Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/zKKJtXy5cDXaxRrD13WjlDBi8hM.roa
File: zKKJtXy5cDXaxRrD13WjlDBi8hM.roa (raw, json)
Hash identifier: IuaDquf6EaBm+MJ47DE/NNDAxnvD/vq3/IzatwzSdqE=
Subject key identifier: CC:A2:89:B5:7C:B9:70:35:DA:C5:1A:C3:D7:75:A3:94:30:62:F2:13
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD5136E0968370CA8CDF09F00B06B10
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/zKKJtXy5cDXaxRrD13WjlDBi8hM.roa
Signing time: Mon 02 Jan 2023 00:15:12 +0000
ROA not before: Mon 02 Jan 2023 00:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25097
IP address blocks: 188.210.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:13:6e:09:68:37:0c:a8:cd:f0:9f:00:b0:6b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cca289b57cb97035dac51ac3d775a3943062f213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:53:07:f3:72:a1:cc:c0:1d:bf:f4:43:f1:a9:
f1:1f:cf:15:c1:e6:ad:7a:3a:e1:37:ef:62:43:e3:
36:21:28:40:19:1d:d9:d6:25:56:d7:2d:35:be:b3:
39:1a:95:90:e5:7d:a7:00:dd:de:d1:9a:ab:ba:2c:
00:1d:2e:64:31:84:ef:68:d4:0e:f5:a9:ad:c6:1d:
5c:71:d0:5b:87:a8:cf:20:46:cb:9c:9e:2e:ec:1e:
cc:18:65:08:ad:33:36:7a:2b:ae:85:1f:1b:9e:35:
c3:e6:95:97:ab:3c:97:86:95:1b:0d:d5:24:22:e8:
b7:bf:69:0a:7c:a3:78:d6:8d:d4:bd:ec:6e:5b:f0:
b2:4d:71:0b:3d:fe:f3:06:5a:14:94:51:1c:04:39:
51:6d:c0:61:27:ce:98:f7:0c:42:b0:bc:a8:2c:cf:
c4:e1:e5:14:b5:88:26:03:7f:18:66:d9:b6:69:d3:
58:82:e9:a6:20:48:7e:e1:6e:aa:ee:8c:ac:9f:78:
6c:99:c2:d6:90:2e:90:4b:de:cb:3b:a7:e8:5c:82:
24:9c:89:7e:1e:1c:7a:5b:08:af:4c:c9:9b:cb:88:
86:0b:5a:f1:98:71:97:85:11:a9:f2:cf:d6:19:56:
c5:3e:b9:e7:30:99:8f:cf:cb:55:b5:e0:be:f0:3b:
af:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A2:89:B5:7C:B9:70:35:DA:C5:1A:C3:D7:75:A3:94:30:62:F2:13
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/zKKJtXy5cDXaxRrD13WjlDBi8hM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.210.238.0/24
Signature Algorithm: sha256WithRSAEncryption
78:6f:43:4e:da:67:d0:42:45:e4:de:ec:34:54:61:2e:b2:f3:
58:de:48:f1:16:1d:aa:96:67:f2:d0:99:68:9e:41:c7:77:d5:
4b:b4:1f:56:f7:8b:c8:1a:70:a7:28:03:0a:d1:25:6d:c1:3e:
70:cd:4e:1d:0d:e1:96:52:d1:51:ff:9e:b2:25:d4:33:bd:26:
9f:4b:13:4b:92:c5:95:4b:76:8e:7f:5e:bc:a2:c2:61:b0:65:
2a:1d:1f:c7:57:c0:07:ad:9c:72:12:ff:51:fd:12:ae:99:10:
bd:81:06:01:f3:7a:7b:45:31:24:89:e0:5e:91:e3:89:7e:8d:
7b:ee:57:f8:cf:2f:6a:93:3f:fa:dc:a8:66:db:18:7a:f4:43:
f1:ad:22:c6:c9:ac:73:aa:a0:5b:34:22:08:94:6f:04:2c:87:
99:0e:63:e9:10:c1:80:d2:03:93:fb:1c:c0:2a:8d:3c:40:cf:
09:58:5d:2d:27:a5:81:b2:87:29:be:a5:2f:3e:f8:0f:e2:ce:
4a:47:e5:d0:2b:d8:2f:b8:57:64:3f:bc:77:3a:69:6d:1d:8f:
1b:77:5b:3e:4a:cb:e9:8d:51:0e:64:77:13:c5:e8:fd:3d:be:
6c:b4:6c:a5:6e:e1:98:2c:19:ff:2a:ed:a4:d6:df:a6:ef:f2:
bc:ae:e6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:52 2024 by rpki-client on console-fra.rpki-client.org