Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/2TZWIJMLwbXKVi7pvhS6X4ztpHU.roa
File: 2TZWIJMLwbXKVi7pvhS6X4ztpHU.roa (raw, json)
Hash identifier: yUZ8i/s/vaet8g7IYPCYTz7jVnH1nXvdwwNybklgB+g=
Subject key identifier: D9:36:56:20:93:0B:C1:B5:CA:56:2E:E9:BE:14:BA:5F:8C:ED:A4:75
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 01892CE7EA5304B080CA918BDF0BD4F2EA92
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/2TZWIJMLwbXKVi7pvhS6X4ztpHU.roa
Signing time: Thu 06 Jul 2023 20:32:23 +0000
ROA not before: Thu 06 Jul 2023 20:32:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 188.66.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 09:53:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2c:e7:ea:53:04:b0:80:ca:91:8b:df:0b:d4:f2:ea:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Jul 6 20:32:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9365620930bc1b5ca562ee9be14ba5f8ceda475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:86:65:2a:16:e9:ca:c4:f8:ad:07:91:34:0d:
2a:cd:28:98:24:3c:e3:ec:7b:51:88:ae:52:92:c6:
9e:c9:a5:34:e7:cb:98:19:3b:27:af:72:9b:28:51:
33:6d:04:c7:d0:fa:c6:b2:b7:08:48:01:f1:c4:db:
26:76:ad:54:3c:ce:9d:97:34:f7:e2:14:c0:72:44:
36:8f:c0:17:bc:7e:19:3c:79:f6:a5:44:f5:e8:25:
68:7e:26:ea:df:b2:a2:10:44:c3:d0:e9:1a:d0:ee:
fb:d6:bd:db:6b:85:95:b3:d1:35:c2:be:59:78:d2:
1a:43:10:1b:f9:51:47:51:f9:1a:7e:07:46:a5:36:
08:46:3d:12:c2:3e:f8:49:15:1a:3d:fb:9c:fc:77:
f6:05:c9:b9:52:b2:59:fe:d6:c9:d6:bb:19:8e:de:
79:ce:b2:73:0b:3f:7e:c8:54:a3:06:9c:82:0d:be:
62:a0:80:6a:2e:ec:7f:ec:ac:14:85:0b:b7:42:48:
21:3c:70:9f:bd:2a:25:2f:49:8c:02:1c:74:b8:3e:
7b:8d:3d:ac:1a:32:30:45:8b:86:86:8a:11:07:d6:
6c:03:59:c4:62:3b:79:83:6d:d8:c0:01:32:17:57:
86:0b:bb:78:38:f7:70:d4:24:91:ac:ec:7b:a0:62:
a7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:36:56:20:93:0B:C1:B5:CA:56:2E:E9:BE:14:BA:5F:8C:ED:A4:75
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/2TZWIJMLwbXKVi7pvhS6X4ztpHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.27.0/24
Signature Algorithm: sha256WithRSAEncryption
30:2a:7c:9d:55:86:14:a5:1f:ca:b4:46:90:9c:70:b7:b0:09:
7b:2a:70:51:0b:ee:29:2d:ef:6b:92:78:b7:77:c7:60:70:9c:
0f:31:98:f8:d2:b2:b0:ae:69:8f:03:01:36:9f:d2:79:b9:15:
8e:07:99:ec:18:7b:53:3e:bc:e2:7e:51:e3:80:12:58:d1:8e:
44:de:61:4a:f4:c9:02:82:60:c2:5d:75:da:13:cf:02:c7:d9:
87:e0:48:2e:fd:16:65:f4:e1:ef:5b:94:6f:e0:32:08:50:f1:
9e:25:c1:fa:5c:55:14:f2:55:da:07:cf:fa:72:29:51:f6:e1:
6d:e9:36:07:08:e0:15:df:c2:07:c4:df:67:2b:46:12:36:49:
7f:ae:d5:34:5e:04:84:ae:79:01:a9:7b:af:b0:d1:87:7b:2f:
ec:4a:10:9d:b1:a1:3e:bd:06:0f:4a:f1:e9:5d:12:13:25:60:
b1:f1:80:f3:fc:06:5e:21:ce:21:99:f1:1d:62:e3:c2:07:b8:
33:84:51:27:08:88:dc:a6:3e:e8:02:14:ad:52:f5:8c:ac:5c:
33:12:fe:d4:53:34:11:1d:be:42:d8:e4:2c:bb:0e:5c:53:a8:
20:9b:52:eb:f7:4b:6c:fe:72:12:2f:39:e9:59:ed:f8:a2:2c:
cd:85:6f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:21 2024 by rpki-client on console-ams.rpki-client.org