Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/aMjM2Ph8XOVNoG7Q9TxUQxo0kQE.roa
File: aMjM2Ph8XOVNoG7Q9TxUQxo0kQE.roa (raw, json)
Hash identifier: ZcLYu7ocdvBlfjUIq00Av9sNI2Uz15CgEZcoOYFbvmg=
Subject key identifier: 68:C8:CC:D8:F8:7C:5C:E5:4D:A0:6E:D0:F5:3C:54:43:1A:34:91:01
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0188940232D007CBF3E37AEECE5277EC6FC9
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/aMjM2Ph8XOVNoG7Q9TxUQxo0kQE.roa
Signing time: Wed 07 Jun 2023 03:59:11 +0000
ROA not before: Wed 07 Jun 2023 03:59:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.140.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:02:32:d0:07:cb:f3:e3:7a:ee:ce:52:77:ec:6f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 7 03:59:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68c8ccd8f87c5ce54da06ed0f53c54431a349101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d0:e9:94:59:8b:c8:82:e9:3f:51:f7:38:c6:
c7:f4:3f:ad:bf:7b:30:50:79:70:5e:80:4f:9b:49:
3b:88:c4:1d:ce:09:a6:cc:cb:46:fa:c7:00:25:8e:
0e:77:d1:4a:7c:f6:97:c7:a6:af:da:6f:1d:f2:d9:
40:01:5d:0c:42:ae:a0:26:dc:3f:5a:b3:ba:65:cf:
71:e8:d7:23:6a:48:d6:36:f7:a9:7a:2f:ba:fd:ff:
fd:9e:78:a6:6a:5f:3f:70:e0:dd:9f:b6:40:70:5f:
2e:ce:31:74:ec:d3:3d:53:85:c1:16:dd:53:91:ca:
b7:d9:1e:d7:c1:74:1e:f1:dd:58:67:af:3e:47:e9:
8a:f2:9f:f7:69:85:ff:1e:6c:6c:ba:20:5f:f3:b5:
e0:2b:90:87:b9:74:df:0b:14:ab:8c:d9:1a:21:74:
98:9e:57:c8:2e:50:14:89:1a:48:2e:09:80:44:64:
41:6f:d8:4e:5a:79:60:2a:b8:e6:a9:85:86:e1:5c:
94:2b:e0:05:9c:d0:a1:e2:ec:75:6b:31:6c:4e:f7:
6d:14:93:47:49:8f:77:24:5b:e0:de:e6:d9:6b:f7:
e8:8f:66:04:78:61:f9:4f:77:67:51:6d:57:a0:69:
ee:46:64:ad:11:b8:2f:ba:98:eb:34:bf:89:8d:fa:
1d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C8:CC:D8:F8:7C:5C:E5:4D:A0:6E:D0:F5:3C:54:43:1A:34:91:01
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/aMjM2Ph8XOVNoG7Q9TxUQxo0kQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.140.0/22
Signature Algorithm: sha256WithRSAEncryption
17:c4:16:a7:46:33:bd:dc:34:0b:78:83:9a:4d:1c:4b:89:a5:
c5:22:15:17:78:ad:40:d4:10:36:ed:62:58:c0:dc:e7:25:76:
3c:94:e2:df:51:14:8a:3a:f5:fe:c5:43:0d:56:b4:d1:d1:28:
76:a8:07:23:99:e2:ce:0f:36:7c:fb:03:31:f0:32:70:04:59:
99:3b:bc:f7:a2:80:13:9e:ca:d8:4d:19:55:5f:ff:0a:bd:a9:
69:70:b8:99:6a:72:1b:16:e3:30:4e:71:f8:74:fb:79:07:36:
6c:2e:5c:8a:c0:d7:d5:a9:30:9e:8e:31:8e:8d:97:01:72:0c:
4f:1c:50:76:e8:cb:44:a0:b8:cc:98:46:67:b7:97:9d:31:3c:
ed:86:f8:0c:72:50:df:a1:41:4e:e3:b7:e2:b6:f5:d4:6c:1b:
6b:10:a6:40:89:90:9d:a5:c9:fa:57:63:39:fe:76:ea:2a:cf:
c5:e1:50:24:63:dc:89:63:c1:5f:12:c7:26:c6:30:08:8c:1d:
04:7e:56:21:59:63:a6:90:04:16:30:b1:e0:58:27:da:24:44:
51:0d:8f:f6:a4:39:6f:d6:98:01:a5:21:74:03:91:f2:2a:e8:
3c:04:aa:f7:47:dc:cb:2a:2c:6f:11:95:f8:5a:c0:0d:d9:fd:
d1:7f:dd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:14 2023 by rpki-client on console-fra.rpki-client.org