Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/8RpCGNn0aMapD0L3MKQWKIrU1gs.roa
File: 8RpCGNn0aMapD0L3MKQWKIrU1gs.roa (raw, json)
Hash identifier: Qd7ZVbN+xzDq1B7c1AF/8YXueaNI1SOYc8aZthS1bpM=
Subject key identifier: F1:1A:42:18:D9:F4:68:C6:A9:0F:42:F7:30:A4:16:28:8A:D4:D6:0B
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0191C448FA62CE85DCB408CB82BBF392965A
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/8RpCGNn0aMapD0L3MKQWKIrU1gs.roa
Signing time: Thu 05 Sep 2024 22:23:22 +0000
ROA not before: Thu 05 Sep 2024 22:23:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214447
IP address blocks: 188.132.212.0/24 maxlen: 24
188.132.213.0/24 maxlen: 24
212.68.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Sep 2024 17:14:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c4:48:fa:62:ce:85:dc:b4:08:cb:82:bb:f3:92:96:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Sep 5 22:23:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f11a4218d9f468c6a90f42f730a416288ad4d60b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:84:e4:ff:90:4e:ca:96:7f:b8:13:b5:96:40:
40:a1:a5:b1:19:af:3d:8f:d9:45:26:24:98:ef:cc:
c5:ef:66:23:ea:2e:8b:db:3b:fe:c5:a0:74:2f:c2:
c4:df:bb:05:9e:5a:07:cb:c0:54:a4:25:a7:08:60:
8c:3e:5e:95:94:69:b6:a4:3b:ea:22:28:83:89:45:
51:b0:76:8a:c3:40:f7:f2:e3:3f:12:d0:bb:24:e0:
25:84:55:48:1e:43:47:4d:cd:ac:1f:f2:e7:1e:b9:
02:88:e0:6e:87:19:fe:ad:d0:d5:8d:cd:ff:be:55:
78:4b:43:3b:95:d8:c5:55:a7:58:ef:09:b0:1c:fd:
b0:d3:b7:c3:a8:2e:68:22:d7:70:54:14:8f:8c:9e:
7b:9c:6a:10:56:64:47:77:9b:28:a9:3c:d8:db:88:
02:89:8d:83:f0:2d:ef:42:e3:94:32:fc:5a:d7:93:
ea:d6:ea:b9:a9:1c:57:6d:49:16:80:cf:42:2a:ad:
fb:c4:d5:81:0d:0d:15:4c:51:8f:3a:60:20:9d:44:
d7:7c:9e:4c:ca:1c:41:28:6d:7b:26:56:2b:a7:6e:
4e:19:6c:ad:70:c4:d9:68:e1:8b:b6:53:b3:27:c9:
7d:a4:15:e7:fb:cd:e6:f5:c7:63:f7:48:e5:47:bc:
5b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1A:42:18:D9:F4:68:C6:A9:0F:42:F7:30:A4:16:28:8A:D4:D6:0B
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/8RpCGNn0aMapD0L3MKQWKIrU1gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.212.0/23
212.68.35.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:20:27:92:a9:d2:52:fa:ee:ee:98:44:b0:96:e5:ac:cb:0b:
2c:00:8f:ed:c2:20:87:e4:3c:5e:98:aa:6d:52:d9:91:3e:04:
e0:1f:54:3c:6e:5e:fd:7d:79:1b:58:26:74:7c:f9:0c:72:06:
02:1a:1a:a1:cd:b6:b1:7c:e5:5b:17:f5:4f:d5:5e:03:8c:3f:
54:c4:a8:bd:13:03:34:b1:e0:9e:af:11:ae:9f:8e:70:3b:83:
a7:b9:e8:fe:f4:90:fb:6c:9a:03:46:81:de:6a:1d:49:60:32:
d3:ae:59:a2:41:ae:a5:52:0e:a4:e7:1d:bd:10:76:ca:5e:30:
cc:e0:03:5b:8b:19:7a:aa:ed:f2:db:35:25:5f:42:eb:0a:91:
74:18:0a:9b:0f:5f:be:b2:dc:34:e9:2e:f9:4a:6f:c4:82:ab:
9b:8c:80:6d:61:a3:95:d6:d6:22:28:63:ad:dc:37:3b:64:10:
26:3a:0d:a3:59:d6:71:d2:15:51:a0:bf:bc:fc:a3:4b:48:aa:
52:9e:ef:ec:1c:66:7d:7e:c8:3e:b3:f9:ae:29:06:6f:3c:a4:
eb:f6:65:2a:4d:a1:93:c8:fb:31:ba:87:88:df:3d:e7:6e:7a:
be:f1:67:fc:92:03:2c:e6:1a:9f:57:3e:38:9a:9b:fc:91:cb:
8b:c4:b6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 8 18:28:24 2024 by rpki-client on console-fra.rpki-client.org