Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/aHiBB6mLS-VU7oxlq5-smof_zdQ.roa
File: aHiBB6mLS-VU7oxlq5-smof_zdQ.roa (raw, json)
Hash identifier: Gju/EiJqGi4mX58wwrRG7gdFGeqtW/2JKjiP26w+Hn4=
Subject key identifier: 68:78:81:07:A9:8B:4B:E5:54:EE:8C:65:AB:9F:AC:9A:87:FF:CD:D4
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01901BE646F80EE87D54A30E387FEA97AF48
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/aHiBB6mLS-VU7oxlq5-smof_zdQ.roa
Signing time: Sat 15 Jun 2024 12:36:34 +0000
ROA not before: Sat 15 Jun 2024 12:36:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42083
IP address blocks: 188.132.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 08:22:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:e6:46:f8:0e:e8:7d:54:a3:0e:38:7f:ea:97:af:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jun 15 12:36:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68788107a98b4be554ee8c65ab9fac9a87ffcdd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:7f:27:37:c6:94:82:50:ce:01:4c:a2:94:
d4:a7:d4:2f:2b:f2:ff:b3:b2:94:41:e3:e2:8f:1e:
24:29:89:df:13:57:d6:54:a0:f3:c0:9b:cb:0b:fa:
07:fb:12:47:fb:ef:f2:cb:63:11:42:b3:31:35:c8:
bf:83:fe:80:5b:d3:20:69:b4:6e:f2:49:1c:08:cd:
c6:67:a3:c5:c6:79:6d:7f:89:b5:da:0d:e3:97:d7:
fa:87:45:f1:d7:6c:a1:5f:6d:d4:ea:55:7a:fb:2b:
39:ef:3b:ca:62:53:16:e1:e1:0e:63:5b:a9:9c:08:
58:1e:0f:90:23:ff:14:7c:7f:30:52:73:97:8e:3a:
ec:39:64:e8:81:a3:8a:f3:8b:53:01:0a:81:57:aa:
da:24:77:81:5d:ee:e8:5c:81:0f:ce:c9:63:f4:f0:
f9:1a:93:e6:30:0a:d3:0c:ba:6a:81:48:7b:cc:72:
40:d5:9c:11:cc:b9:b4:36:8d:b0:6c:6c:e7:19:fa:
6d:74:4d:06:15:eb:c0:89:32:a6:6e:3f:b1:11:05:
83:8c:af:21:25:16:05:ba:0e:86:15:b9:d1:72:79:
ed:53:d2:58:f1:ec:79:b8:68:b4:be:bd:1d:bb:d6:
d6:5f:6e:36:35:bd:cd:2b:61:67:56:20:7b:18:a1:
77:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:78:81:07:A9:8B:4B:E5:54:EE:8C:65:AB:9F:AC:9A:87:FF:CD:D4
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/aHiBB6mLS-VU7oxlq5-smof_zdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.150.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b3:6f:9d:59:f5:0c:53:4f:e4:77:8c:aa:f4:68:54:5d:31:
2e:1b:15:2a:87:39:e0:bc:06:e7:ca:fe:23:fe:ce:cd:8e:8b:
6b:8f:e7:85:eb:6f:27:58:b8:f4:e1:db:5f:5a:8e:e8:70:06:
e7:25:cb:c2:24:d9:b8:d1:d4:24:42:be:a9:57:c2:63:44:c6:
aa:8b:96:13:c4:ee:04:51:2b:de:87:c2:46:77:ba:d1:54:7e:
66:50:b7:e4:03:73:41:5c:25:1a:ea:6c:fb:b2:52:f5:86:a7:
53:c8:ba:75:88:3b:2e:d6:bc:31:21:d8:ea:ab:82:cc:11:60:
61:1f:19:8f:94:c8:24:26:a8:78:7c:7b:a4:6a:08:12:e7:d0:
ea:58:85:d7:06:a0:c4:57:28:f9:99:47:a2:75:2d:54:ec:be:
56:d4:bb:21:dd:6e:9b:9a:06:ad:f0:18:0c:88:18:df:d6:8a:
e4:a2:3d:83:c8:64:fc:8d:bd:be:25:13:ad:50:e5:15:70:c2:
1c:bf:14:cc:12:bd:e8:14:37:07:67:95:ac:98:6b:9d:5a:89:
c4:4e:8d:70:14:07:99:ef:cf:ea:5a:b5:85:53:50:98:6e:3e:
f3:2a:7a:ce:2b:1c:a2:58:53:69:48:24:ff:f7:ae:be:b2:26:
e2:0e:6a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 12:10:14 2024 by rpki-client on console-ams.rpki-client.org