Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5rNqBbwzL3AJm20poPtT19-Yygk.roa
File: 5rNqBbwzL3AJm20poPtT19-Yygk.roa (raw, json)
Hash identifier: EW8keDQ/hOngTYn3NPG8Zf44iftpGg7HqHyGPlx7+LA=
Subject key identifier: E6:B3:6A:05:BC:33:2F:70:09:9B:6D:29:A0:FB:53:D7:DF:98:CA:09
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 019116E9C658939DC4F2CF391A88BCCB5588
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5rNqBbwzL3AJm20poPtT19-Yygk.roa
Signing time: Sat 03 Aug 2024 06:25:04 +0000
ROA not before: Sat 03 Aug 2024 06:25:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213245
IP address blocks: 188.132.211.0/24 maxlen: 24
188.132.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:48:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:16:e9:c6:58:93:9d:c4:f2:cf:39:1a:88:bc:cb:55:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Aug 3 06:25:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6b36a05bc332f70099b6d29a0fb53d7df98ca09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ee:d6:2d:ea:ad:a5:09:d5:91:af:61:e4:b2:
a2:39:17:87:59:d3:30:e4:4c:64:ac:b6:a7:fd:bf:
8b:cc:22:26:a2:43:b8:8d:83:24:4d:78:f2:49:10:
48:90:e4:00:b7:e1:e8:ed:84:8e:48:17:30:fb:fe:
88:d5:ce:87:5b:ff:55:b6:54:bd:de:e1:5c:a5:e8:
ef:55:3d:67:f4:f1:36:cc:41:46:4e:10:6a:57:c1:
11:b9:f0:a8:14:0a:79:5b:02:08:ef:0e:b1:cc:04:
35:68:21:0b:6b:e6:09:dd:68:eb:e1:57:86:dc:29:
2f:82:49:8a:7a:84:ed:fd:52:8b:e0:54:8a:bd:92:
a0:bc:62:a4:9d:9f:df:2e:bb:3b:79:91:09:1f:5d:
37:6d:41:0a:9b:18:ce:29:81:c6:f7:1d:77:9e:42:
25:41:c6:82:d7:ac:a6:c5:6f:67:7c:b4:27:47:8e:
ea:12:1e:71:af:86:1e:3c:f6:b8:eb:40:9a:f2:23:
41:49:eb:8e:92:7b:44:da:c1:ca:e9:6e:07:d1:07:
c2:7a:36:e3:23:1b:0e:cb:f8:da:c8:fa:13:b5:c3:
e2:8b:e8:e1:53:26:45:42:2a:30:ed:4c:dd:43:a5:
e2:d9:9a:37:32:33:78:e6:30:80:8f:01:a1:33:e6:
9f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B3:6A:05:BC:33:2F:70:09:9B:6D:29:A0:FB:53:D7:DF:98:CA:09
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5rNqBbwzL3AJm20poPtT19-Yygk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.211.0/24
188.132.225.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f0:0b:62:9a:46:c5:87:77:46:84:e9:7c:48:00:df:50:9d:
b0:69:20:09:42:d9:6a:09:88:2f:f6:39:f6:a4:a8:c9:03:7d:
bb:c7:02:7a:4e:88:af:33:20:76:83:41:8e:f8:65:e6:78:67:
9d:0f:49:3c:b6:6e:d9:59:2d:e4:b9:4b:1d:b3:e9:0b:93:7f:
8a:60:58:19:0c:e4:a9:98:5f:b1:3a:dc:e2:5b:0f:f5:08:26:
ac:29:60:5b:e3:a2:57:2d:25:c0:50:71:a6:4b:f6:82:9d:16:
4d:c2:09:1e:bc:2b:78:d0:df:19:31:8b:a3:7b:99:fe:4f:30:
5d:ab:b1:cf:54:4c:62:85:62:57:29:73:af:30:94:20:7a:6d:
53:06:9d:08:0f:40:8d:8b:ff:9e:bb:66:b7:cf:41:ff:df:8b:
fe:6c:97:33:b6:fb:f6:04:8b:fe:8d:0b:81:3b:f7:17:85:b9:
d2:0e:ec:67:b4:fd:b8:aa:64:8f:12:c0:55:0b:63:d6:d4:51:
e0:9d:77:27:31:23:27:71:48:e7:cd:3d:30:dc:ac:d0:17:b5:
83:6b:c4:66:7f:51:bf:54:3a:ba:34:7c:7c:91:b3:04:af:29:
2a:b6:27:d5:74:cc:d3:d9:c8:b3:e7:83:ec:14:33:38:41:55:
57:5c:d8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:45 2025 by rpki-client