Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5W4MmWH1Rw15aG_Qr60HgHcL8xQ.roa
File: 5W4MmWH1Rw15aG_Qr60HgHcL8xQ.roa (raw, json)
Hash identifier: QTc2U91Z9gL5O7qSnsPk85XNR5vOgMX1zP1m8j+IR7o=
Subject key identifier: E5:6E:0C:99:61:F5:47:0D:79:68:6F:D0:AF:AD:07:80:77:0B:F3:14
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018CC8DF839BA6ED945173A4486F74EB54CD
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5W4MmWH1Rw15aG_Qr60HgHcL8xQ.roa
Signing time: Tue 02 Jan 2024 06:32:20 +0000
ROA not before: Tue 02 Jan 2024 06:32:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200194
IP address blocks: 188.132.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 17:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:83:9b:a6:ed:94:51:73:a4:48:6f:74:eb:54:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 06:32:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e56e0c9961f5470d79686fd0afad0780770bf314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:89:d8:20:2d:cf:cc:af:49:3f:99:f6:ce:00:
8b:b1:d5:9b:09:81:dc:c8:1f:03:6a:f3:7c:95:b6:
20:fe:e5:b9:0b:cf:b8:00:eb:3a:1c:77:b3:58:e7:
c4:3a:af:a5:ce:9a:e6:75:6d:5b:13:7e:e5:c6:8d:
fe:bf:95:f7:09:a1:57:ea:d9:96:ac:d1:1e:da:ab:
2b:32:e3:ae:b5:0c:1b:cc:3a:88:62:ba:35:d4:c6:
d2:5a:c1:7f:9c:d5:90:a1:f1:d3:78:40:86:5e:61:
fb:d4:d2:c5:31:1a:7d:ef:b3:76:00:b1:a3:06:ae:
69:fa:ac:5f:66:a3:44:9a:a5:dc:40:52:72:38:2a:
1f:06:f6:dd:c8:05:9f:68:8c:a0:62:e5:2b:b1:31:
84:9f:87:84:50:01:76:c5:1e:40:18:9e:97:f9:38:
f0:bf:ba:21:66:36:97:97:e6:22:18:34:fb:33:de:
14:15:b3:89:f9:00:e7:87:d2:90:19:8e:98:a2:b4:
d2:e7:22:99:72:95:01:03:dc:4e:ba:16:02:97:5f:
63:26:38:60:58:11:01:30:54:4b:ab:cf:2c:18:46:
06:23:78:b5:6e:63:3a:77:87:ec:93:4c:d3:33:c0:
ae:47:f9:38:d3:a0:f8:b2:74:7b:8b:49:93:b1:6c:
6e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6E:0C:99:61:F5:47:0D:79:68:6F:D0:AF:AD:07:80:77:0B:F3:14
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5W4MmWH1Rw15aG_Qr60HgHcL8xQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.237.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:d3:f1:ff:d0:0b:d5:1d:d5:5b:16:cf:74:43:cf:80:64:ca:
e5:04:6b:eb:f5:75:d5:4f:37:56:73:85:d9:d0:f1:6f:2f:65:
96:57:8c:20:c5:6b:8c:b8:a4:94:ff:59:a5:16:df:d9:95:b5:
1b:b0:75:5b:aa:02:44:f5:49:50:55:b8:64:ef:0b:2e:76:ac:
f7:4a:3c:c0:35:fb:fb:bb:06:3a:e7:64:b8:fc:00:16:c8:5f:
ec:54:44:d4:fa:59:93:c3:11:be:16:2d:a9:c2:a8:c1:29:2a:
94:ce:e6:03:56:58:1d:4f:bd:14:b0:4d:98:97:19:22:22:98:
43:8d:7f:fc:31:8b:cc:12:9b:30:93:ee:07:0d:fe:4d:19:8f:
27:82:c1:87:f7:07:dd:7b:b2:42:8d:e1:bf:14:9f:06:25:e0:
0f:f4:8f:01:35:b8:8e:ad:ca:d1:e3:e2:06:dc:55:4f:a1:c7:
fc:95:e4:fd:90:fd:63:7b:56:ec:ea:c1:cf:f7:61:42:54:8d:
4c:ca:14:67:be:4c:ad:d2:f7:91:fc:57:5e:15:99:ee:89:5b:
b0:70:c6:35:79:0b:6c:16:53:bf:23:9f:fb:43:c5:52:fd:26:
ec:00:c8:05:58:bd:cf:a7:e8:14:7f:ef:47:66:8a:7d:d4:3d:
fc:71:4e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org