Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/nyvVLlc4Y70uGJMVmPFvjL8BWV8.roa
File: nyvVLlc4Y70uGJMVmPFvjL8BWV8.roa (raw, json)
Hash identifier: Bhv76cYQmv7JTT9qRYnat9LskrYeh2wr16CLpwvggx8=
Subject key identifier: 9F:2B:D5:2E:57:38:63:BD:2E:18:93:15:98:F1:6F:8C:BF:01:59:5F
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0186E45C1D772080EDED6296A882A1070688
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/nyvVLlc4Y70uGJMVmPFvjL8BWV8.roa
Signing time: Wed 15 Mar 2023 08:21:27 +0000
ROA not before: Wed 15 Mar 2023 08:21:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212708
IP address blocks: 188.255.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Apr 2023 11:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:5c:1d:77:20:80:ed:ed:62:96:a8:82:a1:07:06:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 15 08:21:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f2bd52e573863bd2e18931598f16f8cbf01595f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:3b:52:7b:d7:f2:8f:78:80:2c:e4:1b:cd:
b8:75:ae:7e:b5:83:1d:7c:dc:38:20:86:d9:07:96:
51:e6:98:0c:24:2c:e8:d9:89:16:98:2f:d0:04:cb:
6c:72:53:04:d5:0a:4c:ec:b0:5b:db:f2:4e:b2:06:
24:8c:c9:01:ab:06:6d:72:0a:cc:e3:ed:88:9a:d2:
f2:7e:64:99:5f:ba:ba:2d:27:0e:1b:b3:85:8d:a0:
bb:b8:eb:f1:36:88:27:46:76:c3:77:b9:0d:ec:d1:
98:ad:fc:af:ef:f8:3b:9d:2b:c4:4e:ff:4e:1b:9c:
04:51:04:f8:57:45:cf:14:78:15:9e:0c:86:78:d8:
85:ff:da:98:81:be:e9:84:64:f0:7e:b8:43:5b:ab:
1e:9c:ac:a8:47:fa:da:f5:f0:13:7c:b1:73:d4:fc:
93:88:65:e3:ef:3c:97:d1:f1:00:89:fb:c0:68:1f:
cf:df:ba:87:b4:e5:23:a5:0e:0b:b9:6f:c8:64:0e:
df:1c:ac:55:69:3a:f5:45:02:b9:0d:c6:84:13:ac:
db:89:c7:c6:ac:39:8b:1d:f8:0f:ff:9c:4e:c5:c0:
a3:5f:44:d0:eb:60:9c:70:5b:8c:7f:51:10:70:b8:
b4:bb:c0:f6:33:7e:51:cd:6e:52:88:d2:58:2f:e6:
5b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:2B:D5:2E:57:38:63:BD:2E:18:93:15:98:F1:6F:8C:BF:01:59:5F
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/nyvVLlc4Y70uGJMVmPFvjL8BWV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.140.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b8:8e:d3:af:95:02:5d:58:e4:83:42:8d:37:27:a8:87:81:
35:23:9a:78:9a:0d:d1:cf:23:c9:c3:01:12:2b:2f:32:35:84:
a6:fd:27:43:4a:9f:0d:5a:e5:21:35:0a:54:96:45:6e:a7:4f:
28:11:46:11:d0:0b:8b:4d:3f:d2:d1:3c:b6:b5:7c:61:22:53:
16:69:29:e4:fb:1f:77:28:50:b3:83:37:6b:bf:f6:21:6e:eb:
66:ee:b2:d2:17:a3:a0:4f:35:ee:3e:b6:09:19:b1:5b:cd:fb:
54:f6:1e:85:3e:64:49:b9:7a:eb:8d:61:c6:c5:41:b3:6c:17:
66:bc:90:2f:a5:fe:9f:40:1d:48:1b:78:16:c9:17:ff:77:7d:
eb:ac:d5:65:bc:43:07:42:9b:92:20:a8:22:73:47:30:db:cb:
15:bd:85:56:23:5a:f3:73:69:c1:e9:ba:6c:39:4c:44:3c:76:
b6:f5:ef:55:65:6d:78:cf:a5:98:94:fb:aa:a9:75:b4:ff:90:
6e:6b:64:4e:69:8c:39:ba:35:73:ec:6f:b6:3a:b2:ca:5e:2d:
77:ba:1d:4d:8d:7e:20:ac:1e:f4:df:01:64:75:ef:db:db:cd:
ee:7c:9c:a9:f1:3d:b4:72:73:11:32:07:44:bd:4e:86:14:53:
5b:7a:cc:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:05 2024 by rpki-client on console-ams.rpki-client.org