Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/K0LVjR4tfMHCwm0ibH4hRgzRMbs.roa
File: K0LVjR4tfMHCwm0ibH4hRgzRMbs.roa (raw, json)
Hash identifier: QGQ3H6VloiMcV4stRKpw3RK5ME8UQnvTFZDFYtI022s=
Subject key identifier: 2B:42:D5:8D:1E:2D:7C:C1:C2:C2:6D:22:6C:7E:21:46:0C:D1:31:BB
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01886CBED275F1977DCEFD136EE7E148B75C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/K0LVjR4tfMHCwm0ibH4hRgzRMbs.roa
Signing time: Tue 30 May 2023 13:00:25 +0000
ROA not before: Tue 30 May 2023 13:00:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 188.132.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jul 2023 02:39:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:be:d2:75:f1:97:7d:ce:fd:13:6e:e7:e1:48:b7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 30 13:00:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b42d58d1e2d7cc1c2c26d226c7e21460cd131bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3c:04:e6:b2:32:8a:69:66:35:26:ac:40:e4:
91:ca:7e:71:1e:59:16:0d:cd:fd:00:34:d5:4b:49:
d4:c5:b9:df:6a:36:67:e2:f2:04:06:d2:50:bd:fe:
f3:e2:e9:6a:97:19:3d:f1:d3:78:22:4b:98:6c:17:
d1:e5:f2:ca:90:5a:05:1e:71:e5:c8:30:12:35:a8:
7a:86:88:2a:2a:f9:8d:76:66:fe:70:01:d4:1c:81:
cf:32:c7:10:50:7f:c1:c6:28:93:27:49:30:cc:d7:
1a:94:6b:31:96:9e:2c:e4:2d:0f:22:61:4e:1c:2f:
bc:68:1a:4d:84:cd:a6:ef:c3:9c:e5:b5:99:3e:68:
25:4f:37:cd:96:69:5c:18:ba:4e:d3:4b:e1:83:ba:
d3:22:58:43:91:06:75:dc:c6:ab:58:31:47:1d:d8:
d5:66:c0:a5:88:a4:0e:06:12:50:1b:2f:52:cc:b8:
51:3f:6a:ec:a9:ae:e9:2f:12:91:f5:9b:bf:65:bd:
ff:6d:02:ff:4c:89:57:97:24:38:80:77:b3:a0:5f:
5e:4c:63:bb:f1:25:2d:08:7d:cb:7c:85:37:c4:78:
94:2a:11:04:73:ca:48:25:fe:3e:3d:4e:24:7b:16:
6e:dd:64:ba:ea:80:43:3c:32:1d:b2:a9:95:db:18:
73:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:42:D5:8D:1E:2D:7C:C1:C2:C2:6D:22:6C:7E:21:46:0C:D1:31:BB
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/K0LVjR4tfMHCwm0ibH4hRgzRMbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.185.0/24
Signature Algorithm: sha256WithRSAEncryption
55:28:5b:f0:91:16:53:e0:0b:15:15:9d:c3:a6:0a:c3:1e:de:
90:5d:b5:73:a6:04:62:f9:4a:40:29:76:d6:7b:10:0f:cf:ac:
5a:53:7f:5c:ce:52:34:66:0d:b8:de:2c:26:d4:71:61:07:06:
be:33:16:10:a5:44:34:49:ef:e6:4c:f3:0c:29:62:78:f9:71:
97:c7:e7:2e:81:6d:3f:f9:e1:db:18:9b:1e:c6:62:25:99:fc:
36:74:98:c1:a6:9e:05:c3:9b:75:e9:71:85:70:3c:8e:d8:f2:
b7:bb:63:ff:b4:36:d2:1e:3e:1f:fe:c0:e4:76:24:b3:7a:86:
ee:a5:e4:6e:7d:18:ea:3c:ea:d3:8b:38:e8:33:8d:09:af:93:
01:e1:33:11:51:8b:b7:52:20:65:58:da:00:20:1e:91:08:ef:
eb:86:a2:4a:29:fd:71:d6:79:84:41:d9:1a:42:b0:6e:41:dd:
92:4e:18:df:71:35:7e:ea:41:ad:9e:6f:fa:78:f1:22:1d:43:
ab:7d:93:15:8c:0e:97:a6:88:94:51:d2:fb:e8:98:7f:12:6a:
1d:9a:09:1c:c0:09:41:c9:b6:cf:e0:c3:d6:39:00:45:f6:12:
30:cf:e8:a7:e6:fc:c3:69:92:22:d6:6a:94:bc:8d:a7:0a:e4:
31:71:51:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org