Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/mI-gWdb5HANCF3pwLly1TnsUyag.roa
File: mI-gWdb5HANCF3pwLly1TnsUyag.roa (raw, json)
Hash identifier: aai6jTsVV8BIn2VfvirNI4W0zLZS+Z8SifIgvbOdCz4=
Subject key identifier: 98:8F:A0:59:D6:F9:1C:03:42:17:7A:70:2E:5C:B5:4E:7B:14:C9:A8
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01901BF3183A71F696ADE6F16EC80436DC63
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/mI-gWdb5HANCF3pwLly1TnsUyag.roa
Signing time: Sat 15 Jun 2024 12:50:34 +0000
ROA not before: Sat 15 Jun 2024 12:50:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 188.209.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 07:59:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:f3:18:3a:71:f6:96:ad:e6:f1:6e:c8:04:36:dc:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 15 12:50:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=988fa059d6f91c0342177a702e5cb54e7b14c9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:41:cf:70:38:cf:0d:e6:b2:08:66:d6:d6:9a:
b1:cc:40:7f:93:f1:04:0d:de:e9:b4:9e:3e:41:99:
06:60:69:25:da:83:ba:49:38:f3:71:2f:e7:27:ba:
89:7d:43:24:5e:5e:7f:77:1e:76:4f:15:b0:b2:61:
d9:97:73:94:7d:b7:6f:c2:a6:47:12:52:2e:43:01:
fc:bb:95:58:99:72:58:2c:1c:b9:bb:fd:91:3d:f4:
6e:b3:0a:dc:98:af:d9:44:71:6a:27:d3:e9:8c:20:
84:72:71:93:f3:40:30:63:96:b7:df:28:3f:34:eb:
ee:75:13:bf:30:4b:73:ec:9a:69:17:67:f2:c5:70:
b9:37:85:5c:70:e5:bb:90:9b:7a:d7:94:03:b3:c4:
1b:95:33:30:cc:4e:f5:c4:58:e6:af:fe:ae:b5:b4:
04:c5:c8:4d:ad:71:5c:f4:ef:49:eb:e6:a7:65:eb:
d5:1f:03:64:d4:83:7d:2d:40:e5:16:3a:e3:81:07:
2f:fb:5c:24:1b:04:8d:26:70:6c:ae:21:06:d5:9a:
21:05:74:bc:6c:c9:7d:6c:26:d2:cb:ba:c9:c4:13:
5d:dc:e8:6c:dd:49:fc:c4:72:18:c3:26:0d:84:c5:
34:49:f7:71:87:8e:14:3d:96:68:4b:a8:fa:f3:a3:
86:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8F:A0:59:D6:F9:1C:03:42:17:7A:70:2E:5C:B5:4E:7B:14:C9:A8
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/mI-gWdb5HANCF3pwLly1TnsUyag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.139.0/24
Signature Algorithm: sha256WithRSAEncryption
93:23:3b:71:64:39:e7:2e:26:e3:20:48:48:45:03:19:65:b6:
34:75:6b:48:cc:3d:2d:ff:26:ae:84:3e:03:3c:34:26:b3:22:
ef:73:88:68:e6:35:fd:b1:57:f3:52:62:07:49:60:cb:d5:cb:
7d:06:c2:d5:3a:68:31:ef:6b:6d:ed:86:b9:e4:5c:8b:1d:f7:
57:6e:af:38:9e:d7:d1:c2:a2:cd:8a:6a:7d:88:28:c4:61:e7:
12:a8:54:1e:bf:94:3e:0f:ef:65:58:88:80:0b:e8:43:c4:4a:
33:70:6c:9e:b8:88:1f:ab:aa:71:fd:5e:01:fd:50:e8:03:e0:
67:b7:ba:f2:94:60:96:ed:e9:cb:74:3f:0b:ff:36:7b:fe:2c:
85:79:31:9e:6b:d1:9c:8d:7f:e6:09:76:4a:ca:80:15:25:30:
01:7a:4b:aa:8a:30:9c:8a:ee:29:3a:81:28:b6:c0:38:51:fa:
15:d1:61:48:78:87:f1:08:cc:cd:4c:0d:56:d4:ec:e3:7f:15:
ad:e2:8c:62:c6:f2:ee:2d:ef:44:55:db:eb:87:f9:66:93:f1:
1b:4e:f3:4a:ff:4d:71:3d:46:cd:5e:78:32:ed:ea:f8:f2:7a:
88:a1:0d:99:01:70:7f:7e:3f:1f:54:a4:f3:fb:59:cf:f7:54:
5e:f9:64:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 09:21:48 2024 by rpki-client on console-fra.rpki-client.org