Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/yFSLALMgcCOAz53POiCyMkSXRas.roa
File: yFSLALMgcCOAz53POiCyMkSXRas.roa (raw, json)
Hash identifier: cIKeQ/dxn+y5gxkEBORWxgloH5MbAIWxQIBOCOFsAJQ=
Subject key identifier: C8:54:8B:00:B3:20:70:23:80:CF:9D:CF:3A:20:B2:32:44:97:45:AB
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 019118160FAD1BA8371A68A5ED35D2D6EF10
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/yFSLALMgcCOAz53POiCyMkSXRas.roa
Signing time: Sat 03 Aug 2024 11:53:04 +0000
ROA not before: Sat 03 Aug 2024 11:53:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 188.209.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 20:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:18:16:0f:ad:1b:a8:37:1a:68:a5:ed:35:d2:d6:ef:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 3 11:53:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8548b00b320702380cf9dcf3a20b232449745ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9b:02:de:a3:e2:2f:e3:c3:47:ac:1b:0f:5e:
9a:8c:b2:01:f2:4e:c1:35:22:aa:85:71:14:fb:c9:
51:b6:bb:4a:47:7f:34:27:9a:9c:76:fb:84:1a:79:
7a:81:68:9b:fb:f0:60:e3:d3:30:18:58:aa:51:9e:
06:34:29:6b:57:51:cf:17:8d:f5:df:aa:16:af:71:
71:74:93:ea:e7:ee:18:92:d3:15:d2:40:e2:fc:70:
e4:8f:bd:75:5a:e8:b8:c8:55:96:85:21:bd:ea:c6:
25:7e:7c:8a:0b:1f:d7:26:e4:82:1e:a6:e8:da:b3:
04:1b:a4:0e:18:f5:b8:ab:6f:44:6e:ac:91:67:90:
80:c5:31:f9:26:21:2e:3a:90:be:60:14:c9:8e:10:
d6:3d:5c:35:81:37:78:7d:77:e7:39:a9:40:ea:02:
7f:d7:c1:8c:ff:12:c0:32:0a:3f:e1:c9:86:66:65:
4a:56:4f:45:3f:21:7d:9c:af:d8:2b:2a:ac:e8:7b:
86:7f:47:db:37:fd:a4:58:c2:fb:dd:56:87:4f:fe:
ec:8c:d7:d8:9d:0b:3d:87:da:73:07:3a:ec:41:5f:
2d:0b:84:cf:bd:bb:90:1c:e1:f4:8e:0c:29:59:ee:
c5:fd:99:a1:13:c0:ec:0c:da:57:24:5b:d9:69:36:
c2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:54:8B:00:B3:20:70:23:80:CF:9D:CF:3A:20:B2:32:44:97:45:AB
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/yFSLALMgcCOAz53POiCyMkSXRas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.131.0/24
Signature Algorithm: sha256WithRSAEncryption
08:0f:de:ae:87:b3:07:7e:2b:97:a5:a4:04:5c:3e:ac:47:30:
cd:e7:9a:e7:ba:ac:3e:25:6e:10:00:03:0d:27:3b:a9:f0:e6:
25:18:5a:66:f6:52:ff:b8:e9:27:28:3e:da:86:a8:01:7b:bb:
07:75:09:03:e3:e1:fb:e3:cb:5a:80:3d:03:d5:bd:de:d1:b5:
74:81:d7:8e:37:2b:00:41:ec:bf:0f:76:b3:06:84:06:3f:6e:
fa:4c:cb:11:08:b0:52:c0:71:82:9c:00:ed:e8:7a:9d:3f:16:
06:9f:86:54:92:f0:c1:dd:28:52:c2:c0:85:3d:af:d4:19:8e:
70:d8:a9:ad:f2:99:3f:e3:68:a7:92:e5:d3:f2:97:5f:1c:8e:
68:d2:62:a9:eb:5a:10:49:c1:3d:1c:5a:dd:3b:c4:19:74:3f:
0d:15:c4:d7:49:30:61:eb:3e:3d:45:95:ec:99:0e:f5:42:b9:
80:ab:5a:b6:64:4f:f5:90:8b:8b:25:0c:c7:59:2e:a4:43:ab:
67:cd:6e:55:a5:af:e0:4d:33:da:7f:95:6b:5d:c9:47:55:0b:
62:6c:c5:96:aa:57:de:d1:00:2b:23:90:71:49:f0:c9:f8:36:
43:02:cd:fa:6b:49:46:70:e4:18:99:93:5e:7c:fd:c5:59:da:
b0:4a:f1:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 22:00:53 2024 by rpki-client on console-ams.rpki-client.org