Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/N2y6Fko1Pn96GcvfTyZU-JnSnBQ.roa
File: N2y6Fko1Pn96GcvfTyZU-JnSnBQ.roa (raw, json)
Hash identifier: UeAKZ98+Mayrynp3Em1ElEZFQjivzJzczyIoUg/0b+U=
Subject key identifier: 37:6C:BA:16:4A:35:3E:7F:7A:19:CB:DF:4F:26:54:F8:99:D2:9C:14
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0189D09479D45E3837051F13A896867679CE
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/N2y6Fko1Pn96GcvfTyZU-JnSnBQ.roa
Signing time: Mon 07 Aug 2023 15:18:58 +0000
ROA not before: Mon 07 Aug 2023 15:18:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.15.97.0/24 maxlen: 24
194.15.98.0/24 maxlen: 24
188.209.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 17:19:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d0:94:79:d4:5e:38:37:05:1f:13:a8:96:86:76:79:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 7 15:18:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=376cba164a353e7f7a19cbdf4f2654f899d29c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:53:71:ec:c2:b4:0a:f4:11:ba:1e:a3:a6:16:
97:08:37:62:8a:aa:b2:b3:98:88:7b:6c:6f:78:34:
19:c2:a0:90:72:e8:84:7d:17:31:c3:2a:a8:96:df:
5b:3a:e2:e7:f0:7a:1a:0e:ee:e0:97:9d:14:e2:68:
d3:5e:88:11:f0:b9:d9:3c:1e:71:30:a7:75:c1:95:
db:75:54:9f:ee:d8:93:a9:a2:cf:6a:0a:b9:da:34:
0e:a7:e8:76:00:e4:f1:bf:b0:ef:3f:42:f8:f0:f2:
d8:62:e4:94:be:0b:b7:a4:59:b0:a8:76:ae:6b:57:
5b:8d:c3:b6:b3:e9:67:b6:27:a1:65:cd:20:cf:0c:
d8:52:4e:46:f2:86:66:91:4b:27:4e:f4:81:2a:3f:
a8:f5:5b:d7:da:00:74:18:45:27:bd:8f:fd:f9:f9:
26:63:01:59:7a:b0:ab:67:8d:4c:1b:27:cc:cb:eb:
d0:3b:94:81:5d:c8:c8:7c:dc:eb:07:8e:e2:b2:c1:
60:c8:25:f2:e3:8d:d1:29:1c:49:73:16:91:5b:ec:
10:65:73:64:f7:30:9a:1a:a8:c4:59:36:84:54:d5:
2b:27:6a:da:12:b7:b7:09:70:3c:99:90:7b:80:7d:
78:73:89:26:76:1f:4e:c6:60:8b:c8:ba:16:d7:d0:
00:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6C:BA:16:4A:35:3E:7F:7A:19:CB:DF:4F:26:54:F8:99:D2:9C:14
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/N2y6Fko1Pn96GcvfTyZU-JnSnBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.140.0/22
194.15.97.0-194.15.98.255
Signature Algorithm: sha256WithRSAEncryption
06:dd:01:99:66:a8:95:5d:73:ea:e2:b8:2e:9b:80:ca:d9:2e:
2e:c8:71:07:9f:2b:31:e6:ae:c0:be:b2:f2:fe:fb:44:67:20:
00:aa:12:eb:6f:ec:43:6f:3e:e4:ef:eb:05:fa:42:4b:f6:b4:
2c:18:a8:83:39:d2:66:87:d2:cf:d8:11:49:b4:f3:57:58:b9:
9c:bb:d0:7d:63:11:36:49:7a:1d:c8:17:5d:74:74:bf:4f:f4:
a9:1d:28:ae:82:db:9e:59:93:88:07:57:5e:e2:00:cf:51:79:
4c:53:25:99:85:39:9f:f9:37:e8:0f:b1:b0:69:00:d8:86:25:
3c:ec:d5:7c:20:bc:b2:ae:b3:0e:c6:b0:e2:46:b1:98:b7:c7:
d8:5e:f4:15:98:e3:3d:b2:40:8c:5d:45:df:4d:ac:b2:07:9a:
12:fa:a0:f6:70:ed:0c:69:8c:25:3f:b3:7d:e9:d1:8e:71:15:
02:43:69:48:28:83:de:62:4d:dd:e6:bf:65:3d:59:de:ed:38:
ea:a5:ea:ea:66:03:98:07:f7:41:6c:62:63:7f:22:01:51:66:
75:fc:d9:27:64:5f:75:7e:eb:a1:7c:61:9a:50:a2:1e:47:ab:
13:20:e1:02:a4:df:5e:75:f7:30:c3:7a:35:9e:cf:8c:93:83:
0a:5f:5b:d5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org