Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Y66f5sSrxeljZhYxsjPijUKWxIg.roa
File: Y66f5sSrxeljZhYxsjPijUKWxIg.roa (raw, json)
Hash identifier: CtszNGV3ELXREJ3pvdT76ElgkBqRvWgNr5dxWU58q3c=
Subject key identifier: 63:AE:9F:E6:C4:AB:C5:E9:63:66:16:31:B2:33:E2:8D:42:96:C4:88
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0190D9A57AB639EC449347A04F39B5D9A87E
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Y66f5sSrxeljZhYxsjPijUKWxIg.roa
Signing time: Mon 22 Jul 2024 08:53:38 +0000
ROA not before: Mon 22 Jul 2024 08:53:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213245
IP address blocks: 188.132.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 06:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:a5:7a:b6:39:ec:44:93:47:a0:4f:39:b5:d9:a8:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jul 22 08:53:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63ae9fe6c4abc5e963661631b233e28d4296c488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:1b:2f:46:7f:e0:99:5b:2c:b7:1b:cb:86:
89:1e:88:70:85:61:1e:30:45:41:c6:a6:e7:1d:05:
2e:b2:b5:f1:79:50:56:23:c2:e6:38:a6:4a:ea:53:
37:12:8a:7c:29:3c:3d:58:6b:e7:61:2c:2c:61:a4:
e9:a8:f6:4f:7c:14:1c:98:45:c1:9f:a6:d1:56:8f:
0d:8e:1a:61:34:73:27:f7:6c:b7:47:69:48:f1:91:
24:08:46:41:e8:e9:ec:cc:84:14:c5:86:0f:f7:ef:
fd:99:3d:0d:0d:07:a8:ad:0a:f4:30:32:8f:df:12:
81:c7:00:d0:71:a9:03:a5:3a:b4:3e:ee:ca:d9:69:
12:a6:eb:c7:9f:88:e6:b1:fd:f6:8c:18:c1:ff:e3:
53:bd:ee:93:ba:24:a1:c7:d1:62:1e:72:32:35:61:
2a:21:f7:c3:73:76:de:ce:39:b6:06:fd:7e:7e:4c:
07:19:64:a6:2a:c3:8a:d5:63:f8:71:c5:af:c5:ca:
23:7b:46:9e:89:c1:ea:bd:9a:9f:87:b1:9b:ee:2c:
16:e6:62:87:80:54:97:30:39:a7:94:48:d7:82:47:
d5:21:e7:ad:50:94:f4:8c:fe:58:8c:35:42:ed:8c:
c0:2b:e5:b2:3b:3c:7b:f9:e4:30:5b:f0:2f:5f:5a:
93:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AE:9F:E6:C4:AB:C5:E9:63:66:16:31:B2:33:E2:8D:42:96:C4:88
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/Y66f5sSrxeljZhYxsjPijUKWxIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:65:7b:10:26:18:18:af:9a:7a:9b:16:d1:bd:f3:fa:1c:bf:
f7:38:0e:af:41:f7:a0:b6:4a:dc:56:53:1e:f0:8c:2d:7e:10:
a9:ed:12:38:fa:04:37:61:54:1d:d7:d8:c4:54:1b:84:b8:b7:
ac:47:13:3e:46:86:d5:eb:09:aa:49:50:5e:87:a3:32:58:bb:
e7:f2:33:95:e6:c4:7c:aa:0c:e4:3a:ab:11:79:37:1f:de:cb:
70:2d:94:5a:b5:a4:40:63:10:d0:74:b5:b5:ec:06:6e:f7:69:
8c:eb:b9:2f:47:f4:fd:e4:1b:ed:4a:2f:23:21:31:25:03:1f:
16:f3:9f:01:0a:62:a0:7c:65:12:e4:1f:57:ac:59:6e:3d:63:
95:c4:93:02:2c:67:6e:14:5d:3e:3e:a5:6e:20:31:52:f1:9e:
5a:df:26:8a:b7:e4:d7:40:d9:58:68:ef:e6:d0:26:46:27:d8:
12:0c:19:69:f6:a4:07:78:b9:a9:76:6a:fe:4e:20:f3:c5:8b:
cf:43:6b:c4:5d:ea:f0:00:0b:b2:c2:1a:2d:df:b1:f4:8a:bf:
81:29:6f:7a:54:96:bb:13:9f:73:03:71:69:b5:96:e4:e6:59:
7a:2a:7d:07:da:13:93:d4:7c:be:44:39:68:e0:0e:56:4d:a5:
27:87:c8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 07:46:39 2024 by rpki-client on console-fra.rpki-client.org