Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/OYlhSjmiV37Vxxu3fTob8HRX1K0.roa
File: OYlhSjmiV37Vxxu3fTob8HRX1K0.roa (raw, json)
Hash identifier: JUebDXHcB76VHJatfOwLWchISuGhP746idQuZ/C3r7I=
Subject key identifier: 39:89:61:4A:39:A2:57:7E:D5:C7:1B:B7:7D:3A:1B:F0:74:57:D4:AD
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018FE2891D7525580A4AF778B59B75C57858
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/OYlhSjmiV37Vxxu3fTob8HRX1K0.roa
Signing time: Tue 04 Jun 2024 09:16:27 +0000
ROA not before: Tue 04 Jun 2024 09:16:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56971
IP address blocks: 188.130.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jun 2024 13:20:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e2:89:1d:75:25:58:0a:4a:f7:78:b5:9b:75:c5:78:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jun 4 09:16:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3989614a39a2577ed5c71bb77d3a1bf07457d4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:c4:20:73:3d:ef:73:32:19:8c:d9:43:f2:82:
76:9b:10:76:c8:53:53:30:93:23:7e:71:2b:e0:9a:
41:28:59:68:ba:e2:92:46:02:b1:8c:c1:4a:39:12:
48:af:7e:7d:43:b9:57:95:77:b2:dc:9b:ff:9d:e6:
1d:2f:e3:43:a4:fd:d2:b8:cb:33:6e:f5:20:8b:9f:
c9:34:6d:93:c2:21:7f:30:55:a8:5e:8a:b5:5e:29:
fb:b8:49:bd:25:ff:9e:11:b4:c8:14:50:19:20:5a:
9f:79:82:7e:88:ee:43:16:b7:dd:3c:ef:33:ca:a2:
a7:08:15:a8:c9:3b:96:60:6e:34:8c:ef:0c:52:57:
98:ed:99:22:be:02:cb:fe:2f:be:69:24:24:db:88:
cd:84:ee:26:27:fe:3e:dc:36:9b:89:c0:aa:eb:c6:
a7:74:ac:c3:5a:b9:98:5d:35:d9:a6:bf:9d:cd:e9:
1d:31:90:76:4f:a8:ab:c0:11:4d:74:d1:57:c1:fc:
e1:96:fc:1b:a0:16:72:72:76:52:bc:f1:63:fb:26:
04:44:d3:3c:29:57:87:c3:84:e1:e0:ae:80:6d:c4:
f3:7e:bb:68:70:d1:6d:2c:cf:d8:fc:9a:70:b9:95:
6c:ac:ab:c6:14:27:cb:5a:16:76:cf:f7:d1:28:f5:
eb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:89:61:4A:39:A2:57:7E:D5:C7:1B:B7:7D:3A:1B:F0:74:57:D4:AD
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/OYlhSjmiV37Vxxu3fTob8HRX1K0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.154.0/24
Signature Algorithm: sha256WithRSAEncryption
28:97:11:c3:07:f3:cc:8e:8d:b4:25:a5:fe:2a:87:a3:29:bf:
93:68:e6:8f:28:df:55:85:f1:4d:ea:9d:59:9c:f9:8b:99:53:
c7:3b:fd:47:f6:4c:83:3e:15:03:05:e1:58:b6:ca:df:24:a2:
a1:ad:05:4b:a2:09:8c:54:07:46:3e:55:c5:4e:70:00:25:ca:
37:1b:d2:02:5f:77:76:5a:ca:8f:81:c6:ee:ae:2a:66:0d:48:
9b:4b:11:f8:0c:77:b8:0d:08:c2:88:a5:1a:7f:06:ad:39:0d:
26:ce:cb:80:60:31:9e:08:07:64:97:b5:72:d5:85:22:f0:d2:
83:b4:a8:3b:f8:66:7b:03:98:6e:2c:b6:43:71:0a:10:14:63:
e7:41:cf:79:e1:80:a6:81:56:4d:6e:24:97:5a:0b:c9:7b:84:
8d:46:93:f3:89:f7:bd:37:b6:f7:5a:b1:36:9d:41:04:d7:1c:
83:bf:2b:7c:23:c7:73:af:35:38:70:74:9b:6e:56:6c:db:36:
18:95:d6:68:52:04:11:73:b5:e3:08:4a:c3:0b:ef:5c:8b:38:
18:4f:9b:e3:af:a6:47:81:74:88:62:ff:1f:55:fb:92:a2:ab:
02:df:88:37:af:eb:46:f6:d3:a6:4d:7c:eb:df:53:97:25:70:
d4:25:6e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 17:38:11 2024 by rpki-client on console-fra.rpki-client.org