3b:2e:fb:1c:00:
eb:b1:0a:3a:bd:a7:6f:b9:4e:b5:74:77:c7:78:5c:fc:c6:b6:
13:5a:b8:41:bb:17:9e:a7:9b:c3:3a:a1:5a:af:29:cd:45:18:
1f:0f:d9:39:8f:2f:42:12:f4:81:9d:19:7b:79:e4:29:05:c6:
75:59:be:0e:38:a6:66:09:45:4e:ee:9e:c6:cc:13:ca:74:69:
de:0b:07:4b:78:22:08:3f:e1:82:fe:b5:a5:44:0c:16:b7:b7:
a2:8e:f3:99:78:52:9b:ec:b0:33:9b:91:13:11:73:3a:90:60:
53:f4:c2:06:98:98:4d:3d:b5:91:43:89:ee:c3:cf:91:27:1e:
be:87:97:25:6a:20:5a:51:9e:94:30:2f:41:ab:0f:b0:f1:8d:
fd:14:e6:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org