Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Ku-NPgZlzYxioj2Hex8XZ_6Ju6A.roa
File: Ku-NPgZlzYxioj2Hex8XZ_6Ju6A.roa (raw, json)
Hash identifier: KfCxh9Eyyn+umwlUqSZtNhbqNomdzZP7S3SwJEklIuI=
Subject key identifier: 2A:EF:8D:3E:06:65:CD:8C:62:A2:3D:87:7B:1F:17:67:FE:89:BB:A0
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01886CB5A970CA41C7BFAB4334308D3D95FA
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Ku-NPgZlzYxioj2Hex8XZ_6Ju6A.roa
Signing time: Tue 30 May 2023 12:50:24 +0000
ROA not before: Tue 30 May 2023 12:50:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207474
IP address blocks: 188.132.146.0/24 maxlen: 24
188.132.166.0/24 maxlen: 24
188.132.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6c:b5:a9:70:ca:41:c7:bf:ab:43:34:30:8d:3d:95:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 30 12:50:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2aef8d3e0665cd8c62a23d877b1f1767fe89bba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:6c:61:ef:19:72:06:7d:26:8a:0a:e6:f7:40:
27:04:b3:48:a2:9d:1a:be:8a:9f:b8:73:16:1f:2f:
6b:86:5a:4a:69:31:10:e9:b1:f0:d1:c5:9d:7c:01:
69:33:2b:4e:5f:ed:29:5b:97:86:5b:08:16:83:93:
f1:25:8e:a5:d3:29:cd:08:88:6a:54:86:08:e0:1f:
0c:69:69:05:bd:fd:24:f3:76:a7:d6:0d:67:9e:e6:
95:a1:a9:83:fe:37:a7:43:75:42:53:6a:4b:09:08:
05:12:cb:48:c1:21:0b:e8:d7:e5:af:fc:df:36:f2:
32:07:83:07:1d:ab:d0:4b:a1:fe:fe:b0:61:89:83:
b6:9e:f8:bd:19:2c:29:b5:2c:e9:9f:0b:4f:05:fb:
7b:a6:2e:08:f3:c8:d7:b4:ab:e6:45:ec:91:6a:21:
fc:4e:3d:e7:53:b0:af:89:df:3b:63:8b:21:79:e0:
59:ed:58:97:2c:ff:95:19:e7:fb:7e:8e:1d:63:b4:
bd:f1:d9:7e:72:82:e6:90:c7:7a:30:b5:84:0d:ea:
8f:27:89:59:da:8a:b5:84:64:17:8c:c9:cd:8c:47:
b0:94:87:87:13:1d:db:1c:2a:3d:fa:e5:77:c9:d9:
dd:47:97:6b:8f:d0:66:e5:79:9e:8a:8b:83:e6:43:
2a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EF:8D:3E:06:65:CD:8C:62:A2:3D:87:7B:1F:17:67:FE:89:BB:A0
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Ku-NPgZlzYxioj2Hex8XZ_6Ju6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.146.0/24
188.132.166.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:da:0b:ff:82:19:fc:a0:2d:58:b3:a8:bf:ef:af:9a:93:bb:
38:e0:a4:25:42:eb:92:99:d2:b1:b0:35:8a:3e:51:ba:84:aa:
ed:e7:b0:c9:b2:c0:5e:9b:e4:d5:4c:59:d7:7c:04:44:95:66:
9a:a2:70:65:25:36:d1:a6:80:f3:28:22:48:6f:11:31:c2:fe:
f8:17:84:7e:1c:f6:29:71:2b:1a:bb:06:34:2c:9f:93:1b:5d:
63:6f:8b:62:ee:18:7f:c2:c6:6a:9e:ca:30:5b:98:48:41:cc:
62:ce:d3:e0:cc:df:3e:5a:dc:7e:b6:0e:8e:89:42:b0:e9:fa:
9b:68:a8:6b:c3:4a:4d:e2:b0:35:ec:42:c9:98:4e:f8:67:5a:
02:d9:b7:f3:f2:4c:07:6c:b9:fa:a7:a1:35:3b:66:5e:4a:08:
05:15:03:96:4b:44:e8:0f:b3:df:cd:38:3d:bf:be:a0:d9:1c:
34:be:d1:db:b2:17:07:80:0e:f0:45:2f:f3:7c:13:e4:00:03:
38:d9:18:19:5c:d3:97:b2:23:bd:fa:3a:07:01:a3:ce:ec:61:
39:d0:5c:9b:36:d3:e5:cc:a8:19:6d:e3:ad:ba:0a:b5:86:e7:
83:43:83:82:34:ea:4b:56:e8:9e:67:1c:96:92:a5:3d:c2:f8:
31:c4:11:ca
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYhstalwykHHv6tDNDCNPZX6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwNTMwMTI1MDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYWVmOGQzZTA2NjVjZDhjNjJhMjNkODc3YjFmMTc2N2ZlODliYmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA52xh7xlyBn0migrm90AnBLNIop0a
voqfuHMWHy9rhlpKaTEQ6bHw0cWdfAFpMytOX+0pW5eGWwgWg5PxJY6l0ynNCIhq
VIYI4B8MaWkFvf0k83an1g1nnuaVoamD/jenQ3VCU2pLCQgFEstIwSEL6Nflr/zf
NvIyB4MHHavQS6H+/rBhiYO2nvi9GSwptSzpnwtPBft7pi4I88jXtKvmReyRaiH8
Tj3nU7Cvid87Y4sheeBZ7ViXLP+VGef7fo4dY7S98dl+coLmkMd6MLWEDeqPJ4lZ
2oq1hGQXjMnNjEewlIeHEx3bHCo9+uV3ydndR5drj9Bm5XmeiouD5kMquQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCrvjT4GZc2MYqI9h3sfF2f+ibugMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvS3UtTlBnWmx6WXhpb2oySGV4OFhaXzZKdTZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAvISSAwQB
vISmMA0GCSqGSIb3DQEBCwUAA4IBAQBt2gv/ghn8oC1Ys6i/76+ak7s44KQlQuuS
mdKxsDWKPlG6hKrt57DJssBem+TVTFnXfARElWaaonBlJTbRpoDzKCJIbxExwv74
F4R+HPYpcSsauwY0LJ+TG11jb4ti7hh/wsZqnsowW5hIQcxiztPgzN8+Wtx+tg6O
iUKw6fqbaKhrw0pN4rA17ELJmE74Z1oC2bfz8kwHbLn6p6E1O2ZeSggFFQOWS0To
D7PfzTg9v76g2Rw0vtHbshcHgA7wRS/zfBPkAAM42RgZXNOXsiO9+joHAaPO7GE5
0FybNtPlzKgZbeOtugq1hueDQ4OCNOpLVuieZxyWkqU9wvgxxBHK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org