Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/I7EEXdjyUdRfEF8m0_yb0EEJ1Bg.roa
File: I7EEXdjyUdRfEF8m0_yb0EEJ1Bg.roa (raw, json)
Hash identifier: mihDAGNDOsZUBE+n/16aNIq+2OuUKhugEI+USDqFYFE=
Subject key identifier: 23:B1:04:5D:D8:F2:51:D4:5F:10:5F:26:D3:FC:9B:D0:41:09:D4:18
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018C4A11F824F122C4D9ED5E09DE9DFA0000
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/I7EEXdjyUdRfEF8m0_yb0EEJ1Bg.roa
Signing time: Fri 08 Dec 2023 15:35:40 +0000
ROA not before: Fri 08 Dec 2023 15:35:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 188.213.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4a:11:f8:24:f1:22:c4:d9:ed:5e:09:de:9d:fa:00:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 8 15:35:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23b1045dd8f251d45f105f26d3fc9bd04109d418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:37:63:0f:1f:a8:65:90:64:8b:a9:4a:ec:83:
66:d7:c1:6c:5d:09:fc:22:45:ac:8a:86:cc:7e:bf:
49:0b:3c:89:4e:e5:63:b5:7d:a2:aa:f1:a7:8a:c8:
61:e5:68:54:72:3d:dc:1f:16:13:97:b4:39:6a:ae:
7b:03:d1:b8:8b:5d:28:c2:f1:53:9c:80:68:28:69:
07:4f:8d:27:30:59:8e:ad:f6:2c:35:49:24:53:92:
cb:df:52:c2:9e:c1:0f:19:e0:2c:1f:e2:77:b1:ce:
1a:b8:d4:43:96:e7:96:af:0a:62:30:08:fe:fd:43:
fc:97:88:3a:7d:55:2f:5f:ba:57:2b:38:d1:28:9a:
c6:2f:dd:29:e8:ee:bb:38:87:54:66:73:d0:2f:99:
32:d7:b9:6d:c9:7e:12:b4:8e:f4:47:b4:8d:77:b1:
2b:ef:91:20:b0:88:40:ea:ff:fc:a8:05:cb:5a:b2:
46:85:91:ec:ef:3c:f1:9e:b3:ec:a6:77:65:81:93:
ef:db:44:9b:2e:c1:e6:c0:96:b1:87:7e:b1:22:a5:
38:26:30:aa:27:d5:6b:f2:2a:eb:9b:69:6e:2e:84:
6e:b2:72:cc:47:e7:07:ec:6e:4a:b8:c3:58:f7:c9:
5c:a3:6c:8b:4b:b1:3d:54:58:4a:22:9f:5b:1e:f1:
83:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B1:04:5D:D8:F2:51:D4:5F:10:5F:26:D3:FC:9B:D0:41:09:D4:18
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/I7EEXdjyUdRfEF8m0_yb0EEJ1Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:76:d4:ad:69:04:2a:6b:05:5c:72:7f:a0:56:75:40:c4:96:
e5:19:06:5c:5a:3f:89:41:f7:70:a6:8c:db:2c:4a:7e:8b:b7:
1d:c7:81:e5:07:4f:c1:d6:a0:f7:67:5e:07:ad:ef:3d:27:0d:
5f:32:06:8a:7c:29:9b:2f:45:36:0b:72:df:45:a7:4e:48:4d:
89:88:71:03:c4:64:39:ae:79:40:82:38:c0:1a:78:18:b2:f6:
61:61:31:84:dc:2f:0b:08:b3:6e:ad:23:85:49:1a:d6:99:35:
89:20:df:27:4b:ae:a0:1a:22:01:38:f3:ee:82:2d:83:b8:71:
dd:dc:43:3a:5b:3f:62:58:e8:87:fd:d1:0c:00:15:6f:f6:c0:
a0:16:93:8d:69:53:a4:32:59:90:cd:db:e3:c4:4b:6f:8e:3d:
25:39:48:6e:f3:53:8e:ac:08:f5:c4:52:a8:44:e5:37:df:56:
d6:d6:b7:f7:cf:6d:bc:7e:db:91:a1:ac:97:f5:9f:f8:6a:ba:
6f:c0:32:61:a4:61:60:13:b1:dc:ab:fb:62:a6:b9:8d:06:f5:
d9:a2:7a:4d:9d:d9:2c:a3:51:30:31:63:93:da:73:a6:0d:10:
b7:57:30:a7:32:0d:a4:7e:ba:d7:83:f8:8c:ef:ab:79:02:c1:
62:ee:e3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org