Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/LMcKvKy8iLKVM3qK4Ff8_6ES9zQ.roa
File: LMcKvKy8iLKVM3qK4Ff8_6ES9zQ.roa (raw, json)
Hash identifier: ZkT5SA13ruvoGXoeWG0izNXjTO2Ff4YpmttznjZjg2k=
Subject key identifier: 2C:C7:0A:BC:AC:BC:88:B2:95:33:7A:8A:E0:57:FC:FF:A1:12:F7:34
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570028CF513762486AE8BEACB8B30CEDA
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/LMcKvKy8iLKVM3qK4Ff8_6ES9zQ.roa
Signing time: Mon 02 Jan 2023 01:04:53 +0000
ROA not before: Mon 02 Jan 2023 01:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201233
IP address blocks: 188.132.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8c:f5:13:76:24:86:ae:8b:ea:cb:8b:30:ce:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cc70abcacbc88b295337a8ae057fcffa112f734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fe:28:c2:98:7a:a8:5b:82:5f:32:d5:22:b2:
d1:6d:96:dd:4d:16:b9:38:72:de:5e:f6:e2:ab:8e:
f7:a8:7b:9b:7c:61:8a:d4:a6:e1:47:74:36:b7:00:
cb:91:48:35:60:57:b0:bb:09:ff:9a:cb:6c:87:86:
bb:6f:3b:e2:92:47:0d:4e:c9:d7:3d:f7:5a:88:95:
82:b2:2d:7f:21:bc:dc:4d:3f:45:fa:72:ac:dc:e1:
b0:07:eb:d1:5d:c5:71:00:a8:94:54:4d:f9:91:b4:
4d:45:00:dd:36:0e:60:35:ad:9f:67:5a:45:8e:70:
7b:f7:c5:81:21:7f:f1:27:fd:de:90:38:86:40:fb:
60:ae:66:0e:48:95:3a:c1:5c:bd:4c:64:a9:a3:d0:
68:17:19:be:c6:1a:41:93:d2:36:21:b3:43:f8:70:
0f:f2:01:8a:cd:3d:7a:f9:5d:31:7b:55:44:af:69:
67:44:44:b2:15:ff:a3:79:59:26:43:c1:a1:98:e2:
07:d2:8e:f6:21:b0:e7:86:1c:40:41:0b:6f:4d:bc:
ab:64:3e:3c:79:96:27:c3:d9:16:ce:3e:6a:47:4a:
1b:9d:e4:d8:4d:9f:c5:62:71:89:50:5f:e7:58:6f:
e1:41:b0:bb:46:bd:85:7c:3d:2f:ee:a6:6f:bc:85:
a9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C7:0A:BC:AC:BC:88:B2:95:33:7A:8A:E0:57:FC:FF:A1:12:F7:34
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/LMcKvKy8iLKVM3qK4Ff8_6ES9zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.193.0/24
Signature Algorithm: sha256WithRSAEncryption
59:e3:6f:68:b4:0a:dc:f8:f0:93:0a:8d:a7:9f:17:0c:73:48:
55:22:d2:2e:10:56:fd:56:62:e7:8d:4b:e7:3c:aa:a5:9b:fa:
7a:b3:90:30:f7:85:f6:64:a9:68:b0:78:f4:ac:45:0d:4e:5a:
fc:c2:32:77:47:53:ca:fc:8e:83:53:d8:8b:73:5b:ac:7c:10:
62:35:72:37:4a:db:52:e3:4b:74:0b:3d:04:09:22:b2:8c:ba:
78:92:1f:db:b0:ab:33:5e:d8:61:a7:f8:00:f0:a8:b0:36:68:
f5:07:89:58:21:a4:1d:04:01:ce:70:87:95:67:b7:f8:38:b5:
ac:43:08:84:d8:ec:ae:1d:54:84:aa:51:b5:3f:0d:66:8d:b3:
fe:11:42:f3:61:d0:27:d8:f0:89:6b:f8:5f:aa:49:13:9c:42:
69:06:d3:f9:46:4a:f2:9c:74:9e:4d:96:b1:91:77:5f:37:28:
65:13:e1:80:0f:47:63:06:6f:d0:4f:32:cd:83:fe:de:63:9d:
41:bc:37:48:bc:df:a1:2c:60:a2:75:2b:68:f4:1f:32:e5:55:
ac:a5:05:1f:0c:47:43:d8:78:60:c5:f5:d0:cd:48:5d:62:bf:
5e:04:c7:af:ae:8b:b5:84:8b:28:2f:35:c2:3a:65:ad:2e:80:
3d:6b:f7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org