Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/rTvp-Vx2DAEErFl0NKkvA4ew1Ok.roa
File: rTvp-Vx2DAEErFl0NKkvA4ew1Ok.roa (raw, json)
Hash identifier: CXALgh1UDWgyW/oH3ZNdwMsFwtugrjD+CaPX7HzP5NA=
Subject key identifier: AD:3B:E9:F9:5C:76:0C:01:04:AC:59:74:34:A9:2F:03:87:B0:D4:E9
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018572BA48A8CF85C5F89EBDE0C3D30E30C2
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/rTvp-Vx2DAEErFl0NKkvA4ew1Ok.roa
Signing time: Mon 02 Jan 2023 13:44:48 +0000
ROA not before: Mon 02 Jan 2023 13:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5505
IP address blocks: 188.130.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:48:a8:cf:85:c5:f8:9e:bd:e0:c3:d3:0e:30:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 2 13:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad3be9f95c760c0104ac597434a92f0387b0d4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0f:da:e4:cf:51:f6:94:13:a4:e0:f5:9a:6f:
93:aa:b1:c3:22:62:8d:c0:61:7e:c7:5f:56:c6:c1:
01:12:ff:cc:55:6d:9a:7d:1a:23:9d:73:63:99:5b:
da:b0:d8:c6:79:51:6e:24:fa:8a:2c:42:4a:15:74:
df:f8:2c:d2:ac:5a:3d:ae:76:94:03:02:cb:61:50:
00:5f:d8:ed:ac:94:b3:12:a7:75:da:77:74:b1:2b:
ea:c8:9c:30:00:54:fc:00:cc:ea:de:c1:36:cf:4c:
70:e2:03:78:8d:2a:06:b9:e3:33:13:5e:41:2d:11:
2c:1d:a6:84:a7:67:9d:78:fc:99:48:04:fc:1a:f9:
71:79:6c:8f:f4:77:3b:6c:ce:04:47:75:87:69:bb:
c9:fc:2d:98:92:9b:c1:49:c1:c9:13:36:cf:45:ba:
9a:7e:2a:29:45:78:62:f4:0c:66:99:81:f3:34:ea:
27:ca:ff:67:fc:76:14:0b:1d:a8:67:5d:12:ba:4b:
04:3a:98:b3:87:d2:89:57:5e:c7:82:f9:b9:08:2c:
6f:b5:25:96:72:7c:50:96:4a:f4:90:eb:35:c4:c7:
13:79:db:1c:8b:2c:25:67:c0:89:55:e1:78:3e:97:
4f:f1:13:26:eb:1d:4c:e3:3d:6d:ca:8b:33:76:6e:
a6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3B:E9:F9:5C:76:0C:01:04:AC:59:74:34:A9:2F:03:87:B0:D4:E9
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/rTvp-Vx2DAEErFl0NKkvA4ew1Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.247.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:b8:8b:5c:5d:1e:30:40:53:06:5a:33:13:2a:84:e0:ae:b2:
ab:8a:19:21:81:f5:a3:f3:29:18:19:26:76:a9:2c:d9:b4:4f:
94:6b:0e:4b:ed:fb:4d:a5:3c:4c:4f:5d:ba:c4:b3:f2:dd:fe:
25:55:fa:3c:77:5c:4f:2f:58:c8:19:e6:40:6a:d2:d5:94:ac:
b1:a0:ee:e4:6c:0c:e3:50:38:f0:23:93:ed:41:be:e9:92:ca:
57:e0:78:2e:f3:06:59:00:3d:d2:2c:46:61:ba:1d:7d:7a:9d:
8a:b3:84:a1:33:39:85:35:2c:a8:36:e6:54:08:71:45:f8:23:
80:87:df:12:3c:c7:43:1c:02:ee:6a:d1:50:d7:8d:d3:46:75:
01:d6:08:60:ea:a3:3e:d8:9b:98:05:ae:56:a7:7b:2b:17:40:
2f:2e:91:59:a4:82:38:47:6e:8a:b8:15:ed:f1:b1:1e:c3:17:
60:8d:92:0c:db:26:1b:64:b0:6c:6c:32:b8:ec:52:fc:59:2d:
e3:7c:43:a0:36:1d:7e:bc:fe:12:f6:0f:b0:64:5e:95:ae:18:
b9:da:4f:9f:ba:81:eb:e7:17:68:7c:e8:46:5f:96:7b:fc:87:
c5:aa:07:97:e1:bb:71:a9:79:62:22:69:e4:14:ea:01:e4:fc:
f0:cb:23:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:45 2024 by rpki-client on console-fra.rpki-client.org