Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/ARDOL48R3H62jF-FnANr5YAgl04.roa
File: ARDOL48R3H62jF-FnANr5YAgl04.roa (raw, json)
Hash identifier: Re+EhHyWY6o0z2hzC9K2DFcfL+dFkJNt7qA03FAk2fY=
Subject key identifier: 01:10:CE:2F:8F:11:DC:7E:B6:8C:5F:85:9C:03:6B:E5:80:20:97:4E
Certificate issuer: /CN=d4375814344df0bf6d017733acdc488f002631b2
Certificate serial: 0192DD1583CD5523E4A2160541B33D0783C1
Authority key identifier: D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/ARDOL48R3H62jF-FnANr5YAgl04.roa
Signing time: Wed 30 Oct 2024 11:00:27 +0000
ROA not before: Wed 30 Oct 2024 11:00:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152475
IP address blocks: 188.130.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dd:15:83:cd:55:23:e4:a2:16:05:41:b3:3d:07:83:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4375814344df0bf6d017733acdc488f002631b2
Validity
Not Before: Oct 30 11:00:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0110ce2f8f11dc7eb68c5f859c036be58020974e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:00:e9:d7:50:60:e0:5f:fb:bc:7b:d7:2d:4f:
bb:0b:88:26:a6:ba:68:66:07:3c:33:46:b9:4e:46:
22:a1:cd:5e:fe:62:c0:bb:e1:ef:87:67:59:60:cf:
1b:24:43:e7:36:05:92:3d:12:4c:17:a9:54:e9:9e:
d0:b6:94:29:41:3d:6c:b6:70:4c:52:f2:3d:fc:45:
df:2c:ba:37:99:f6:bb:3a:cf:0e:f2:b6:fd:96:e1:
3b:2f:2c:88:17:2b:f8:cb:5f:1b:4d:08:5f:d6:38:
3c:f5:07:5a:a2:31:b2:11:9c:82:6f:98:82:69:64:
ac:8b:d1:1d:f5:21:f8:f6:56:d7:00:12:b8:c4:81:
81:33:ed:4d:d7:5f:e7:06:8c:71:d9:c2:bf:f6:e3:
d6:7d:ce:04:fa:b1:60:99:3a:23:17:92:b2:4f:19:
31:1c:d6:e4:a4:7a:f5:5a:b5:f2:04:13:da:48:42:
00:19:49:fd:07:0d:ae:9f:13:91:9a:57:96:a8:ca:
3f:de:5e:78:99:e2:b5:b6:c8:2e:ae:6d:4f:d8:45:
9c:e7:28:34:f1:27:bc:c2:d6:a8:b6:31:6d:e5:0a:
dd:6c:a2:d1:a6:a3:13:70:8a:a7:c3:b5:08:4c:ae:
a9:f6:a1:a3:46:94:8b:4c:d1:bb:59:e7:0d:53:7e:
d5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:10:CE:2F:8F:11:DC:7E:B6:8C:5F:85:9C:03:6B:E5:80:20:97:4E
X509v3 Authority Key Identifier:
keyid:D4:37:58:14:34:4D:F0:BF:6D:01:77:33:AC:DC:48:8F:00:26:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DdYFDRN8L9tAXczrNxIjwAmMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/ARDOL48R3H62jF-FnANr5YAgl04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b24b2d-3523-422e-9bcf-3671d67eb9f8/1/1DdYFDRN8L9tAXczrNxIjwAmMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.231.0/24
Signature Algorithm: sha256WithRSAEncryption
73:79:ff:f4:7a:48:95:3a:70:77:59:b9:40:fe:d0:12:28:03:
ad:65:b1:9a:97:54:85:e9:95:f5:d7:59:4c:a7:07:38:bc:43:
41:6f:3a:3f:59:0c:55:4c:93:3d:17:bd:6c:25:85:2f:16:04:
7b:1a:5b:8c:0d:b7:ed:e1:b2:de:0a:0d:c5:f9:e7:19:35:7d:
1e:79:21:8d:90:4b:4d:29:f1:f6:c9:4c:15:15:2f:36:b9:28:
1f:ce:6f:af:0c:98:5c:c0:36:8d:31:0b:00:f1:f3:b0:f0:10:
8e:25:3e:93:4b:fb:3a:3f:ca:a1:a0:dd:5e:89:3a:e7:f8:74:
8f:bc:14:96:63:ef:41:d3:b2:de:08:95:5e:33:51:df:69:05:
89:ef:d5:9d:e6:af:a2:ba:b8:fe:fb:c1:cc:dc:10:a6:37:f3:
26:c2:b9:97:f5:f6:69:a6:96:80:f1:89:be:f0:f6:c9:a5:94:
91:d3:27:fb:bc:b5:07:3a:93:21:70:16:a4:ff:c6:45:1e:ea:
71:39:6f:d9:78:32:3d:48:0a:ad:98:f6:35:d1:85:d5:12:0f:
be:f4:53:ee:0a:d8:f9:3f:74:f2:2a:b3:e0:10:e7:4b:61:78:
18:b3:99:1e:4c:b6:a2:86:25:16:10:54:27:2f:83:b0:81:35:
90:6d:ae:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:28 2025 by rpki-client