Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Z10AK5bQR1xdyLfkTOBXIsSOVGc.roa
File: Z10AK5bQR1xdyLfkTOBXIsSOVGc.roa (raw, json)
Hash identifier: dStHeEwq0Uv3RdtJ+FPxKmtNVmiqnxNY3dUSRC0roKo=
Subject key identifier: 67:5D:00:2B:96:D0:47:5C:5D:C8:B7:E4:4C:E0:57:22:C4:8E:54:67
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0190B6E44FDF29D8907B0BAA959D84A557B2
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Z10AK5bQR1xdyLfkTOBXIsSOVGc.roa
Signing time: Mon 15 Jul 2024 14:55:34 +0000
ROA not before: Mon 15 Jul 2024 14:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215214
IP address blocks: 188.209.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Sep 2024 18:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b6:e4:4f:df:29:d8:90:7b:0b:aa:95:9d:84:a5:57:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 15 14:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=675d002b96d0475c5dc8b7e44ce05722c48e5467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:88:c7:38:9d:74:28:5e:85:29:0a:c3:06:0e:
8f:35:fb:6f:5d:51:22:2c:36:f8:81:f2:05:d0:a6:
61:3c:f7:2c:d0:ef:14:27:17:aa:21:50:58:0b:49:
87:5e:01:fc:e4:86:39:6f:f9:87:b8:40:66:be:64:
bd:35:23:ca:23:4c:c6:4b:75:e9:67:7d:fd:ba:4e:
53:55:3b:d9:2f:ee:11:0b:c3:4f:66:dd:a1:eb:f5:
c8:b6:c5:96:ca:94:9b:5e:d8:8d:6b:f9:6f:82:ed:
bd:b7:6a:47:42:96:4f:76:73:3d:87:04:48:35:14:
b3:31:9c:af:ec:4b:41:77:df:f6:05:50:80:67:1f:
c4:ae:2e:44:63:9d:ee:2e:f7:76:d3:89:a3:93:57:
49:b0:b5:92:ec:81:4d:28:d7:22:d1:dc:d7:ee:7e:
2e:71:87:25:40:8c:02:98:8e:85:5a:f9:64:e3:8e:
d1:65:07:82:6d:42:7d:49:7b:95:89:dc:6f:31:2f:
66:b9:ae:e3:29:90:36:f9:67:71:4a:96:42:61:60:
82:d6:f4:ae:44:b0:5d:71:d1:13:5e:9d:87:55:fa:
8c:67:11:3f:0e:d2:31:ce:cb:a8:1c:c9:37:b6:52:
fd:f4:ba:d2:46:a0:a6:c1:dd:39:b6:52:8d:13:4f:
c0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5D:00:2B:96:D0:47:5C:5D:C8:B7:E4:4C:E0:57:22:C4:8E:54:67
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Z10AK5bQR1xdyLfkTOBXIsSOVGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.139.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:cc:42:b8:81:45:67:b3:12:d2:c2:6e:42:34:8b:65:ca:97:
7a:1f:9b:ad:77:20:db:9c:e1:84:b8:ef:43:61:bd:89:26:bd:
65:9f:97:1f:f0:ef:27:e6:96:6f:67:ad:a5:82:a5:81:48:92:
1d:bd:5e:8d:96:c7:ad:e9:09:ba:20:0b:e0:7c:a9:95:97:eb:
61:4e:70:9b:72:e1:d1:76:ac:c0:b3:1f:ba:52:1e:f6:77:66:
52:cd:e3:70:4a:ab:f9:8d:97:80:17:c9:f1:a7:dd:be:bb:8f:
ac:32:26:61:16:20:b1:42:d7:b1:27:ae:f8:8c:b3:66:3a:dd:
cc:3b:ca:cb:e8:81:72:97:d1:6f:ed:8d:48:53:42:db:0a:aa:
79:8c:16:0f:5c:03:c3:6d:bc:2c:8e:6d:68:c4:5d:8c:5f:35:
d6:d2:97:23:05:7a:a9:20:6d:c6:05:1b:65:32:19:81:ec:f1:
84:cc:11:64:bb:8f:f6:01:d5:01:b3:9c:44:3a:43:8e:a2:4c:
72:ae:52:44:2d:b9:08:43:e2:ab:8e:03:34:07:2e:7e:3d:73:
2e:72:c8:83:13:54:82:7e:0c:a5:2c:c3:bb:68:68:f7:8c:20:
a4:6a:95:d8:30:43:9a:c0:4b:f4:8c:db:61:ec:99:93:80:10:
0d:0b:04:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 15 23:08:08 2024 by rpki-client on console-fra.rpki-client.org