Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XhadC0ATbZ_HqBErZ2LEH7r4MVQ.roa
File: XhadC0ATbZ_HqBErZ2LEH7r4MVQ.roa (raw, json)
Hash identifier: soLPki9g8aZqMpaBDB/UtAmBPV39yUbWqlos0wm9CHg=
Subject key identifier: 5E:16:9D:0B:40:13:6D:9F:C7:A8:11:2B:67:62:C4:1F:BA:F8:31:54
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018AC86FAF9D930EBF4E4D1248F2B0AE63D0
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XhadC0ATbZ_HqBErZ2LEH7r4MVQ.roa
Signing time: Sun 24 Sep 2023 18:24:37 +0000
ROA not before: Sun 24 Sep 2023 18:24:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201949
IP address blocks: 188.213.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 15:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c8:6f:af:9d:93:0e:bf:4e:4d:12:48:f2:b0:ae:63:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 24 18:24:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e169d0b40136d9fc7a8112b6762c41fbaf83154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:46:1f:e4:88:9d:2e:97:e9:25:05:52:5a:e3:
a9:0b:ad:84:4f:11:e4:ae:02:12:b6:05:ec:2a:cd:
a1:fc:a4:d1:d2:d2:11:e2:43:64:ee:03:bd:9d:c8:
d6:93:90:3f:c4:8b:7a:f6:ac:e6:16:a0:53:42:3b:
46:39:6e:57:2b:5a:bd:18:ba:f0:62:be:43:ba:39:
3f:4b:3d:10:14:e6:62:69:d6:2a:15:fe:0f:4b:29:
cb:fc:72:ed:01:6a:0e:4b:f1:92:ef:ac:13:b4:06:
21:ff:c2:7d:d0:e2:94:41:ac:20:c9:9a:e2:e4:78:
e1:fc:0f:e9:b6:d6:43:c1:d1:48:c0:90:bc:8f:c1:
3b:e7:e7:86:2a:d3:c0:62:f6:71:f0:a9:1f:7c:02:
27:60:91:37:62:f5:5d:b7:ed:1a:fc:21:e6:9b:51:
47:2f:71:7f:d4:87:25:cb:30:ab:1d:18:39:95:45:
cf:c7:a4:eb:c4:ff:9d:be:7d:39:64:e3:00:33:83:
eb:b3:b7:84:5c:28:84:c8:0e:ad:d4:b7:04:7f:26:
cd:28:8d:f7:26:57:d2:f9:8d:7d:d1:63:2d:0e:8d:
37:b6:15:48:97:13:ef:92:2c:00:92:ce:24:6f:d7:
21:60:16:b8:bd:17:93:82:3e:62:37:8d:84:c2:15:
62:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:16:9D:0B:40:13:6D:9F:C7:A8:11:2B:67:62:C4:1F:BA:F8:31:54
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/XhadC0ATbZ_HqBErZ2LEH7r4MVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
35:f7:03:ad:e6:04:d0:0a:71:d7:27:63:76:6c:53:63:90:4d:
fe:54:7f:ef:33:27:f8:a1:ac:c3:85:2c:c8:6c:79:86:08:64:
3b:ca:f0:36:4c:0a:b7:1d:5b:09:bb:67:00:ef:aa:e4:4d:31:
20:81:86:76:41:3b:45:3e:ea:c6:71:92:f1:ee:07:8c:38:2e:
f5:91:04:11:7d:94:e0:77:27:27:f8:96:b3:ca:41:e1:9e:ac:
e5:a3:e0:33:78:13:5d:e9:cb:2c:51:b2:20:78:cd:e6:2e:4c:
fe:4a:c6:4f:41:c1:7f:7a:d3:2d:49:b2:f2:0f:49:8b:fb:72:
59:54:4b:6a:40:7b:d3:32:2a:08:33:ee:69:16:1d:ad:80:6d:
35:f9:35:b6:6e:8a:af:f6:32:29:34:d4:7f:81:8c:22:b4:7c:
41:c9:35:6c:27:b5:ab:97:67:cb:2e:b0:76:5e:9d:9b:f0:1c:
58:49:3e:db:5b:ac:5d:62:8a:07:66:9d:c3:72:5c:ba:82:3b:
25:4c:6c:cf:37:7a:60:e1:ba:6c:4c:e5:4d:30:94:2c:1b:88:
1f:11:40:04:e9:2a:c7:7c:ad:63:57:eb:b7:ae:42:b6:7c:0d:
39:5a:03:f6:f7:e3:2c:40:e6:e9:e7:04:d1:83:91:23:b5:41:
9b:1b:a2:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org