Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/8H5oEJkFe42srdWJ3e9W92Gsqi4.roa
File: 8H5oEJkFe42srdWJ3e9W92Gsqi4.roa (raw, json)
Hash identifier: DRntvGxvqhj8IYTKlVCE2qNcZSNGqOTILLWUZ0QLuh0=
Subject key identifier: F0:7E:68:10:99:05:7B:8D:AC:AD:D5:89:DD:EF:56:F7:61:AC:AA:2E
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018FE7480560BD4DCEB05C40A56A1DA21073
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/8H5oEJkFe42srdWJ3e9W92Gsqi4.roa
Signing time: Wed 05 Jun 2024 07:23:27 +0000
ROA not before: Wed 05 Jun 2024 07:23:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
188.209.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 19:56:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e7:48:05:60:bd:4d:ce:b0:5c:40:a5:6a:1d:a2:10:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 5 07:23:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f07e681099057b8dacadd589ddef56f761acaa2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:46:0c:4d:e0:ac:1d:5e:b7:e5:23:0d:c3:ed:
6b:c3:4a:8f:94:f1:ab:d7:d6:b1:08:1a:b6:81:60:
f3:80:6e:5c:ee:47:b9:9c:24:9d:3f:b6:a6:c3:42:
e3:20:a9:05:98:90:10:9d:28:c7:0a:ea:a0:8a:70:
22:8b:35:93:66:a6:ae:f5:30:22:79:a9:71:16:8a:
9d:91:01:e4:50:a8:68:47:d6:03:47:1b:4d:d5:32:
44:82:d7:3c:b2:32:37:9e:dd:ef:df:0e:14:f5:cf:
79:33:75:36:38:2e:cd:ab:6b:99:b7:ac:65:1e:42:
e8:61:63:ed:91:d4:27:e4:13:70:ff:85:d6:27:11:
ed:23:5f:95:fc:b3:9e:a6:34:d6:7a:8f:05:c4:41:
75:fc:86:df:16:99:21:b8:57:27:a3:ec:eb:a6:f3:
73:50:3a:43:ec:0a:c5:20:32:ef:00:0a:95:54:70:
31:b9:64:60:13:23:94:7d:a2:8c:a4:0f:38:87:e9:
5e:4e:da:b8:f4:c8:90:e0:22:fe:d2:6c:a2:24:98:
f2:a0:db:b3:22:af:7d:77:ce:b3:c9:f5:53:bd:78:
d8:da:a8:0f:a8:16:0c:5c:89:d3:1f:27:b8:0a:86:
43:e5:ec:09:41:e4:77:a5:13:4a:50:5e:ef:42:b4:
88:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7E:68:10:99:05:7B:8D:AC:AD:D5:89:DD:EF:56:F7:61:AC:AA:2E
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/8H5oEJkFe42srdWJ3e9W92Gsqi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
04:39:5f:bd:0e:8c:0c:c5:28:49:d5:d0:65:ee:e8:68:e7:15:
ec:20:bb:99:50:85:8d:03:78:36:8d:7b:f3:14:f6:20:0e:88:
d1:5f:53:30:8d:de:8d:a1:2f:11:bc:a2:d2:c4:a9:43:7e:d0:
8b:cb:57:72:5e:6e:6c:82:b3:6b:50:4b:08:cf:6d:73:f2:10:
c5:71:86:db:ba:0d:c1:91:0e:22:3b:59:ed:05:ae:4d:fe:28:
e4:8f:43:7c:b7:cf:4e:f2:34:10:26:36:c5:98:26:cf:89:8b:
25:22:b0:49:bb:73:0b:46:1c:9d:21:91:40:6e:e8:ea:c3:c4:
02:2e:e8:37:15:70:28:f2:f5:b4:a6:d5:4e:44:8e:88:86:7c:
15:e1:39:5c:6f:90:7a:b3:41:cf:be:be:c0:c6:f3:5e:46:55:
6c:c5:82:b3:68:46:61:21:b9:62:3d:47:ba:92:03:c5:75:54:
a1:a3:77:5c:06:b7:f8:d8:bc:cc:df:2c:5d:b7:d0:8c:c4:b5:
61:27:43:4f:18:47:02:39:3c:ea:47:25:02:56:46:fe:f2:ec:
a5:11:3b:05:91:6a:fa:f9:ea:14:29:38:42:bd:48:28:85:74:
d6:02:6b:b2:52:22:bf:b3:42:b1:8f:51:e3:be:07:94:36:e6:
3a:44:57:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org