Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ojpe12nZQt_rKk31aJ1KQuzCHLs.roa
File: ojpe12nZQt_rKk31aJ1KQuzCHLs.roa (raw, json)
Hash identifier: 745V9XHXHuwP719az3BKg7hVpxUmMjporUHTR7npnOg=
Subject key identifier: A2:3A:5E:D7:69:D9:42:DF:EB:2A:4D:F5:68:9D:4A:42:EC:C2:1C:BB
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018FA4EBB83185DE71436D6CB82B63387875
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ojpe12nZQt_rKk31aJ1KQuzCHLs.roa
Signing time: Thu 23 May 2024 10:07:42 +0000
ROA not before: Thu 23 May 2024 10:07:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211567
IP address blocks: 188.132.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a4:eb:b8:31:85:de:71:43:6d:6c:b8:2b:63:38:78:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 23 10:07:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a23a5ed769d942dfeb2a4df5689d4a42ecc21cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a8:95:04:63:94:8f:0a:6a:6b:26:69:ff:97:
bb:ba:12:54:57:ed:57:c8:cc:df:7d:30:5b:56:90:
0a:53:fc:f8:aa:12:74:ca:4f:09:3e:c3:90:bd:48:
d5:71:05:fa:ba:2a:cb:34:3b:47:61:b0:28:33:ab:
02:99:76:9d:a8:03:ba:76:14:62:b0:9d:be:bf:cb:
c1:41:85:02:a8:eb:c7:92:7d:23:17:cd:9c:a7:76:
af:fa:2c:f5:fc:e6:9b:be:75:ab:c3:4f:ef:4a:b8:
bc:5e:a7:8b:41:b8:a1:63:da:d9:ef:44:49:be:1e:
16:94:7c:4a:22:01:ec:32:09:1b:a9:ad:66:30:b1:
d1:23:03:4d:0d:35:1b:36:70:2a:00:7d:3a:c6:16:
1c:b2:15:b3:08:e6:1c:4d:68:33:0c:c9:19:16:77:
8c:f5:d8:01:31:81:41:b3:71:e5:b1:83:a9:5f:1c:
56:5a:cc:f3:75:28:df:8d:83:fe:57:0f:db:73:32:
0b:05:6a:29:09:e6:60:9c:8b:29:d8:66:7f:97:40:
4b:73:8d:8c:42:8a:5e:e5:0d:0b:ca:b7:8e:af:f4:
4c:79:89:35:c9:ab:1a:22:2d:93:86:33:12:68:f5:
10:70:4e:f1:cd:63:f0:f1:7e:d4:a1:43:18:24:98:
78:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3A:5E:D7:69:D9:42:DF:EB:2A:4D:F5:68:9D:4A:42:EC:C2:1C:BB
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ojpe12nZQt_rKk31aJ1KQuzCHLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.231.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ad:66:c8:3e:2a:72:f7:dc:18:81:8f:d2:c4:a6:d0:86:34:
98:56:83:b6:dc:8e:f2:bd:ee:64:1f:e6:cb:7f:7e:35:67:58:
40:4d:b5:0a:95:a6:a1:17:81:3b:09:27:e3:72:73:cc:60:fc:
5e:0d:d7:6a:be:e2:11:37:30:31:ca:37:c3:d6:bb:27:a0:e1:
c0:f9:e4:cc:ed:66:24:ee:c9:7f:9c:8a:a3:60:3d:dc:fe:87:
3f:50:11:21:94:72:61:93:31:31:9a:81:55:e6:20:58:5b:5c:
70:46:5a:11:75:dc:c7:81:eb:a6:42:a6:e1:f0:20:60:fb:8c:
78:33:11:e5:4f:69:1b:f5:68:c2:7e:64:95:37:86:e7:f5:ec:
0a:7c:57:1e:36:43:39:55:9a:75:61:d0:01:f8:e6:8a:f5:7b:
d5:7d:82:c8:97:b3:22:ed:64:b8:5c:21:77:b1:b2:0e:70:eb:
51:82:a6:c8:e8:34:bb:53:2d:d1:e9:b3:76:47:25:98:8c:a1:
e8:e9:17:2a:b2:26:07:6c:b3:76:d5:a7:75:44:fa:a5:77:6d:
d9:36:da:8c:36:92:70:25:69:25:96:8b:13:d2:5d:d3:ec:81:
2d:b9:4f:55:dc:87:65:19:39:05:83:6c:27:a9:64:60:b2:1c:
8e:11:a7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:56:45 2025 by rpki-client