Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/neWh8C_K1W36rmnTbWvwJFa0JRk.roa
File: neWh8C_K1W36rmnTbWvwJFa0JRk.roa (raw, json)
Hash identifier: 7Cl5Yz++lTj9zIAiblXYATkzxORtl64EHULqdE4KLd0=
Subject key identifier: 9D:E5:A1:F0:2F:CA:D5:6D:FA:AE:69:D3:6D:6B:F0:24:56:B4:25:19
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0191FCB3D29950ACD8672D34F9C72B7915F6
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/neWh8C_K1W36rmnTbWvwJFa0JRk.roa
Signing time: Mon 16 Sep 2024 21:18:48 +0000
ROA not before: Mon 16 Sep 2024 21:18:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 188.209.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 08:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fc:b3:d2:99:50:ac:d8:67:2d:34:f9:c7:2b:79:15:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 16 21:18:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9de5a1f02fcad56dfaae69d36d6bf02456b42519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3b:b2:98:ab:6c:cf:e5:a7:b5:d1:51:b8:57:
18:94:10:24:0d:88:62:39:c2:b9:bc:67:c5:62:86:
74:d1:9d:42:b5:6a:2e:fe:c0:70:47:d5:24:5f:f7:
ce:18:b5:2b:18:ac:2b:98:29:56:4d:0c:e2:36:8a:
6e:78:b7:dc:76:d0:fa:49:9c:66:00:ee:4c:d7:a9:
c3:f0:2c:4e:f3:0a:f8:9d:46:88:14:d3:9d:49:fd:
88:ee:2c:0e:41:0b:af:4f:0b:79:bb:ec:5e:05:bd:
e5:43:37:e6:55:32:43:57:a8:4e:d2:b4:b2:25:d8:
cb:cf:f2:41:b9:27:ae:16:9a:77:48:88:88:c7:63:
e3:fa:e8:55:aa:a9:40:8c:eb:21:c7:84:4f:d3:65:
01:4a:e8:3b:89:65:13:af:7d:37:87:78:bd:78:69:
3b:c1:10:5a:5b:4a:8d:48:11:55:10:90:23:c4:f3:
4d:61:c5:9c:77:c4:fd:0f:dc:0f:d2:78:01:75:e9:
b8:6d:ea:8a:1e:c6:8e:69:c7:9d:9f:c7:21:13:d9:
fb:87:50:fb:91:87:9a:4a:19:9d:aa:c5:4a:3e:39:
cb:00:ad:65:8b:18:2d:58:3c:09:7c:d0:2d:44:21:
2d:21:b6:7b:79:59:45:4d:a3:43:90:ef:e3:be:70:
68:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E5:A1:F0:2F:CA:D5:6D:FA:AE:69:D3:6D:6B:F0:24:56:B4:25:19
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/neWh8C_K1W36rmnTbWvwJFa0JRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.139.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:69:60:ff:69:62:df:af:93:67:8a:50:4d:ee:93:f2:72:65:
0b:d2:e8:ab:a5:4e:7c:a8:92:67:a8:a0:e8:1e:df:74:5a:46:
94:d5:3b:21:e0:5f:22:4e:fd:e9:e6:fd:cb:02:04:55:a7:5c:
e3:ab:c3:d1:68:c5:78:05:db:73:35:dc:d6:3d:43:ab:92:97:
1a:7b:f5:2e:4a:52:64:98:38:3f:21:b5:ca:15:a3:56:c7:34:
f6:db:b4:59:e4:74:90:6f:15:2d:4f:27:0b:00:9b:09:c7:ae:
57:b2:4e:53:38:37:ac:73:99:63:1d:b8:07:a9:d5:72:0d:37:
08:24:ee:b1:fc:96:88:df:6c:b4:9a:ae:5b:88:51:62:c3:79:
ee:dd:fb:b9:de:24:0b:54:08:dd:a7:7b:4b:cc:cc:3d:68:17:
a3:a4:7e:b0:44:ea:87:04:85:8b:d4:96:5c:38:aa:2a:03:d7:
b1:e6:ee:7d:0a:6d:fd:33:e5:7e:c8:53:66:a5:7e:b6:dd:ac:
ce:99:aa:0e:28:f6:c4:29:2f:f4:ea:78:ed:51:78:2d:8f:83:
b0:20:0e:37:aa:df:cc:ce:3d:cc:f9:c8:f8:13:35:a5:40:5a:
9a:b3:1d:a7:51:19:20:70:a0:66:5f:d3:9a:a4:ac:6b:9f:90:
b9:9a:e5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 10:53:28 2024 by rpki-client on console-fra.rpki-client.org