Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0MI5muHJ_x8mUuJ3lS6A2kXzH5U.roa
File: 0MI5muHJ_x8mUuJ3lS6A2kXzH5U.roa (raw, json)
Hash identifier: Z4EBfc/IvmMoPvWm1KdO+ZLxFAjIjkJII+1qoq9FXWI=
Subject key identifier: D0:C2:39:9A:E1:C9:FF:1F:26:52:E2:77:95:2E:80:DA:45:F3:1F:95
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018BE715050826DE9D1762AB51635E2600BF
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0MI5muHJ_x8mUuJ3lS6A2kXzH5U.roa
Signing time: Sun 19 Nov 2023 10:16:36 +0000
ROA not before: Sun 19 Nov 2023 10:16:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 188.64.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 11:03:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e7:15:05:08:26:de:9d:17:62:ab:51:63:5e:26:00:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Nov 19 10:16:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0c2399ae1c9ff1f2652e277952e80da45f31f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:00:29:77:4e:c7:52:82:25:b3:b8:ee:5e:1c:
eb:6d:04:7a:41:d0:6f:a9:88:08:28:eb:a8:35:95:
cd:96:5a:9c:f1:1d:a6:6e:58:6d:b9:ea:52:6a:7e:
a8:73:c1:45:b7:eb:34:35:e0:4e:12:16:df:9d:8e:
95:30:0b:4a:b2:5e:ec:e0:21:be:62:eb:89:83:b8:
a7:1f:6a:13:64:0b:da:df:7d:c3:f8:ae:ca:3a:54:
74:35:0f:07:ae:fc:69:6f:ac:ce:15:d8:1d:2c:57:
1b:8f:69:e8:7b:0b:62:e5:7a:57:ea:26:54:f4:5d:
b0:a7:88:19:d8:85:ad:fc:dc:1d:cf:43:55:dd:3c:
1c:28:97:dc:14:a5:22:b8:e4:dd:bc:a2:6c:ab:b0:
4b:5f:be:9d:19:77:fc:3a:6c:a8:87:56:4d:ad:9e:
96:a7:b0:3c:57:f4:ba:ce:bc:b6:d1:b0:55:2c:30:
2f:fe:a9:be:79:9b:73:cb:b7:c6:fa:10:15:9d:a2:
41:c3:94:a4:53:23:87:2d:a4:e6:de:72:bb:e4:4e:
4e:56:c9:58:3f:f1:e5:10:1e:b6:c0:d5:c5:0e:bb:
3d:a4:19:a0:eb:0b:61:85:dd:1d:1d:af:1d:b2:73:
d4:8f:47:4a:e2:42:34:0c:f4:08:4e:61:48:9f:d3:
3d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C2:39:9A:E1:C9:FF:1F:26:52:E2:77:95:2E:80:DA:45:F3:1F:95
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0MI5muHJ_x8mUuJ3lS6A2kXzH5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.108.0/22
Signature Algorithm: sha256WithRSAEncryption
65:70:15:dc:f8:38:96:91:e1:1f:90:57:57:31:cc:2c:51:cd:
32:04:4f:86:8e:46:e1:9f:e1:82:0b:97:01:fb:93:64:64:b1:
8e:7d:3b:2f:fd:28:ba:0c:9c:92:f9:6f:19:02:5d:a8:58:8b:
b3:68:b8:bd:db:d6:93:4c:6c:31:76:df:68:21:ae:a8:5b:cd:
7c:15:c8:ea:85:b2:5c:32:f1:71:6f:82:66:a7:93:85:7f:ea:
e2:49:b1:23:7f:d0:a3:be:58:4e:00:af:fc:bf:65:19:de:86:
38:21:f5:b9:ed:b0:4a:dd:bf:ab:0c:79:19:a5:db:38:f6:1c:
09:4f:f9:a5:78:72:3d:eb:4b:58:e4:18:b2:9a:30:05:0f:65:
bb:43:b4:6c:5e:44:7f:24:4b:33:40:e3:34:d3:21:1c:8e:85:
a7:15:eb:79:aa:94:8a:e2:ab:3b:1a:1c:33:1f:0d:46:69:27:
08:9a:42:26:92:27:2c:28:14:4c:8a:3d:a8:15:5f:69:33:e3:
ab:88:48:eb:9a:99:4b:92:27:37:41:84:2d:05:c0:ae:95:f9:
8d:a3:11:92:26:3a:b4:99:99:5d:4a:a5:ac:fe:aa:27:82:35:
6b:7e:30:d4:43:0b:36:8e:89:6d:17:f1:29:79:08:61:65:a1:
44:ec:89:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org