Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/U-eRYrPbxLcvBiaVO3vRZOpI28o.roa
File: U-eRYrPbxLcvBiaVO3vRZOpI28o.roa (raw, json)
Hash identifier: vInP2tFuSZ9y6PuQQ6F+3PUuj674hAiOmdKVpDWp9hA=
Subject key identifier: 53:E7:91:62:B3:DB:C4:B7:2F:06:26:95:3B:7B:D1:64:EA:48:DB:CA
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0189BF89B28083A5901935780BCB1797568E
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/U-eRYrPbxLcvBiaVO3vRZOpI28o.roa
Signing time: Fri 04 Aug 2023 07:53:39 +0000
ROA not before: Fri 04 Aug 2023 07:53:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 15:17:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bf:89:b2:80:83:a5:90:19:35:78:0b:cb:17:97:56:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 4 07:53:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53e79162b3dbc4b72f0626953b7bd164ea48dbca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:53:da:d2:20:b7:42:41:0d:7b:97:a8:1d:
ff:26:b7:f1:fc:cf:ab:80:48:1d:b7:56:75:7a:e2:
ef:e9:a0:40:de:56:35:f1:66:f2:ea:5e:7f:cb:cb:
a0:4e:2b:27:4e:13:67:92:3b:c6:b8:32:67:4d:c6:
66:1e:93:4b:ca:23:84:a8:66:81:9b:20:86:3f:89:
60:59:ba:b7:20:79:5d:e4:5c:a5:fb:59:ce:38:83:
fc:3f:f7:a3:2c:1a:7d:9b:ba:cc:22:89:ce:23:1b:
b9:01:17:04:10:d4:da:e1:b8:e6:77:dd:46:56:bc:
31:ac:f5:a7:e5:15:3e:e6:f4:00:19:2b:c8:1f:e4:
ec:8f:b2:95:01:10:d1:d5:8d:ac:00:cf:44:ad:fc:
c6:95:2e:57:9a:d2:17:f3:13:99:5a:30:6e:97:d1:
b6:b5:e3:55:2f:4a:b9:db:2f:b5:d5:4c:be:97:7b:
f7:94:eb:81:d0:c6:68:1a:c2:cf:bd:82:83:3e:1b:
90:94:4a:f5:15:30:bc:d1:de:80:95:d5:d5:eb:e4:
d0:d4:80:90:01:85:30:b9:4d:17:69:38:15:89:d8:
1f:cf:00:78:4b:1c:85:af:ea:2a:da:1b:5d:b8:59:
69:af:f7:93:89:a9:0c:61:02:32:73:79:6e:5b:31:
c6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E7:91:62:B3:DB:C4:B7:2F:06:26:95:3B:7B:D1:64:EA:48:DB:CA
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/U-eRYrPbxLcvBiaVO3vRZOpI28o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.140.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:27:71:14:be:a8:98:04:0e:3d:32:e4:0e:cc:80:55:bc:46:
59:67:50:0d:01:c8:a7:3e:43:76:89:9b:f3:b9:ec:38:40:30:
9a:d1:ec:0a:0b:1f:7c:9b:79:0d:06:2f:1a:3b:85:0f:76:d7:
47:19:96:a0:20:4a:af:c4:13:ba:48:0a:9b:c8:18:25:8f:0e:
23:cc:35:54:f0:fd:f5:ec:fd:26:ec:23:e0:91:12:ec:38:6d:
8c:be:e9:61:c8:b4:ff:d3:f2:50:76:00:35:2a:b5:3a:17:ba:
ec:d5:59:fd:16:88:ce:a4:3e:bf:79:2f:43:99:31:cf:20:0c:
a8:e2:78:91:c6:1d:8d:8e:90:42:c9:e7:dc:05:99:1c:72:81:
cf:3c:a5:51:ee:11:87:9e:58:91:3a:9e:8a:6f:1c:ed:b5:06:
03:c5:19:5d:c4:46:f7:92:19:ce:06:8e:23:1b:34:36:0f:54:
26:c2:99:39:cc:90:c7:c0:d3:19:f1:1f:b1:89:90:47:99:16:
1a:f8:91:c8:db:f9:c2:64:09:d9:1f:0b:5d:87:f8:d2:0d:51:
ad:63:e0:bb:44:68:0b:84:20:d6:8a:43:9b:3b:7e:22:a7:61:
3b:a0:9a:5a:db:f3:06:ea:f3:42:07:40:b5:4e:8a:e5:2a:fa:
7e:eb:15:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org