Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/yjIlgeiILgZSMIVDKIor_HUjmiY.roa
File: yjIlgeiILgZSMIVDKIor_HUjmiY.roa (raw, json)
Hash identifier: SEn/O42i7l/aflMbPQcgf6bklfMKweOmR/peLdjEoOs=
Subject key identifier: CA:32:25:81:E8:88:2E:06:52:30:85:43:28:8A:2B:FC:75:23:9A:26
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 019150DB119C096E0091C14F8805B11036CC
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/yjIlgeiILgZSMIVDKIor_HUjmiY.roa
Signing time: Wed 14 Aug 2024 12:26:59 +0000
ROA not before: Wed 14 Aug 2024 12:26:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
194.15.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Aug 2024 14:42:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:50:db:11:9c:09:6e:00:91:c1:4f:88:05:b1:10:36:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 14 12:26:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca322581e8882e0652308543288a2bfc75239a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a4:6f:02:96:6d:65:2c:24:f4:95:df:c1:3a:
55:dd:9f:74:e9:b3:a2:9b:33:6b:b6:18:9d:d3:34:
cc:28:9e:c4:12:8b:e8:91:70:45:1a:dc:b3:21:a0:
33:b2:5d:71:fe:7e:09:0a:32:8c:d8:4c:d1:d4:20:
75:e2:45:87:e7:15:33:e2:5a:96:97:d4:d8:12:1f:
a8:a0:2d:e0:df:af:dc:20:93:b8:da:43:7e:90:0a:
b4:9a:63:19:18:2b:72:99:6e:b2:43:5a:cb:de:38:
ad:27:6e:2e:49:91:87:0f:fb:11:ab:84:70:86:bb:
6c:2f:8f:0d:ff:f5:4f:49:c0:ab:58:4c:b5:df:b2:
85:e4:6c:7c:03:ff:5f:dc:6e:06:2e:0d:31:e9:4f:
a8:b0:30:6a:fb:32:95:50:20:18:dc:e1:a1:fb:e6:
89:aa:61:64:27:2c:1e:0e:b4:cd:6f:60:50:09:ee:
c4:6b:df:7b:55:36:71:5f:c9:2c:da:c1:29:86:a6:
63:e3:b8:62:72:ec:e4:e8:aa:e3:65:7a:b2:5f:04:
47:f1:27:07:bf:6c:c6:22:27:ca:db:c4:04:93:19:
61:ec:21:89:3c:1b:3f:1d:a1:09:42:65:1c:c3:60:
ca:f1:98:c9:4f:48:1c:87:4c:50:49:d0:c4:c1:f8:
60:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:32:25:81:E8:88:2E:06:52:30:85:43:28:8A:2B:FC:75:23:9A:26
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/yjIlgeiILgZSMIVDKIor_HUjmiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
194.15.97.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:54:b6:93:8b:94:8e:40:a5:e1:91:7b:7d:64:f2:2c:fa:19:
41:d7:3b:6b:82:76:30:22:f5:91:67:d2:aa:c0:bb:04:c8:f3:
d0:7a:3b:db:9a:c7:5d:f9:bc:d1:8e:96:af:32:4f:bf:0c:d6:
f7:5b:c9:30:8d:1a:d4:e2:96:af:29:e6:70:86:4a:31:fe:af:
73:1a:07:d8:b7:7d:02:a4:12:bb:a5:c0:ea:de:3e:5e:a3:fd:
d1:68:f8:2a:b3:ee:b8:50:47:e4:3f:30:4b:2f:00:1f:60:3f:
d0:7f:ea:80:e2:fe:dd:c1:b6:e0:28:cc:8c:13:be:6c:b7:e2:
9e:6c:45:ec:6e:dc:5b:07:d5:c2:cf:4a:e3:4f:79:26:66:c0:
d1:bf:86:79:7a:98:56:ed:62:62:e1:39:0a:fc:e0:58:0c:dc:
b5:ca:89:8e:3c:03:7f:73:61:e6:b3:3e:61:fc:c9:9f:86:88:
09:cf:fa:8f:01:67:f0:81:19:a0:c4:e1:90:10:c0:61:3a:5d:
ce:c9:be:05:36:59:62:a7:64:8c:1f:49:b5:67:af:57:e4:67:
91:67:34:f1:35:b7:2b:0a:72:b4:d8:03:53:9d:b1:bd:bf:b5:
e9:90:34:d9:8d:91:cc:f1:c5:07:b8:fc:f3:32:9f:52:d6:a9:
08:2a:cd:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 17:27:30 2024 by rpki-client on console-fra.rpki-client.org