Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/3pQj2dFXCuYRNfMVB3SAQXgAJ9o.roa
File: 3pQj2dFXCuYRNfMVB3SAQXgAJ9o.roa (raw, json)
Hash identifier: 4bEKi0AdjhudIEAuAb+gycQufHqMLqx/gU4SpZG9QmU=
Subject key identifier: DE:94:23:D9:D1:57:0A:E6:11:35:F3:15:07:74:80:41:78:00:27:DA
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01931B3B4835E91EC5F3697EBEBD7431D1F5
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/3pQj2dFXCuYRNfMVB3SAQXgAJ9o.roa
Signing time: Mon 11 Nov 2024 12:38:09 +0000
ROA not before: Mon 11 Nov 2024 12:38:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Nov 2024 12:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1b:3b:48:35:e9:1e:c5:f3:69:7e:be:bd:74:31:d1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Nov 11 12:38:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de9423d9d1570ae61135f31507748041780027da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:71:86:e8:b9:45:46:70:dc:09:7f:3d:b3:
41:11:b9:9b:2f:60:ea:a5:86:f6:b0:47:28:b7:38:
90:67:85:d3:80:be:9a:b6:ba:b1:18:af:b5:86:15:
45:16:5b:82:40:85:0e:3f:13:6e:b0:da:bf:59:98:
ce:e1:16:74:bb:12:12:f6:be:68:96:a3:b4:c6:67:
91:63:cb:17:54:34:1a:3c:4d:a7:56:bf:0d:5d:ac:
41:c4:b8:56:a9:af:3b:2f:72:55:90:5c:5e:44:a2:
dc:f4:a0:b9:5f:f2:ca:5d:61:f2:bc:b0:08:f7:2f:
83:84:ee:5d:ae:57:f1:fb:c0:cd:57:06:00:9a:8f:
a3:0e:90:db:58:e3:ea:3b:73:bf:ed:67:7a:b4:61:
31:1c:40:8f:3e:bb:3d:74:2e:6c:f7:e5:f5:ed:93:
e9:c5:59:5e:d0:ae:9c:77:40:d2:fd:d2:25:c7:95:
6d:da:b3:5a:f9:1f:a3:38:58:68:43:28:26:a0:c1:
06:d4:c9:13:7e:bb:e8:14:b9:7a:b3:b4:19:18:8d:
43:9e:78:d9:d6:0e:fd:d4:1c:e2:b8:5e:4c:5d:d0:
09:4b:25:94:4d:e5:9a:25:bd:fb:c8:da:c7:9d:74:
3f:8a:9b:52:c8:b0:72:76:7f:15:1a:b3:72:d2:3d:
01:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:94:23:D9:D1:57:0A:E6:11:35:F3:15:07:74:80:41:78:00:27:DA
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/3pQj2dFXCuYRNfMVB3SAQXgAJ9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
71:3f:92:84:23:49:63:fe:ac:c6:48:d8:c5:c1:75:26:91:47:
4d:f1:66:6f:b5:2b:b9:ab:d5:bf:ff:cd:f5:27:f9:2b:21:d1:
1f:2c:5d:9e:46:52:cd:84:22:57:38:ef:d0:f2:d7:98:b2:61:
a7:37:13:cf:e9:86:23:59:51:0d:02:87:1a:d1:25:94:dc:26:
f0:0d:1c:8a:1d:a8:d0:8f:0c:12:65:5c:21:2d:a4:36:c2:5a:
84:c5:f1:b0:e9:30:40:99:39:33:dc:b8:a5:31:42:09:30:6f:
3a:f4:b8:d7:34:28:73:c2:0a:84:33:37:85:8c:5e:8f:90:54:
58:13:b8:a2:b4:ba:c6:a4:c7:c0:81:f0:af:b2:fd:aa:17:3d:
d8:3c:d9:83:18:ec:83:c3:98:d5:fe:be:a0:63:59:c9:cf:de:
27:f9:fb:44:61:69:9a:5f:82:09:55:30:c9:fa:bf:fb:c0:73:
f3:a4:f5:33:75:76:d9:64:da:dd:4f:7a:7e:aa:79:de:c8:39:
b5:22:c8:06:ce:8c:66:25:7a:a3:66:04:4e:4a:d7:71:8d:29:
99:3a:5a:79:99:9b:f2:14:d1:98:9c:94:b3:e4:9d:15:5b:c7:
55:bb:8d:5f:dd:e9:da:f2:11:cd:0f:d1:2b:3b:58:e6:2d:c5:
49:e7:fa:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 15:03:09 2024 by rpki-client on console-ams.rpki-client.org