Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/g4YF9LXzg2qCmISjbdwbBn0QZ5E.roa
File: g4YF9LXzg2qCmISjbdwbBn0QZ5E.roa (raw, json)
Hash identifier: 3PgbcW7rY6zKOv4vSNPBVRaVjOi+KNtT0cHZC/dpK4I=
Subject key identifier: 83:86:05:F4:B5:F3:83:6A:82:98:84:A3:6D:DC:1B:06:7D:10:67:91
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01920965F281D569C844FE168F025347B348
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/g4YF9LXzg2qCmISjbdwbBn0QZ5E.roa
Signing time: Thu 19 Sep 2024 08:28:49 +0000
ROA not before: Thu 19 Sep 2024 08:28:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 188.209.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 09:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:09:65:f2:81:d5:69:c8:44:fe:16:8f:02:53:47:b3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 19 08:28:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=838605f4b5f3836a829884a36ddc1b067d106791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:84:79:11:31:2e:73:fe:35:6f:36:4b:6a:ad:
cb:e4:b9:4f:09:68:b5:4a:bd:25:89:30:27:23:b9:
fd:a8:1a:69:5d:09:90:80:61:a3:0a:19:93:9d:18:
5b:6c:aa:8e:97:bc:29:7f:83:f3:fd:b4:6f:cd:ca:
35:57:6c:ae:24:74:26:3a:03:d5:06:6c:ec:cb:f6:
7c:78:9d:55:45:6e:db:8d:5f:6b:06:7d:a0:85:b4:
c0:48:91:e6:8a:49:ca:e2:1c:eb:cc:aa:29:c1:e1:
64:c5:e1:03:d1:9c:6c:67:25:07:72:2c:4a:e7:6c:
51:34:57:ec:a2:b7:2f:ad:fd:c7:6d:58:6b:63:14:
8f:60:a3:47:bc:2c:95:cb:f9:39:a0:0f:fc:bf:31:
ad:19:d7:c5:66:f2:57:9d:5f:c0:fe:b9:72:a2:d2:
7d:0b:50:b6:df:11:c6:bb:15:fe:33:99:70:70:b5:
0b:2d:b3:17:f8:b9:cb:d2:0f:60:3a:db:4d:82:70:
f3:86:d5:e9:7f:87:3c:f3:d8:97:9a:99:d6:d3:29:
f0:b0:de:16:f0:59:db:5f:33:6f:ab:44:77:85:8d:
a7:c0:f0:8b:44:cc:7a:01:cb:c5:24:65:aa:8d:d3:
46:c4:bb:98:da:76:ea:50:76:88:0b:bd:5f:d4:fe:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:86:05:F4:B5:F3:83:6A:82:98:84:A3:6D:DC:1B:06:7D:10:67:91
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/g4YF9LXzg2qCmISjbdwbBn0QZ5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.139.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:3c:e0:17:47:a7:81:f5:17:53:fc:a0:d9:ef:b3:c2:2e:10:
6c:62:6c:ed:75:b6:d4:25:0e:e2:36:fd:6d:58:9a:11:cc:f1:
6e:be:91:c3:71:ff:a8:e6:30:78:25:84:0d:1a:95:f1:67:fe:
4d:3c:f9:55:0d:ba:f8:6d:52:fe:b7:23:22:71:bb:a1:11:d5:
a9:c5:c7:bd:b3:c5:86:2f:d1:e8:fe:b9:ae:64:d1:08:d9:03:
a9:8f:f7:68:6d:dd:5f:70:e0:03:d4:68:aa:c5:a7:14:fd:46:
62:96:d8:54:74:a6:ab:d3:3c:f0:fd:eb:2e:3b:ff:ca:d5:20:
55:8b:26:5b:2f:e4:2f:72:49:ee:01:67:4f:06:3f:01:d6:e4:
b5:71:36:0d:ce:ee:55:bc:46:f4:5d:26:4b:da:93:61:22:e0:
62:d2:bc:4a:53:41:26:2e:50:45:43:6d:7f:dd:e3:7d:71:92:
51:a8:b8:be:d5:36:e7:f2:4f:6b:25:c8:05:c3:02:4b:66:5e:
bd:cd:2b:4f:b0:40:42:be:03:73:14:e7:47:da:b1:40:0e:8a:
06:81:0a:e2:76:5b:79:f8:a9:f7:dd:a7:c8:99:7d:ed:42:6c:
6a:cf:47:b9:b7:b0:cb:f7:ed:0d:b3:2d:b9:f5:d3:33:0a:f5:
a9:71:ea:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 11:20:00 2024 by rpki-client on console-ams.rpki-client.org