Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/8uAel4DG__Csl_zBCQVYGXp8hDg.roa
File: 8uAel4DG__Csl_zBCQVYGXp8hDg.roa (raw, json)
Hash identifier: orpCZZPNHcjj2F5xv41vmBjFy97DVrzWWLkIkqq9Rfc=
Subject key identifier: F2:E0:1E:97:80:C6:FF:F0:AC:97:FC:C1:09:05:58:19:7A:7C:84:38
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 01856C6EFFCD7210D1340731B39A1C9EE265
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/8uAel4DG__Csl_zBCQVYGXp8hDg.roa
Signing time: Sun 01 Jan 2023 08:24:51 +0000
ROA not before: Sun 01 Jan 2023 08:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 188.241.74.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:ff:cd:72:10:d1:34:07:31:b3:9a:1c:9e:e2:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 08:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2e01e9780c6fff0ac97fcc1090558197a7c8438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:88:64:5c:44:15:f1:d8:4f:96:70:32:9e:e7:
61:8b:7e:57:a9:3d:63:0f:03:43:61:67:bf:01:f6:
1c:e1:d7:27:0d:2d:7d:df:55:66:b2:ee:3d:b2:58:
33:2a:4e:6c:a5:c2:a4:5d:68:87:97:2e:53:b5:a6:
e8:0b:e4:71:5d:84:86:2f:1a:36:48:1e:b7:6c:c7:
0a:d8:8c:83:0f:bc:55:32:06:f9:bb:aa:06:b6:93:
3c:4b:02:b9:61:5d:74:46:73:4a:88:71:05:ae:f0:
e9:c6:7d:63:4d:4d:45:10:5e:25:35:49:4a:03:31:
b7:99:a2:9f:f4:94:71:86:87:ee:1d:26:3c:2e:e7:
92:ce:08:f5:ba:27:1f:ba:f9:c0:32:d9:c3:32:71:
6f:66:37:69:02:07:63:5e:a5:94:49:99:c8:00:91:
38:e4:28:4c:2d:34:29:1d:ac:2d:a3:e2:c7:f5:3c:
9a:d6:ab:db:6d:6d:44:50:88:31:4e:30:3c:68:fa:
fe:5d:85:14:8b:7f:a4:66:3c:58:52:c1:68:87:8c:
44:0f:93:21:10:e8:7b:3e:f5:af:a6:21:62:71:a6:
fb:7a:9b:73:3a:ab:da:d8:e2:f0:52:4e:a5:34:df:
e2:fd:90:cf:21:d3:89:30:33:2b:8b:fc:5f:38:95:
e7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E0:1E:97:80:C6:FF:F0:AC:97:FC:C1:09:05:58:19:7A:7C:84:38
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/8uAel4DG__Csl_zBCQVYGXp8hDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.74.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:c8:f1:dc:ef:c6:56:a9:8e:49:4c:f2:e0:33:0a:89:e5:8b:
7c:9d:1b:64:f0:06:74:8f:a8:cb:a9:7d:df:fa:77:1a:eb:8f:
e4:93:13:1d:2a:c9:70:b2:27:95:fa:55:89:48:61:29:da:fa:
ee:ea:c4:0c:07:f8:9a:ca:21:3d:b9:0c:f3:7f:f6:aa:2a:0f:
07:8d:62:91:63:f7:36:ec:9d:cc:fd:05:d2:fc:83:77:8a:86:
8b:85:d1:55:13:eb:7b:b5:be:04:4d:ca:3b:0b:9d:78:90:8f:
e7:2e:e3:7c:e5:b3:af:bc:1e:df:96:fc:a0:b5:aa:0e:47:3c:
1a:87:e9:5b:98:9c:95:e3:cb:b3:50:44:bc:ef:a0:ea:65:e2:
65:1d:fa:ff:12:cf:b1:b0:74:cb:76:70:f4:50:52:c5:57:4f:
9e:4c:27:69:67:d0:b4:89:07:cf:b9:d7:4b:c4:c9:87:13:e0:
0c:fd:f3:9e:9d:8d:12:4a:60:d7:63:4e:91:54:3b:6b:ed:10:
b8:cc:bb:64:ed:07:86:2f:0d:ed:d9:f0:91:44:07:33:0d:ca:
e5:95:9e:07:3d:13:e9:76:26:24:6f:bb:1e:bf:53:35:2f:43:
2f:5f:20:e0:e8:a6:58:a7:1e:4d:ef:47:04:79:f4:5c:7a:1a:
68:d1:06:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:35 2024 by rpki-client on console-ams.rpki-client.org