Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/rahgojDSIIcSNXndlwOWwIbkxes.roa
File: rahgojDSIIcSNXndlwOWwIbkxes.roa (raw, json)
Hash identifier: 0JktNPDb/ByDc+DJLDZNnCTQVgu7wS7cM5XZQy9A2o4=
Subject key identifier: AD:A8:60:A2:30:D2:20:87:12:35:79:DD:97:03:96:C0:86:E4:C5:EB
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0187DE05EDDAF35569F1A72E0BB3368CE789
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/rahgojDSIIcSNXndlwOWwIbkxes.roa
Signing time: Tue 02 May 2023 19:52:23 +0000
ROA not before: Tue 02 May 2023 19:52:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 188.209.128.0/20 maxlen: 24
188.209.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 May 2023 16:37:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:de:05:ed:da:f3:55:69:f1:a7:2e:0b:b3:36:8c:e7:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 2 19:52:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ada860a230d22087123579dd970396c086e4c5eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c3:63:e3:55:d5:12:07:b6:da:fd:a1:64:80:
f3:03:2c:95:dc:53:2d:57:e0:d4:94:df:a8:37:ec:
dd:4c:28:15:85:c2:1d:63:e6:43:a3:bc:73:c2:d8:
72:02:77:6a:99:8c:08:24:4e:7b:ef:ed:4f:da:28:
ed:54:35:14:da:83:49:cc:ab:9d:dc:b3:a0:1a:92:
a5:b1:e8:81:97:3d:68:dc:25:50:a3:25:b5:52:86:
a9:7f:4f:bc:2f:8e:22:10:bf:e5:6f:9c:98:73:e2:
b0:17:55:eb:1f:25:b0:09:5c:1c:15:02:97:5c:73:
35:4a:54:74:03:59:59:a8:f4:8a:1b:81:ee:0b:c6:
c8:04:96:69:cb:34:b9:68:3a:a8:a9:3a:0c:73:20:
27:e7:c6:54:f3:51:73:bf:48:cb:84:eb:4d:b2:51:
a8:bb:ea:de:8a:c4:a3:9b:d4:56:96:93:9c:ff:36:
a7:6e:2f:ad:9b:9a:23:25:7c:7c:9f:33:59:42:fa:
be:6a:43:c0:fe:e9:7e:54:15:07:e6:c4:dc:0c:da:
83:ce:10:c9:91:87:f4:a6:fb:27:0a:49:74:a4:87:
32:b1:5e:f6:67:a2:3c:60:68:18:0c:92:32:cb:18:
a9:a5:ff:4e:ce:55:27:0d:39:79:14:82:45:3d:c4:
ef:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A8:60:A2:30:D2:20:87:12:35:79:DD:97:03:96:C0:86:E4:C5:EB
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/rahgojDSIIcSNXndlwOWwIbkxes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.128.0/20
Signature Algorithm: sha256WithRSAEncryption
8c:90:3c:b2:71:4f:a1:60:0a:79:07:22:58:55:72:98:ed:22:
fb:9d:68:b4:82:c5:72:1c:30:b9:21:e3:27:11:db:57:db:2b:
a1:6f:5a:84:de:ba:85:7b:cc:97:a0:48:bc:d8:43:f0:08:b5:
64:62:02:f3:f6:f7:6c:bb:13:67:03:f2:d9:62:98:9d:e6:8a:
1f:ec:29:f4:30:88:12:24:a9:35:5b:7d:55:c2:f2:c5:30:39:
51:75:1e:66:be:32:bf:eb:6b:74:ab:7b:bb:5e:20:c2:de:32:
7c:80:90:ea:de:74:55:cf:f4:d6:86:bc:ce:f0:21:46:64:d1:
f2:d8:62:e2:2f:f5:2f:fb:8b:ca:72:08:86:8c:30:ce:f6:04:
a0:7b:35:e3:e1:a6:70:15:d3:15:46:71:bd:31:5d:02:52:ab:
f2:da:9b:94:17:24:89:33:a8:2f:34:2a:db:ce:37:bc:ad:c2:
7e:af:ad:05:e7:f6:4f:38:46:b4:e7:d0:e0:e2:45:47:52:13:
d2:67:32:23:28:d7:a9:cc:62:49:f1:24:0e:94:63:d8:19:33:
a7:c4:db:77:f4:d8:38:72:8c:95:89:e1:36:94:47:bb:4a:f9:
8f:32:3f:fe:f7:c3:eb:8e:c1:52:a9:45:dc:a4:a9:8c:c7:6b:
9e:fa:f0:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org