Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/jxN0FdMFGxyCgM_9W6fU0p6pXP4.roa
File: jxN0FdMFGxyCgM_9W6fU0p6pXP4.roa (raw, json)
Hash identifier: 6Wj44yhNVxpqQErkCYpX/qoF/+60Yyu5yoC6Mm0QlIo=
Subject key identifier: 8F:13:74:15:D3:05:1B:1C:82:80:CF:FD:5B:A7:D4:D2:9E:A9:5C:FE
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 018C249BA4499DBFD8B43C679407F7CE45FC
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/jxN0FdMFGxyCgM_9W6fU0p6pXP4.roa
Signing time: Fri 01 Dec 2023 09:00:29 +0000
ROA not before: Fri 01 Dec 2023 09:00:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6079
IP address blocks: 188.211.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:24:9b:a4:49:9d:bf:d8:b4:3c:67:94:07:f7:ce:45:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Dec 1 09:00:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f137415d3051b1c8280cffd5ba7d4d29ea95cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:31:83:fc:6f:a2:49:d6:f6:65:a8:41:21:e0:
ff:44:21:ea:de:4a:10:70:a4:a9:60:d1:33:7b:cb:
54:02:2c:d1:f5:62:38:89:67:00:2b:1f:c5:7c:c5:
7a:aa:80:d4:da:67:be:60:0b:d0:ba:eb:37:3d:88:
dc:94:f5:6c:3c:b4:e0:6c:9e:ca:8a:3a:86:71:60:
b0:63:0a:a7:dc:70:8b:b9:e5:57:69:24:52:58:8b:
15:65:bb:0e:62:de:24:7d:c7:d5:82:7e:34:8c:d7:
83:5b:f5:e3:8b:af:c1:e6:3c:49:5b:d8:80:9a:e4:
c7:92:14:50:36:4f:df:0f:a0:3b:de:1d:7c:e6:24:
25:fd:a9:e5:51:c6:29:1a:d7:c2:58:6c:57:8c:c8:
9c:88:10:bd:46:3c:cd:73:73:02:92:10:31:0a:0c:
f8:e0:1c:87:a2:d5:1a:52:2e:7f:e8:5c:e2:27:82:
0c:b8:bc:2e:75:7d:29:02:8e:7d:36:04:7a:e2:df:
67:8b:f7:c6:9f:cc:e9:12:ad:da:5d:8e:51:64:99:
89:21:65:4e:13:b6:df:3d:41:82:0c:c2:89:11:e8:
38:83:3e:4d:39:0d:d4:95:a0:4d:38:98:59:ff:ff:
4e:d9:c0:b8:88:bc:c4:7b:28:a6:ae:05:1b:72:64:
3a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:13:74:15:D3:05:1B:1C:82:80:CF:FD:5B:A7:D4:D2:9E:A9:5C:FE
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/jxN0FdMFGxyCgM_9W6fU0p6pXP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.211.252.0/24
Signature Algorithm: sha256WithRSAEncryption
19:7d:6a:9a:30:87:dd:e9:ff:b7:b1:b4:be:17:7e:4b:31:94:
27:7b:70:a7:56:b5:7c:8a:22:fb:90:9a:b6:d1:9d:dd:c0:52:
ac:5c:52:ba:85:6e:0c:de:be:1f:d2:0a:c7:81:23:29:b7:53:
1e:1a:e5:6d:81:d8:e4:7d:47:ff:8f:23:56:3f:c4:2f:01:e4:
eb:df:cb:07:6d:87:cf:8a:71:7a:6c:b6:34:37:1a:fc:6d:7b:
ed:a7:77:56:5b:5e:27:2c:ac:79:bc:08:32:20:c3:fd:b0:1e:
4d:3e:4b:5a:ba:81:1b:18:14:f3:99:11:ef:0a:11:00:2b:7c:
3a:17:9b:23:96:5a:d5:e2:1e:53:49:ce:9c:7f:d0:e9:55:46:
e0:9f:84:e2:1c:f9:cd:70:13:85:9d:97:16:b5:01:fe:96:b9:
df:8c:4e:15:2c:ea:d6:18:93:53:5f:26:1e:11:a6:5c:5c:8c:
0d:e1:dd:01:1d:34:be:74:0c:76:47:c7:42:fd:b8:c4:08:8a:
d7:43:99:c2:7a:7d:1e:bc:fc:37:b0:3b:e1:ee:eb:54:88:d0:
c3:ac:5b:71:8d:f8:c3:c8:88:81:82:bc:3f:87:9a:d7:fd:f1:
8f:d7:f7:ae:54:7a:76:42:cd:9d:d5:e0:4a:6e:4f:45:02:a5:
8d:41:d5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:15:04 2024 by rpki-client on console-ams.rpki-client.org