Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/aeXNYhmzj1-jikxg_cnUX-5puRw.roa
File: aeXNYhmzj1-jikxg_cnUX-5puRw.roa (raw, json)
Hash identifier: STAwoQHCuqpt++q+GRNMeySHMR6WUyBOSbJW7hJfkuk=
Subject key identifier: 69:E5:CD:62:19:B3:8F:5F:A3:8A:4C:60:FD:C9:D4:5F:EE:69:B9:1C
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0186E544A81A6CCFFAE18B516EC1E32522B0
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/aeXNYhmzj1-jikxg_cnUX-5puRw.roa
Signing time: Wed 15 Mar 2023 12:35:27 +0000
ROA not before: Wed 15 Mar 2023 12:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206670
IP address blocks: 188.132.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:44:a8:1a:6c:cf:fa:e1:8b:51:6e:c1:e3:25:22:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Mar 15 12:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69e5cd6219b38f5fa38a4c60fdc9d45fee69b91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9c:78:48:81:a3:83:66:59:68:fd:66:cd:b3:
41:e3:bc:eb:ae:a7:6d:f4:0f:14:da:2e:41:1b:fe:
72:da:5d:41:a5:93:c8:ee:d6:18:7f:96:de:dd:a6:
56:84:ff:eb:54:38:ea:64:52:e7:93:97:ff:d8:11:
d0:3b:f6:8e:00:67:22:33:e8:89:84:6e:17:54:b7:
62:e4:cb:46:9f:ca:51:1b:7e:0b:e2:dd:6a:af:d9:
90:13:7d:9b:89:5f:85:3e:d4:fb:4c:25:03:50:2e:
c7:8a:50:4a:1a:c2:14:53:ac:3a:8c:70:41:3d:84:
0f:cd:4a:b7:6f:f2:ef:94:b6:b5:4a:62:95:b5:8a:
cb:d0:e7:c9:55:6d:c4:54:13:67:38:94:d8:d6:0a:
ac:95:70:05:43:a7:d1:78:e3:82:ff:e7:81:b8:8f:
11:53:cf:e9:af:19:21:57:e0:8e:0b:e6:96:8f:3d:
79:fd:ac:1f:2a:42:e2:9c:e2:cb:e2:ef:42:30:fe:
ba:7a:74:4a:8c:b7:3e:f9:23:d3:52:63:2f:5b:01:
4c:9f:60:83:58:de:f0:04:55:33:3a:3d:8d:b1:74:
45:3e:92:f7:e7:be:91:ca:aa:ba:49:79:f0:11:a7:
48:8d:21:0b:72:af:68:11:9f:a9:a4:e6:be:f7:93:
2b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E5:CD:62:19:B3:8F:5F:A3:8A:4C:60:FD:C9:D4:5F:EE:69:B9:1C
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/aeXNYhmzj1-jikxg_cnUX-5puRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.156.0/24
Signature Algorithm: sha256WithRSAEncryption
67:3e:ec:f0:79:41:9a:b2:7d:a3:93:30:cb:b7:f1:5a:f4:1a:
ac:a6:8f:d3:e0:5e:c0:7a:f0:cf:37:cc:7f:bc:3a:f6:af:9d:
db:1d:59:29:d3:ea:eb:76:f6:38:2f:af:1e:ac:a1:b2:38:9f:
ee:eb:62:47:4e:08:3e:42:3b:1a:12:77:f6:5a:2c:df:05:59:
d6:19:90:6d:8b:1b:69:fd:dd:95:11:60:25:6f:8b:c0:41:f2:
be:ce:7c:a4:5e:de:ab:da:37:7f:82:8e:03:22:a9:fc:f9:4e:
83:f8:e6:f4:4d:98:4a:f7:9b:8e:fa:f4:52:d1:da:cc:63:58:
cc:8a:27:c5:4b:ff:98:cd:76:9a:12:56:18:1e:16:50:b3:c3:
94:f5:88:c3:d1:40:d5:d9:77:e4:54:d2:03:6e:4d:b1:e5:2e:
51:35:87:5f:a1:2f:40:17:12:fb:ac:6f:10:e3:0b:37:b0:ee:
4c:09:25:15:96:66:19:5a:cd:df:78:e6:17:a0:9d:41:ae:19:
63:3d:3a:d3:fd:f6:e2:b5:1e:84:47:3d:a1:c3:62:f8:c1:4d:
fb:af:38:74:b6:05:4a:87:e1:79:8c:61:3f:e4:cf:5d:19:a6:
3f:5a:7c:0b:78:6c:2f:e3:be:97:6b:24:df:fb:26:5d:77:09:
b2:44:8a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org