Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/7ilb3aim2t-wVJkFvINF0tLjGuo.roa
File: 7ilb3aim2t-wVJkFvINF0tLjGuo.roa (raw, json)
Hash identifier: e/RyBLXB/oc/+6oDaMbC9ko9/V/jABqezQ+CdA/41qY=
Subject key identifier: EE:29:5B:DD:A8:A6:DA:DF:B0:54:99:05:BC:83:45:D2:D2:E3:1A:EA
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0188A189A3F3266A303B8C10431D22BAEB3B
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/7ilb3aim2t-wVJkFvINF0tLjGuo.roa
Signing time: Fri 09 Jun 2023 19:02:12 +0000
ROA not before: Fri 09 Jun 2023 19:02:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202354
IP address blocks: 194.127.110.0/24 maxlen: 24
194.127.111.0/24 maxlen: 24
194.127.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a1:89:a3:f3:26:6a:30:3b:8c:10:43:1d:22:ba:eb:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: Jun 9 19:02:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee295bdda8a6dadfb0549905bc8345d2d2e31aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:8b:3a:de:85:61:54:30:8d:41:d1:c0:4c:
f6:e5:b0:47:64:d3:3a:ef:50:59:e6:48:95:d3:1a:
8d:9e:51:43:e2:59:0f:77:5c:87:12:31:61:ef:d8:
53:f3:82:78:b2:40:7a:60:e1:a0:45:9e:ab:63:6d:
73:41:2b:fc:9f:b0:17:61:2a:f9:0d:0a:b7:cc:03:
01:35:86:9d:8a:9c:cb:46:d2:48:70:3e:ee:73:e6:
ff:90:5b:ec:07:13:f9:d4:db:7a:7d:37:f8:eb:93:
47:46:73:b3:a1:9e:5d:d8:62:0b:89:14:58:fa:d1:
f5:af:cb:64:63:23:44:bd:16:ba:14:79:0d:7e:f8:
2b:2a:ac:25:39:5c:b5:3d:c5:a1:45:99:4b:e6:73:
d3:a2:40:3c:a4:a4:ae:31:ac:dd:60:50:70:d1:bb:
3c:6f:0f:97:3e:4b:b4:27:86:05:32:97:e2:a1:61:
46:a9:3f:14:14:a5:86:c6:c6:9c:03:c0:31:2e:1e:
93:5d:d2:09:55:75:86:ef:4e:2d:0c:b6:cc:9a:08:
80:04:eb:8d:21:f1:65:47:e7:a2:ff:64:ed:1f:cd:
5b:b6:ef:40:d9:44:0b:e2:14:53:bf:8f:8b:b0:34:
35:42:82:17:72:9e:04:af:ed:4a:81:46:77:8d:4e:
7e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:29:5B:DD:A8:A6:DA:DF:B0:54:99:05:BC:83:45:D2:D2:E3:1A:EA
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/7ilb3aim2t-wVJkFvINF0tLjGuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.108.0/24
194.127.110.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:7c:b6:88:d8:7c:fe:f5:7d:af:90:2f:cc:ff:b8:2d:e1:41:
69:d5:33:5d:1f:2d:a1:26:19:1e:fb:53:c5:da:d2:3f:a2:e8:
ea:1f:e4:3e:71:e0:79:c7:a8:93:31:9e:e9:ff:56:88:cc:13:
4d:68:bd:42:a1:fa:73:60:29:cf:f1:a2:db:b3:da:b7:33:d9:
29:85:98:8c:30:32:3b:bd:60:a4:e6:16:bb:88:aa:a2:e0:ac:
31:c3:93:22:2a:59:10:69:fa:5a:c2:e4:08:aa:6a:d8:fc:44:
89:f6:23:dd:d8:d6:15:2b:5b:10:82:8b:4f:b6:5e:4e:85:d2:
d6:b7:9e:27:e9:d1:49:96:0f:f3:34:49:47:dd:bd:6b:ed:60:
ab:5e:21:d4:d7:ad:71:10:78:44:c3:f5:25:6b:32:cd:81:00:
23:99:a4:dc:7d:21:7f:20:e0:ee:77:89:59:97:25:7b:45:e9:
c1:eb:15:e4:1c:93:90:46:a1:6f:12:20:1d:ba:f5:50:63:e6:
cd:2b:87:00:96:44:b3:27:ef:d0:68:5a:e9:c9:3f:ed:62:8e:
10:27:ab:fd:af:93:04:2a:f3:90:e6:29:7f:f3:1f:b7:55:59:
b1:99:03:7a:da:8b:80:4c:70:40:f5:3c:56:92:8f:02:92:a6:
69:fb:4d:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org