Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/GyXXN14bk_mUJSE3AoIaooTSUto.roa
File: GyXXN14bk_mUJSE3AoIaooTSUto.roa (raw, json)
Hash identifier: 54VR4Eu/Y39ivGMBXVsRyoed4zFt+QyTjhuk1ILt/2E=
Subject key identifier: 1B:25:D7:37:5E:1B:93:F9:94:25:21:37:02:82:1A:A2:84:D2:52:DA
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0190A03E470F88368241774D0CB14A9E02BD
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/GyXXN14bk_mUJSE3AoIaooTSUto.roa
Signing time: Thu 11 Jul 2024 05:22:34 +0000
ROA not before: Thu 11 Jul 2024 05:22:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.128.0/22 maxlen: 24
188.209.132.0/22 maxlen: 24
188.209.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 15:24:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a0:3e:47:0f:88:36:82:41:77:4d:0c:b1:4a:9e:02:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 11 05:22:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b25d7375e1b93f99425213702821aa284d252da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d4:6b:22:78:41:ef:7c:4d:81:69:67:1f:e7:
4e:12:b0:d6:de:33:14:da:f7:48:80:96:c2:1f:45:
30:1b:6b:3f:32:3e:57:c4:d9:43:08:e0:ec:51:2a:
ba:03:f3:f4:fd:c8:db:3f:74:5b:ef:85:80:1e:cc:
b8:d1:d3:cf:a2:76:fc:4c:af:d8:eb:01:35:54:a6:
31:d2:9d:94:11:5f:0a:ef:a5:02:96:57:b1:7f:fd:
bd:a3:d8:43:80:d8:e6:e5:28:14:b1:25:1a:d7:f0:
d6:75:aa:25:9e:c3:df:2c:82:7a:18:5e:14:b0:c7:
42:e3:99:c2:ce:b3:c3:67:4d:a2:59:2a:98:b8:de:
fd:51:04:39:73:d3:01:5b:1d:2e:40:65:99:79:70:
43:a7:cf:d2:6b:8d:b7:e0:cb:b7:66:8f:f6:a4:e4:
1b:57:94:00:28:65:32:da:ce:3f:97:ad:8a:99:b2:
75:4f:f9:35:e2:6b:e1:be:46:7a:c6:5a:f9:ab:f9:
4f:5a:24:f9:a5:fa:24:49:32:28:1e:71:07:44:56:
55:2e:7d:40:57:74:d7:d2:07:20:7c:bb:f2:d8:5c:
7b:69:4a:80:d5:36:43:2e:d3:44:bc:e1:c2:03:3c:
bf:f3:53:80:fb:f9:d3:8b:e6:ff:d8:8e:91:31:b0:
a7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:25:D7:37:5E:1B:93:F9:94:25:21:37:02:82:1A:A2:84:D2:52:DA
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/GyXXN14bk_mUJSE3AoIaooTSUto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.128.0/21
188.209.137.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a7:e8:ca:05:b4:60:81:29:37:4c:b5:4b:aa:16:14:05:21:
45:dd:92:55:2f:ce:8d:0d:9a:f2:db:82:f4:e7:7e:ae:8a:fc:
40:06:72:44:21:bb:13:88:0d:06:92:fc:c9:a1:b3:8e:a8:8d:
08:74:b0:56:a3:b3:95:18:3c:65:06:58:16:e4:3f:03:7c:67:
28:90:a2:90:08:17:27:d7:b6:4a:67:75:75:31:7e:be:89:8e:
6c:98:27:86:75:c9:6d:60:36:10:e0:d6:b4:a3:cd:32:da:a0:
9d:83:72:29:27:a2:42:ff:09:d2:17:8a:89:fe:84:86:69:35:
32:82:b0:1c:0c:1c:2c:a7:2a:ff:cd:90:f7:8c:8b:df:d5:ac:
55:79:44:0a:8a:11:d0:44:62:e5:98:b5:b9:c3:62:15:f5:1b:
c2:d9:e0:bb:db:f0:8a:63:08:ed:88:cc:e2:30:78:bd:25:71:
03:76:e5:c9:e8:5d:65:f2:1a:1c:36:6e:05:f6:22:05:ad:e9:
b7:4e:ed:bb:13:78:05:27:fe:ae:78:b8:f9:ff:d3:47:4f:e1:
a7:a1:73:3a:71:a8:82:64:d7:0f:57:b7:98:45:3f:f5:dd:68:
81:12:4b:ef:36:c8:41:9e:45:8f:9b:41:29:da:35:33:bf:ae:
a8:0c:24:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 17:47:37 2024 by rpki-client on console-fra.rpki-client.org