Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EhhMhr7lhvtfo9vC8yIJr6jrg20.roa
File: EhhMhr7lhvtfo9vC8yIJr6jrg20.roa (raw, json)
Hash identifier: iu5xf7xme72c0R573GPdsxy4KWvZAjKaQg0T78NmRe4=
Subject key identifier: 12:18:4C:86:BE:E5:86:FB:5F:A3:DB:C2:F3:22:09:AF:A8:EB:83:6D
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018DFD3B743A0B91693B6A458050D6DB30EE
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EhhMhr7lhvtfo9vC8yIJr6jrg20.roa
Signing time: Sat 02 Mar 2024 03:35:48 +0000
ROA not before: Sat 02 Mar 2024 03:35:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 18:59:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fd:3b:74:3a:0b:91:69:3b:6a:45:80:50:d6:db:30:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Mar 2 03:35:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12184c86bee586fb5fa3dbc2f32209afa8eb836d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d3:7f:80:8c:43:fe:fe:76:b3:de:d5:38:fd:
bc:fc:ab:85:81:a5:bc:6c:b3:3b:be:7f:ef:00:b3:
43:71:24:2a:b3:fd:b0:1b:c9:04:2f:7c:ba:c0:5e:
5e:2c:fd:0c:b0:cf:07:f6:20:48:35:c0:21:6c:9e:
72:de:41:b1:9a:8c:38:91:c4:1d:db:86:f0:67:6f:
cb:e5:74:03:75:3c:8c:b2:2c:6f:38:e1:a2:7f:8a:
6a:e0:1c:ba:66:76:a8:d7:6d:41:fc:90:ef:11:14:
a1:cb:85:bb:c9:47:18:6d:5e:e3:85:2a:41:ee:ec:
c1:da:1b:59:5c:cf:ee:de:f2:eb:ae:f1:b1:ff:aa:
d5:a3:b6:91:3a:12:ac:4f:d8:e1:15:30:37:02:a7:
bd:0d:2b:e2:6d:42:d4:13:a1:5b:ee:ba:a4:9f:28:
ee:d6:e0:a7:42:f9:0e:b8:bf:c3:be:81:7b:34:8e:
ef:ae:14:eb:5e:9d:e2:5f:10:21:da:7f:50:37:0e:
94:af:c3:4f:d1:45:f5:13:44:02:97:35:97:2c:2d:
00:56:15:16:2e:8c:cc:73:e9:02:df:be:2e:ef:56:
35:31:59:7b:2c:63:08:1c:ca:fa:94:7e:5b:43:46:
b6:b2:e5:82:ec:59:d9:b2:95:66:df:07:9c:ae:67:
73:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:18:4C:86:BE:E5:86:FB:5F:A3:DB:C2:F3:22:09:AF:A8:EB:83:6D
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/EhhMhr7lhvtfo9vC8yIJr6jrg20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:e3:bb:08:75:0b:2f:18:78:96:9a:42:e4:48:80:18:db:34:
f0:0a:67:c5:18:0a:90:08:60:cf:55:3d:eb:f4:a2:f1:8d:c9:
5b:3c:76:1b:c9:d9:52:b1:61:9f:fc:5a:ec:74:68:70:d1:a0:
eb:c3:38:c7:4e:5f:02:6e:9b:66:e9:f5:1e:8d:02:a3:b1:1b:
8a:6c:6f:8f:2d:8b:62:ca:55:5e:5a:14:6d:46:22:d9:42:9e:
b5:89:93:0e:71:9b:9f:f5:63:f2:2d:e3:d8:67:2d:24:f6:e5:
54:a1:53:8b:d5:a7:ef:4a:38:7e:62:65:6d:2e:6d:5b:53:38:
72:8f:c2:0f:f7:c4:72:e5:39:f4:6d:68:93:12:41:da:12:ba:
db:30:12:ca:0b:b9:fa:33:d2:31:9b:06:85:54:20:c1:4d:99:
b3:dd:6e:fc:e4:bf:59:c4:67:13:a3:04:eb:d4:01:8d:ed:9d:
17:9f:10:f4:34:df:dd:65:0e:6a:90:a9:c2:57:90:50:2f:27:
d8:5e:f2:d7:0d:cf:77:c3:ce:0e:97:69:f8:9f:b6:0f:59:02:
aa:56:3e:c3:b4:6a:c3:68:c4:7c:c8:f9:c9:29:6d:fa:c3:bd:
38:55:c0:3d:87:09:09:cf:84:ad:12:63:af:40:94:e7:aa:4c:
c2:8d:b4:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 20:57:59 2024 by rpki-client on console-fra.rpki-client.org