Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/g5zfHS1GxBXoAJfUO6NCQUzUAs4.roa
File: g5zfHS1GxBXoAJfUO6NCQUzUAs4.roa (raw, json)
Hash identifier: Hu16/yknfHhDJ7BPSsb5stW0d2NWtDvA8qkbpX9oCeE=
Subject key identifier: 83:9C:DF:1D:2D:46:C4:15:E8:00:97:D4:3B:A3:42:41:4C:D4:02:CE
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01900935BB14EA008788A9480F61A7382A07
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/g5zfHS1GxBXoAJfUO6NCQUzUAs4.roa
Signing time: Tue 11 Jun 2024 21:30:34 +0000
ROA not before: Tue 11 Jun 2024 21:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
188.209.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jun 2024 06:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:09:35:bb:14:ea:00:87:88:a9:48:0f:61:a7:38:2a:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 11 21:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=839cdf1d2d46c415e80097d43ba342414cd402ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c1:e6:ef:b1:d2:4d:c2:c6:63:7e:6b:40:50:
0c:fb:eb:67:f5:c6:5b:78:80:72:98:88:c5:e2:8e:
8f:40:11:c2:ea:21:96:51:a1:78:61:24:66:5a:f8:
0f:aa:b2:50:09:67:78:bf:06:02:81:30:da:41:48:
0b:87:40:0d:a1:a5:b2:0f:bc:90:e4:52:1d:ac:ad:
e2:b0:08:92:46:74:eb:67:8f:29:2a:c9:54:97:4f:
76:d9:dd:72:f8:53:69:19:bb:6f:8a:9f:d2:26:32:
4b:ab:4d:83:eb:65:0e:3f:d1:a3:b5:11:66:c5:4b:
82:d5:d0:bf:a3:ab:5d:0a:c3:3e:4a:70:8f:e0:a7:
3f:b8:b4:80:75:6e:63:d5:30:14:b1:bc:0f:98:25:
37:e3:ba:a3:2d:3d:6d:75:bf:b4:26:19:f6:09:2e:
79:68:d3:26:13:3b:93:3d:7c:8d:8b:20:fb:05:97:
8b:89:98:e8:e6:c5:f8:15:12:d6:9f:f1:54:6e:13:
b3:14:61:30:e5:97:f4:07:62:7d:a0:b5:75:28:fa:
a5:06:dc:5b:d0:36:13:2b:b1:f7:ce:77:e2:3b:84:
76:50:34:41:6e:5b:c3:58:a0:96:cb:9d:a0:31:c8:
88:0e:63:dd:76:f0:8a:17:0d:d1:18:90:cd:ce:56:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9C:DF:1D:2D:46:C4:15:E8:00:97:D4:3B:A3:42:41:4C:D4:02:CE
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/g5zfHS1GxBXoAJfUO6NCQUzUAs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0-188.209.136.255
Signature Algorithm: sha256WithRSAEncryption
6f:05:cd:62:86:ac:c1:97:c9:1e:9a:16:1c:92:48:8d:2c:0b:
07:c7:77:85:94:a5:e3:bc:d2:30:77:ff:85:c3:6b:ec:58:90:
9e:d8:d1:b8:81:5a:8e:4c:df:4e:1c:d4:a1:a1:e2:52:d9:95:
07:1c:fc:34:93:fa:68:66:17:8b:be:2e:de:3e:bd:d7:43:a7:
32:0a:2f:53:14:93:e4:3f:2a:33:26:d7:de:67:a1:a7:45:69:
0c:d6:cb:68:f3:cd:b3:5e:e9:1e:6b:1a:d0:c6:16:46:35:79:
55:23:95:32:e6:5c:fe:78:e2:f3:c4:62:30:63:4e:0e:7e:76:
45:a5:cd:de:b5:46:30:75:02:06:13:dd:3b:e6:31:d9:ae:9d:
73:d6:39:f5:24:db:40:2b:e7:31:58:43:9b:10:bc:f9:3d:bd:
d0:63:e5:e0:53:c0:e3:00:66:67:e7:8b:59:01:90:a2:45:05:
ce:94:88:4c:d0:fa:7b:20:32:d8:b7:7f:b2:d9:3c:ad:40:48:
62:6d:cf:d7:92:a8:da:68:bd:9c:0f:08:19:87:52:49:68:91:
a4:98:40:03:7b:d9:4b:17:43:ea:b4:ea:c3:00:89:1d:11:74:
49:ee:e5:25:28:25:31:b0:fd:52:22:cf:c2:19:ba:94:64:76:
28:02:0e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 07:03:01 2024 by rpki-client on console-fra.rpki-client.org