Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/RA9rEE42wnMccc6GtOyzMWDT10c.roa
File: RA9rEE42wnMccc6GtOyzMWDT10c.roa (raw, json)
Hash identifier: uhdHk6RmFA7DTbtYfWMf2YDtTBVufO493mkzDK3U4Do=
Subject key identifier: 44:0F:6B:10:4E:36:C2:73:1C:71:CE:86:B4:EC:B3:31:60:D3:D7:47
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570029A6535CE9591797EF058DBB37704
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/RA9rEE42wnMccc6GtOyzMWDT10c.roa
Signing time: Mon 02 Jan 2023 01:04:56 +0000
ROA not before: Mon 02 Jan 2023 01:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211327
IP address blocks: 188.132.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Feb 2023 11:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:9a:65:35:ce:95:91:79:7e:f0:58:db:b3:77:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=440f6b104e36c2731c71ce86b4ecb33160d3d747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e1:6f:fa:96:8d:60:31:5d:ce:e3:80:83:3d:
47:01:c5:77:56:65:f7:48:eb:7b:c3:8c:f5:c7:e0:
1e:70:78:4b:ae:91:bd:d4:c2:eb:d1:82:98:98:03:
cc:5a:9f:41:33:37:f8:d6:33:d1:da:77:c7:56:53:
9f:57:16:d4:23:b5:e0:7b:2f:b2:bf:13:4b:65:b9:
0b:fd:c9:b0:64:5b:93:76:73:fc:78:b5:ea:36:0f:
5a:e1:4c:ec:72:69:47:e1:16:95:d0:fd:9f:32:cc:
70:df:3e:70:43:2a:23:d5:8f:5e:ac:e0:1d:0f:39:
c5:0a:5c:54:aa:51:dc:30:10:f1:90:30:ff:f6:eb:
45:44:2b:a8:93:76:7d:a3:db:ac:17:59:fd:11:dc:
56:a0:78:bd:a1:cf:1c:ae:4e:c3:54:5d:b3:e7:48:
39:6a:dc:d4:25:c8:85:fa:6c:72:e2:23:81:7f:df:
7e:d8:81:6c:be:b1:02:28:de:dc:10:19:52:43:c7:
ee:67:95:ba:1f:2c:58:a3:2a:81:eb:88:d4:5b:7e:
66:54:86:ac:4f:9e:4c:61:2a:0b:2b:ff:dd:9c:fe:
cd:29:09:cd:81:77:9d:58:64:2d:fa:b5:2c:a9:5b:
88:0a:34:6f:26:80:fe:ef:74:12:7b:db:be:6a:1a:
1a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0F:6B:10:4E:36:C2:73:1C:71:CE:86:B4:EC:B3:31:60:D3:D7:47
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/RA9rEE42wnMccc6GtOyzMWDT10c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.178.0/24
Signature Algorithm: sha256WithRSAEncryption
00:65:df:6c:46:67:5a:ed:85:91:1b:e6:66:c1:58:e8:ce:31:
04:91:4f:2d:51:ab:e5:f1:2f:58:83:d9:02:e6:ce:50:00:89:
50:74:f9:2b:60:f4:87:c3:39:6b:c3:5c:df:4a:96:20:6f:b3:
f9:c7:6e:29:8b:05:5b:e0:27:90:c7:08:56:b5:6f:f8:19:b8:
92:44:34:1d:d0:28:67:87:5b:8f:b2:d8:38:62:02:af:d0:5d:
4b:cc:b6:eb:ee:c2:19:f9:a6:1e:64:39:08:33:cd:5e:2e:81:
d0:0d:7f:39:92:81:da:d7:df:59:bf:56:3e:53:8a:90:a1:38:
d6:1b:2f:cc:93:36:9f:90:e7:17:10:b4:90:03:32:f1:dd:17:
3a:17:63:ea:ea:88:a0:a4:e5:dd:6d:b4:42:67:a6:a9:06:ed:
44:9a:1d:c1:83:7f:8c:c7:1e:2d:81:35:1f:dd:84:bd:35:76:
41:ce:1e:22:dc:8d:0d:3d:5d:bc:a0:96:ea:af:c8:47:44:e2:
14:1d:0e:57:c3:e0:89:14:25:35:9a:e5:f1:04:f9:28:7a:f8:
ef:49:02:44:bb:10:7f:b3:b2:47:13:5b:15:e5:b9:45:2b:4c:
c0:20:a7:74:85:2c:16:da:44:2f:37:66:ed:ae:23:aa:cb:ff:
05:ea:f6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org