Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Kwo6qkva0o47HXn7DqcHiTcNfRo.roa
File: Kwo6qkva0o47HXn7DqcHiTcNfRo.roa (raw, json)
Hash identifier: T4IhxuXAL8+3xwAWBTL4uVD6XdCu/7GojbO8betLPS8=
Subject key identifier: 2B:0A:3A:AA:4B:DA:D2:8E:3B:1D:79:FB:0E:A7:07:89:37:0D:7D:1A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018BA9AC379C3925F18A13F6AD606554F1C1
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Kwo6qkva0o47HXn7DqcHiTcNfRo.roa
Signing time: Tue 07 Nov 2023 12:05:17 +0000
ROA not before: Tue 07 Nov 2023 12:05:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 188.213.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:ac:37:9c:39:25:f1:8a:13:f6:ad:60:65:54:f1:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 7 12:05:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b0a3aaa4bdad28e3b1d79fb0ea70789370d7d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:1f:16:82:2b:0e:2f:42:56:03:fa:0c:6d:cf:
47:50:91:49:18:43:cc:f1:eb:27:da:84:ac:d8:6e:
42:35:ff:c4:89:39:59:1b:5b:ce:93:cd:75:bc:74:
96:e6:37:80:68:d1:03:07:bd:b9:e7:33:0b:8b:45:
80:18:1c:7d:98:1c:f7:d7:9a:41:d3:d3:23:1f:06:
35:37:b1:89:07:0c:fe:62:6b:44:62:b3:51:a7:0e:
34:25:62:51:94:7b:fb:d9:9c:90:96:9f:88:15:40:
8d:e4:61:68:b9:bc:51:b6:3d:d7:b5:3b:25:f7:dd:
a3:58:16:82:c6:ba:59:6f:1a:59:77:cb:31:a2:86:
87:26:19:5d:c9:3e:2f:19:ae:bf:2c:c9:12:f6:f9:
f3:cd:ff:d9:4e:3f:17:78:b9:73:d4:8a:20:4a:45:
b7:57:f3:21:94:e6:9a:70:4f:bb:e4:d9:01:b1:0c:
58:93:a0:62:e1:08:87:40:16:12:78:d7:e2:7d:0a:
af:68:4c:df:c2:5b:1c:cf:e8:28:a1:3d:d6:48:fd:
fd:65:31:8e:a8:82:56:09:52:eb:d7:72:32:98:ee:
7d:89:e1:3c:fa:c8:7e:7c:62:a1:54:cd:ae:ef:e9:
68:ed:9a:7f:9f:49:79:a6:9a:25:a3:e0:d5:f2:30:
7b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0A:3A:AA:4B:DA:D2:8E:3B:1D:79:FB:0E:A7:07:89:37:0D:7D:1A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Kwo6qkva0o47HXn7DqcHiTcNfRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.216.0/24
Signature Algorithm: sha256WithRSAEncryption
32:4a:c1:ff:b1:19:a1:79:14:d0:3d:08:68:ed:10:78:b9:bb:
57:3f:89:48:08:09:d1:f4:9b:c8:04:f8:75:aa:74:69:34:9e:
7b:d0:d8:50:d2:5b:af:ea:79:ec:1d:27:eb:ea:ff:cb:4b:47:
81:e1:26:da:b7:55:8e:19:fd:a7:91:3a:e4:6d:78:68:28:ad:
47:d7:fb:2f:83:02:8d:74:96:7d:3c:57:84:5d:e6:e4:f8:1f:
df:16:fc:7e:88:a7:8b:9e:5e:6d:f3:7a:58:02:82:e8:ba:4d:
6f:89:20:15:41:8f:9a:0f:af:78:02:75:14:c5:a3:91:a0:8a:
4c:85:b0:e6:b7:3c:bb:58:cb:92:50:6f:72:54:c5:00:b4:f5:
4d:ba:dc:10:d5:e1:4d:33:1e:19:65:dd:e1:19:4d:1f:a0:30:
79:fc:ef:b8:a4:10:81:3b:9f:ec:53:3a:14:b1:0a:54:db:20:
e6:f0:08:36:a2:be:c1:f5:93:d4:d2:e2:ea:09:68:b5:a3:d0:
e4:ae:ab:a5:6a:08:8a:c9:19:6d:ab:aa:94:22:d2:11:3a:9b:
b5:7f:25:c5:46:95:31:9d:8d:ac:5b:17:36:cc:16:83:6d:21:
7e:ba:45:ec:9a:09:45:c8:31:e2:c3:a2:f9:2f:61:29:fd:fa:
3b:f9:d3:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org