Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/v1H1u4CN7gnM8C0qeJn6rr3FoJU.roa
File: v1H1u4CN7gnM8C0qeJn6rr3FoJU.roa (raw, json)
Hash identifier: gXZ51Ct7Vf4C2wltjA9gE1vEOwF37XQJXmQMxXeFs7Q=
Subject key identifier: BF:51:F5:BB:80:8D:EE:09:CC:F0:2D:2A:78:99:FA:AE:BD:C5:A0:95
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 0192096072FFFEEBDFE227FD7FEDCF1CEB8B
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/v1H1u4CN7gnM8C0qeJn6rr3FoJU.roa
Signing time: Thu 19 Sep 2024 08:22:48 +0000
ROA not before: Thu 19 Sep 2024 08:22:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 06:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:09:60:72:ff:fe:eb:df:e2:27:fd:7f:ed:cf:1c:eb:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 19 08:22:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf51f5bb808dee09ccf02d2a7899faaebdc5a095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fd:e8:b4:95:1c:2b:a8:8b:bf:f3:d4:ae:50:
e9:2d:e8:3d:d0:e9:dd:69:90:5e:47:ad:b3:17:cd:
eb:83:e4:84:1d:79:64:66:9b:7a:28:85:24:e7:6b:
52:42:2e:e2:a9:7b:ca:00:2c:31:63:b3:e9:6e:95:
60:90:8b:c8:1f:e8:87:f1:03:c1:5f:91:e7:fa:d4:
91:cd:44:0c:6a:05:c4:ce:6f:dc:d3:54:ed:47:a2:
45:7f:bf:af:3e:af:09:c3:ea:9c:ea:84:36:45:0c:
26:68:5f:43:79:1e:17:f7:c7:dc:a6:db:b0:f6:b8:
a3:d8:a1:ab:18:e5:f2:a6:82:9f:bc:14:09:74:b9:
f3:89:ea:ff:7f:ec:3c:f9:d6:c2:dd:73:3a:e5:ab:
ec:d6:21:c9:92:ad:60:24:fd:83:05:a1:60:f6:7d:
0b:74:44:5e:8b:b3:29:ed:3b:f9:df:26:8c:83:97:
2c:d1:8c:2e:ee:2c:07:35:14:92:4d:3f:12:8d:5d:
ca:7a:40:ce:7a:5c:d8:2d:78:f2:5d:0b:fb:0b:9d:
02:5f:34:71:6a:41:f6:df:cc:ba:4f:0d:e1:69:f1:
4e:8a:b0:f0:16:a2:95:ce:e1:ef:d6:af:cc:ab:e1:
12:44:ef:65:87:c3:9b:47:24:9d:76:b7:62:fb:c5:
8c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:51:F5:BB:80:8D:EE:09:CC:F0:2D:2A:78:99:FA:AE:BD:C5:A0:95
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/v1H1u4CN7gnM8C0qeJn6rr3FoJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:c9:15:be:22:72:34:5b:cb:f2:0e:ad:50:d7:b5:0a:8b:55:
71:38:69:22:e7:59:cc:10:26:14:c1:2e:43:08:7d:a3:db:47:
e0:fc:61:6d:33:fa:83:eb:1f:07:87:b7:50:40:a7:9f:23:fe:
7c:5b:65:68:81:fa:9d:ac:03:66:3e:7b:cc:4f:a8:99:c6:0b:
23:8e:e5:db:16:7d:cf:e0:e3:7d:91:ac:31:f5:35:16:34:1c:
0b:e0:f8:b3:7c:10:0f:20:dd:5e:78:67:f9:82:43:d1:9f:dc:
c1:f1:7d:dd:f1:c7:13:90:21:ad:ec:b0:f6:06:1d:3f:0e:18:
75:c5:94:1a:70:23:9d:ad:7e:dd:25:4b:91:53:6a:f3:d5:73:
a6:db:25:c0:77:4b:33:4d:a6:68:7d:05:d7:7a:bc:35:0f:51:
2e:2a:84:91:e9:e1:65:ab:b7:e9:a6:47:de:1b:8a:48:1d:8e:
3b:c6:b8:59:ee:49:a1:49:90:f0:8f:31:9f:b4:7f:52:fd:98:
ef:d0:46:aa:1c:be:22:03:cb:b6:26:99:19:dd:10:06:9a:9c:
3c:5a:e6:35:28:db:82:9d:aa:ca:81:b4:fd:96:7b:8a:6b:1f:
1e:f3:2e:fe:aa:74:a3:da:93:4b:cd:32:14:76:4a:73:fa:43:
75:6a:6f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 09:28:06 2024 by rpki-client on console-ams.rpki-client.org