Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/BfNw5mn8S3rYXa9W3NElFoRKAeo.roa
File: BfNw5mn8S3rYXa9W3NElFoRKAeo.roa (raw, json)
Hash identifier: 8wu1aRxXo0E/l7eD8UpY+SNs/1z7WdiaJJg3DoAXdD8=
Subject key identifier: 05:F3:70:E6:69:FC:4B:7A:D8:5D:AF:56:DC:D1:25:16:84:4A:01:EA
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0187E8EC98258F6D783FEA223959F9CBBF11
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/BfNw5mn8S3rYXa9W3NElFoRKAeo.roa
Signing time: Thu 04 May 2023 22:40:32 +0000
ROA not before: Thu 04 May 2023 22:40:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198662
IP address blocks: 188.132.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e8:ec:98:25:8f:6d:78:3f:ea:22:39:59:f9:cb:bf:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 4 22:40:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05f370e669fc4b7ad85daf56dcd12516844a01ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b7:c4:c4:1b:8f:ad:a3:36:cf:b1:90:b1:98:
67:bb:a3:4e:1f:2c:91:34:45:d6:ae:11:21:bd:fe:
36:ee:7f:b9:60:11:11:6e:15:1d:87:39:94:41:0d:
71:86:bc:f5:b9:55:dd:d1:4b:a0:bd:52:21:22:ee:
1c:bb:fa:95:65:c0:46:b6:a6:c6:9d:cf:01:ed:52:
74:94:73:0c:58:08:19:d6:f6:65:68:ea:8e:ae:74:
2d:f2:fa:13:99:73:fb:2e:4a:38:4c:fa:9f:16:d6:
23:8b:1b:52:d1:95:2e:6c:08:64:ef:5e:85:a7:8a:
a2:43:fc:a8:20:ce:3f:ff:43:84:d1:8a:80:79:2f:
7f:44:c1:dd:06:ab:22:99:2c:72:cb:06:71:f1:a9:
98:d4:c5:be:82:5e:79:c5:cf:c1:79:04:24:57:e0:
18:38:47:a9:a2:89:09:52:6f:53:35:4d:1b:d7:2d:
b6:74:08:89:10:c3:b1:65:8c:40:d3:15:33:5d:96:
e9:25:91:a8:dc:92:dd:02:0b:64:24:7c:7d:eb:e7:
72:fc:71:3c:c5:7a:a2:41:71:84:02:e4:70:f7:2e:
14:46:9e:b7:73:10:f4:95:04:62:3d:bd:92:d4:bb:
b9:0a:84:3d:70:ea:fe:ea:27:af:71:41:0d:ea:ac:
09:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F3:70:E6:69:FC:4B:7A:D8:5D:AF:56:DC:D1:25:16:84:4A:01:EA
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/BfNw5mn8S3rYXa9W3NElFoRKAeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.164.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c3:ac:4b:c6:27:22:d5:20:7b:83:9a:59:46:64:24:33:c1:
3c:96:f7:11:a7:94:bf:2a:d4:3d:04:79:9d:69:95:ad:6e:05:
54:b8:98:4e:64:2c:d6:9b:c2:c6:8d:70:49:c3:61:a5:85:ee:
0b:c0:dd:23:0d:09:c3:75:80:ca:92:d7:0a:e4:6f:68:bc:e8:
70:14:91:36:82:93:14:ff:81:10:1f:1a:46:6d:e6:1b:6e:24:
a0:13:4c:91:ea:7f:7e:7e:f9:68:3b:e8:be:0b:b4:fc:c8:d9:
60:ea:9c:e7:c0:e6:46:5b:6f:24:db:a5:e1:48:f0:41:da:b2:
0f:09:6f:82:f5:4d:af:13:b1:c0:fe:85:66:d1:23:fa:74:8b:
45:e4:7d:a9:f4:3a:b7:bd:9d:f4:04:e4:1f:99:60:49:10:9a:
f2:67:a6:83:4f:5e:b8:c6:ba:f5:d0:c6:85:36:2a:16:cf:7e:
d9:89:a4:d0:ae:f2:34:12:92:a1:57:b3:53:12:de:b2:1c:6c:
fa:c1:92:3d:22:a9:3e:2e:5d:bd:76:82:15:eb:f7:5b:2c:6a:
77:72:af:33:bd:1e:86:ae:2e:6d:10:a1:79:27:14:8c:7a:48:
8d:7e:b7:a6:75:0a:3c:b1:6d:9b:1d:b8:96:6d:4f:d6:34:67:
0e:de:b6:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org