Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/aOI1fjR9AJPNbCuHOdk8aqhFiaM.roa
File: aOI1fjR9AJPNbCuHOdk8aqhFiaM.roa (raw, json)
Hash identifier: OpMkeT0Ms1466r+KOW0gvyTtmMcm0FsD03O4uPzEaxk=
Subject key identifier: 68:E2:35:7E:34:7D:00:93:CD:6C:2B:87:39:D9:3C:6A:A8:45:89:A3
Certificate issuer: /CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Certificate serial: 018BD808415F8EB0870C8A87387304454B99
Authority key identifier: 54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/aOI1fjR9AJPNbCuHOdk8aqhFiaM.roa
Signing time: Thu 16 Nov 2023 12:08:21 +0000
ROA not before: Thu 16 Nov 2023 12:08:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202561
IP address blocks: 188.125.161.0/24 maxlen: 24
188.125.167.0/24 maxlen: 24
188.125.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Nov 2023 13:03:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:08:41:5f:8e:b0:87:0c:8a:87:38:73:04:45:4b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Validity
Not Before: Nov 16 12:08:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68e2357e347d0093cd6c2b8739d93c6aa84589a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:27:19:b7:c7:14:fa:f6:ce:00:0f:5a:85:01:
61:c9:b6:46:26:0e:9c:60:be:fe:5a:09:14:a4:70:
93:11:95:c6:de:04:3c:28:dc:a1:00:5d:17:4e:ee:
cb:92:fb:8c:c1:7e:7a:8e:66:7b:20:3f:50:7f:5a:
46:66:44:24:b5:8c:c4:8e:7a:32:fc:80:e7:dc:2c:
02:b2:66:07:60:fc:57:3d:9d:a0:cd:6e:4f:99:0d:
97:c8:ad:1a:a0:b1:43:61:e1:e6:1d:82:bd:fd:cc:
47:e5:5c:8e:72:7d:17:0e:aa:7d:37:0d:fb:33:19:
4f:06:3a:33:15:fb:ce:65:0f:89:fe:18:d8:fd:be:
94:3c:84:08:96:b8:40:b0:de:91:f3:2d:88:cc:db:
31:48:23:04:01:31:e1:ec:bb:bc:9e:fa:53:5e:59:
72:e5:68:40:6a:98:dc:6d:63:14:de:cd:be:1a:c1:
c9:52:38:16:5e:d3:87:aa:44:60:81:15:d3:d9:5d:
03:ca:01:8e:56:96:75:6b:3d:f5:4f:c9:c1:91:4a:
19:01:a6:82:9e:88:22:57:75:8d:cd:6b:bc:e8:47:
f7:56:ad:ab:9f:96:ae:61:37:21:6f:76:23:85:b3:
ed:1f:8e:e5:51:65:3d:5a:bc:99:72:0e:a6:75:73:
a0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E2:35:7E:34:7D:00:93:CD:6C:2B:87:39:D9:3C:6A:A8:45:89:A3
X509v3 Authority Key Identifier:
keyid:54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/aOI1fjR9AJPNbCuHOdk8aqhFiaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/VC9jP3bo2Krqoytazhaj2zlD2Aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.125.161.0/24
188.125.167.0/24
188.125.169.0/24
Signature Algorithm: sha256WithRSAEncryption
23:1a:ad:c6:36:56:bb:c0:0f:d5:87:55:85:1b:b9:cc:f2:06:
97:bd:15:6b:2d:b6:79:e6:8f:15:bb:97:8b:e1:be:19:8b:3f:
d8:ba:ef:6b:2f:f8:a8:db:29:42:3f:78:06:60:20:46:6c:b7:
9b:1c:7d:68:e6:43:98:b0:a0:64:ae:ce:55:74:3e:fc:cc:e2:
13:a9:5d:e1:29:86:22:56:a6:d9:a8:34:60:16:05:e3:4c:7b:
d0:ae:42:f4:7d:cd:d6:13:a4:e5:2d:f6:f0:6e:a6:a0:bd:c2:
50:20:43:9d:16:40:24:f8:e5:8f:e3:52:5f:40:12:81:1c:f9:
17:3f:53:92:1a:ea:27:23:98:0b:5b:c7:57:9b:38:7e:a4:2c:
44:8d:20:bc:af:47:65:dd:4d:86:14:59:c9:97:e2:d8:e0:77:
fc:cb:e7:a5:23:db:05:94:f1:10:72:03:d9:e7:cb:44:3d:99:
b7:84:e2:f1:d2:db:58:f6:12:41:a2:66:c0:d0:dc:8a:74:67:
7d:99:6b:5f:24:b9:e5:fc:65:54:e8:23:4c:6e:13:a7:4c:5d:
ac:89:12:77:44:1e:0c:fb:a5:3c:28:60:30:e4:8e:a8:c2:ec:
82:93:ea:e7:4a:ed:8a:b9:5d:f9:93:05:28:45:b5:65:bf:73:
ff:44:86:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:47 2024 by rpki-client on console-fra.rpki-client.org