Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/_A_IMtreOf7KIOvTgTDK40otzQc.roa
File: _A_IMtreOf7KIOvTgTDK40otzQc.roa (raw, json)
Hash identifier: Q+9402B9pay/TVEp31RgCVX5YQEXrEAtg8ysqeoFZxI=
Subject key identifier: FC:0F:C8:32:DA:DE:39:FE:CA:20:EB:D3:81:30:CA:E3:4A:2D:CD:07
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 0190265C317DC8DE46D17D5BC5C72868BC46
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/_A_IMtreOf7KIOvTgTDK40otzQc.roa
Signing time: Mon 17 Jun 2024 13:21:34 +0000
ROA not before: Mon 17 Jun 2024 13:21:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56971
IP address blocks: 188.130.154.0/24 maxlen: 24
188.130.206.0/24 maxlen: 32
188.130.207.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 24 Jun 2024 07:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:26:5c:31:7d:c8:de:46:d1:7d:5b:c5:c7:28:68:bc:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jun 17 13:21:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc0fc832dade39feca20ebd38130cae34a2dcd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6f:f8:ec:f1:28:80:36:f2:6e:c6:c9:20:b8:
37:89:47:9a:2a:59:15:d7:32:ea:be:df:f4:3b:7c:
74:dd:e6:24:6d:81:f3:b5:d1:39:fd:8c:7a:03:81:
d4:11:ce:c1:69:08:53:b5:f2:d8:3b:a9:cb:f3:1b:
f9:13:e8:ba:67:2c:a9:4f:ac:d0:1e:f9:c8:67:5d:
d9:01:e6:d8:4b:76:83:52:b8:d7:87:4a:ca:04:5a:
4e:cf:ea:4d:6a:ce:08:29:bd:6f:ae:43:ae:77:d1:
6e:f9:1d:46:6c:59:cd:64:e6:40:4c:a3:ff:68:57:
f1:a5:d5:ce:9c:fa:1b:c0:56:a2:9d:81:10:2f:ce:
95:34:60:d2:f1:d3:e9:9a:12:bf:48:d0:36:91:05:
36:11:4f:6b:b6:eb:2a:3e:09:f2:93:39:6d:3c:ab:
b7:60:ab:8a:08:d1:e4:e5:a2:d9:18:e9:72:28:47:
25:50:c0:ea:0b:ac:1f:ab:06:b6:bc:57:66:9b:e1:
48:40:94:82:78:72:51:d6:f9:9b:c7:78:38:d5:a8:
47:0f:be:87:55:f9:db:ff:29:b2:3f:ec:17:31:11:
94:8d:18:93:5d:66:cc:32:92:6d:c8:75:3c:ff:17:
09:bc:22:4c:bc:91:ff:6d:cf:c8:fa:08:1e:c4:2a:
25:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:0F:C8:32:DA:DE:39:FE:CA:20:EB:D3:81:30:CA:E3:4A:2D:CD:07
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/_A_IMtreOf7KIOvTgTDK40otzQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.154.0/24
188.130.206.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:73:f5:c2:43:ba:29:06:4d:39:a1:20:ff:42:c1:a2:20:18:
1b:77:26:00:f4:38:29:4a:a7:75:06:63:ec:29:07:67:69:74:
7a:cb:57:a6:96:d1:ce:39:07:98:ba:ca:61:d5:28:c2:5c:64:
0d:c4:4e:b8:87:da:55:d4:77:ae:63:05:c4:1f:8a:d4:bd:c7:
98:0e:3d:0d:1a:48:a0:a9:6b:86:76:5a:75:74:a4:66:1b:38:
06:4d:ac:a1:21:49:f5:a0:13:86:65:32:c7:01:af:98:aa:3a:
18:3a:a6:05:27:4d:2b:78:0b:e9:93:dc:4a:c2:26:3e:86:49:
bd:27:81:2b:00:72:8c:52:20:eb:c2:7d:df:dc:54:52:e9:d3:
1b:5a:01:b5:39:57:cd:cb:bf:fa:52:f9:bb:71:43:92:cd:67:
ea:aa:92:ff:d8:5c:b5:d2:36:5d:7f:25:15:3b:82:8f:86:11:
a4:b8:3e:8d:c6:08:7b:60:e5:67:16:c2:fc:31:47:35:1f:81:
f9:90:a5:b7:d0:ef:16:ce:65:3b:c3:6a:ad:e9:fe:82:5d:d9:
fd:f6:d4:71:e2:53:0a:7e:27:75:1e:d8:ee:84:f1:3a:44:68:
22:10:b7:5b:de:40:f6:52:bf:a0:b1:99:d9:33:a2:07:70:47:
1a:70:97:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 10:44:44 2024 by rpki-client on console-fra.rpki-client.org