Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/40XdJuW_dVTetdnX4AwbgHioPC4.roa
File: 40XdJuW_dVTetdnX4AwbgHioPC4.roa (raw, json)
Hash identifier: tBNvWtUPbbKgawxjsC3g0N2DoMpluSC3eVPKoA1J9ls=
Subject key identifier: E3:45:DD:26:E5:BF:75:54:DE:B5:D9:D7:E0:0C:1B:80:78:A8:3C:2E
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01886CC6250B9640E19E798CFA4CE579B06A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/40XdJuW_dVTetdnX4AwbgHioPC4.roa
Signing time: Tue 30 May 2023 13:08:24 +0000
ROA not before: Tue 30 May 2023 13:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200194
IP address blocks: 188.132.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:c6:25:0b:96:40:e1:9e:79:8c:fa:4c:e5:79:b0:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 30 13:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e345dd26e5bf7554deb5d9d7e00c1b8078a83c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:19:d5:45:74:1a:7b:e8:ef:ce:02:44:7a:76:
54:14:4f:d6:1c:f4:58:67:06:7d:78:d1:b0:8e:2f:
11:41:e3:cc:b1:a4:b0:2f:c5:5b:00:26:83:74:de:
5b:2a:c2:1a:8c:97:dc:bc:d2:af:fd:bf:73:98:de:
57:fb:c3:8a:53:f6:1b:49:c2:97:ca:25:e3:85:1a:
43:ed:b0:af:ab:ff:69:98:b4:be:f1:8c:40:92:8c:
d9:95:e5:d1:ca:13:a5:63:72:ab:2e:e4:b4:4b:6d:
6a:dd:57:e7:26:80:70:06:5f:6b:e3:ea:71:f0:19:
fa:2b:67:86:f1:dc:08:68:98:02:6a:84:a6:a3:d0:
5f:c8:5e:00:5d:18:80:2e:ba:90:4e:78:b9:89:8b:
56:15:87:96:df:d5:77:b7:83:cf:1f:e0:84:7f:c2:
74:42:68:84:cf:de:18:87:57:2c:6f:87:13:80:4c:
a6:ee:16:3e:fa:e5:24:70:f6:2a:fa:f0:7e:f7:e0:
f8:97:f5:de:86:9d:8d:91:51:bd:57:98:d5:24:48:
d4:ff:e8:69:03:55:22:74:5d:8c:da:85:a3:dd:29:
ee:5b:38:1e:34:cd:e5:35:ab:0d:1c:27:9a:a1:de:
1e:5e:5b:87:bf:a8:7a:22:e4:28:82:7e:64:0c:40:
45:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:45:DD:26:E5:BF:75:54:DE:B5:D9:D7:E0:0C:1B:80:78:A8:3C:2E
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/40XdJuW_dVTetdnX4AwbgHioPC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.237.0/24
Signature Algorithm: sha256WithRSAEncryption
02:e8:8b:11:ea:db:e9:5a:a9:e0:2b:00:ba:df:06:dc:b9:1f:
21:1e:a3:51:db:1a:6e:58:80:41:6c:da:02:71:d0:3e:07:81:
00:25:9e:17:88:8f:ff:68:ff:87:93:4a:7c:c6:88:df:70:ec:
77:ef:04:65:65:09:23:33:21:06:2d:95:72:f7:cd:68:20:db:
ef:c7:6b:ad:fd:60:4b:df:4a:c5:d0:27:07:7a:55:85:09:56:
b4:0b:6e:a5:8d:a9:a0:89:ee:4b:de:2f:6f:8c:fc:b0:8b:ba:
cc:a2:2b:7e:81:4a:a2:36:38:b4:9b:e8:2d:42:35:9a:0b:02:
c9:8c:05:9f:8e:30:4d:93:4c:c9:7c:96:8c:dc:24:1d:bb:27:
45:4b:79:78:49:2f:8d:ff:7b:a0:9c:0c:c7:51:d3:ec:79:3c:
b2:ee:72:1f:90:6d:95:dc:f6:17:94:57:43:90:fa:67:52:e5:
d8:85:fd:cf:c0:6d:ab:6c:12:9a:55:e2:b6:b7:48:a5:c5:bb:
d3:10:c8:1d:88:eb:67:8e:1a:9c:07:b6:41:35:eb:17:90:03:
bd:8b:20:36:61:48:f0:7c:b0:95:29:b8:99:ab:d1:df:3d:c9:
29:13:d6:81:f9:4a:c2:3f:f1:b2:2e:92:89:55:86:db:db:16:
31:46:44:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhsxiULlkDhnnmM+kzlebBqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwNTMwMTMwODI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzQ1ZGQyNmU1YmY3NTU0ZGViNWQ5ZDdlMDBjMWI4MDc4YTgzYzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxnVRXQae+jvzgJEenZUFE/WHPRY
ZwZ9eNGwji8RQePMsaSwL8VbACaDdN5bKsIajJfcvNKv/b9zmN5X+8OKU/YbScKX
yiXjhRpD7bCvq/9pmLS+8YxAkozZleXRyhOlY3KrLuS0S21q3VfnJoBwBl9r4+px
8Bn6K2eG8dwIaJgCaoSmo9BfyF4AXRiALrqQTni5iYtWFYeW39V3t4PPH+CEf8J0
QmiEz94Yh1csb4cTgEym7hY++uUkcPYq+vB+9+D4l/Xehp2NkVG9V5jVJEjU/+hp
A1UidF2M2oWj3SnuWzgeNM3lNasNHCeaod4eXluHv6h6IuQogn5kDEBFkwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFONF3Sblv3VU3rXZ1+AMG4B4qDwuMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvNDBYZEp1V19kVlRldGRuWDRBd2JnSGlvUEM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvITtMA0G
CSqGSIb3DQEBCwUAA4IBAQAC6IsR6tvpWqngKwC63wbcuR8hHqNR2xpuWIBBbNoC
cdA+B4EAJZ4XiI//aP+Hk0p8xojfcOx37wRlZQkjMyEGLZVy981oINvvx2ut/WBL
30rF0CcHelWFCVa0C26ljamgie5L3i9vjPywi7rMoit+gUqiNji0m+gtQjWaCwLJ
jAWfjjBNk0zJfJaM3CQduydFS3l4SS+N/3ugnAzHUdPseTyy7nIfkG2V3PYXlFdD
kPpnUuXYhf3PwG2rbBKaVeK2t0ilxbvTEMgdiOtnjhqcB7ZBNesXkAO9iyA2YUjw
fLCVKbiZq9HfPckpE9aB+UrCP/GyLpKJVYbb2xYxRkTU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org