Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gR0jgId2ERejtxuNSWtR3HLt0oo.roa
File: gR0jgId2ERejtxuNSWtR3HLt0oo.roa (raw, json)
Hash identifier: tcrvrmumUef+wdf5QRiAvZ9zNOY3On975e3LDr9LiHM=
Subject key identifier: 81:1D:23:80:87:76:11:17:A3:B7:1B:8D:49:6B:51:DC:72:ED:D2:8A
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018E3E1DD0508FE9D602F7E4B313A6CC2924
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gR0jgId2ERejtxuNSWtR3HLt0oo.roa
Signing time: Thu 14 Mar 2024 17:58:44 +0000
ROA not before: Thu 14 Mar 2024 17:58:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199484
IP address blocks: 188.132.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 11:09:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3e:1d:d0:50:8f:e9:d6:02:f7:e4:b3:13:a6:cc:29:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Mar 14 17:58:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=811d238087761117a3b71b8d496b51dc72edd28a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:02:2a:3d:6c:0f:0a:0d:49:96:29:19:4c:73:
55:81:6c:8b:6f:93:03:2d:87:0d:9b:30:7a:3e:37:
3e:e3:65:2c:bd:5f:46:c3:36:95:e2:8b:90:30:76:
ad:df:19:a4:a1:6f:13:e8:18:e0:b7:68:db:83:8e:
00:90:3c:20:bd:8c:ab:67:6d:7b:99:c2:b0:80:03:
03:84:e5:3c:ac:e7:73:93:0b:eb:ee:4d:28:89:a7:
69:25:59:5b:41:fb:76:cf:ac:1f:22:8d:fb:2c:2b:
28:f8:c4:47:53:99:55:5c:f6:96:63:bb:72:f9:89:
85:f4:1c:e3:72:09:d3:47:db:c8:cb:26:5d:7d:8b:
97:b3:3d:21:12:e8:72:30:88:34:fa:6c:a8:d6:2f:
2a:6b:b6:80:57:26:1f:fc:40:dd:af:00:2f:0e:91:
94:1b:36:ad:6d:06:d2:e3:8c:bb:7e:50:58:5b:a5:
72:c5:77:f7:94:ee:48:e1:f6:7b:95:8f:f6:84:73:
d4:45:c9:bc:47:3e:5d:dc:a1:4b:71:f3:cd:4d:48:
f9:ce:69:8d:88:f7:50:67:06:0a:1b:ba:5d:d5:9a:
25:28:28:6a:99:ae:20:3a:38:b8:e5:b4:22:fd:f6:
64:05:50:02:93:f7:93:6c:9a:ed:f5:62:fa:17:3f:
d3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:1D:23:80:87:76:11:17:A3:B7:1B:8D:49:6B:51:DC:72:ED:D2:8A
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/gR0jgId2ERejtxuNSWtR3HLt0oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.210.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d3:07:3e:ad:64:63:2d:46:1e:f6:11:8b:25:4f:a3:4a:82:
32:40:f7:9f:fe:95:40:d8:4e:cb:2e:fc:f1:17:17:f4:db:05:
6a:56:ef:de:6b:a1:c2:00:3e:85:a2:0c:93:61:8c:5e:95:6b:
78:ba:6e:26:d6:83:10:d7:5c:54:25:ee:88:ad:85:d7:cc:a8:
46:c4:68:4b:6c:b8:ce:45:88:9d:59:d3:7a:70:76:41:e0:e6:
b1:5d:88:cc:26:33:c5:e0:53:0e:9a:00:6f:a4:4c:24:af:0c:
4a:7d:dc:8a:cd:5d:10:87:b9:14:79:bd:e3:a4:d6:bc:55:0a:
7b:0e:b3:0f:92:8d:37:44:b6:4c:f0:53:64:4f:13:06:9c:c4:
dd:53:37:1d:ab:22:d7:e3:88:98:6c:9a:26:dc:3c:f3:39:e5:
62:45:e7:53:b0:6a:ff:c8:63:05:25:d0:81:42:f3:64:58:8f:
00:b9:8e:97:87:72:51:3a:d4:0f:5c:e6:f9:dd:31:ab:d1:1e:
51:a1:85:20:79:6f:49:d6:64:63:fc:51:a3:ec:50:8a:84:d2:
2f:0a:df:83:47:57:bf:ba:0a:51:9b:b2:2f:56:08:ac:f5:89:
cd:8c:90:46:7a:83:ed:4b:a0:c9:0c:8f:b5:07:af:81:86:a5:
10:ef:d0:43
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4+HdBQj+nWAvfksxOmzCkkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjQwMzE0MTc1ODQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTFkMjM4MDg3NzYxMTE3YTNiNzFiOGQ0OTZiNTFkYzcyZWRkMjhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgIqPWwPCg1JlikZTHNVgWyLb5MD
LYcNmzB6Pjc+42UsvV9GwzaV4ouQMHat3xmkoW8T6Bjgt2jbg44AkDwgvYyrZ217
mcKwgAMDhOU8rOdzkwvr7k0oiadpJVlbQft2z6wfIo37LCso+MRHU5lVXPaWY7ty
+YmF9BzjcgnTR9vIyyZdfYuXsz0hEuhyMIg0+myo1i8qa7aAVyYf/EDdrwAvDpGU
GzatbQbS44y7flBYW6VyxXf3lO5I4fZ7lY/2hHPURcm8Rz5d3KFLcfPNTUj5zmmN
iPdQZwYKG7pd1ZolKChqma4gOji45bQi/fZkBVACk/eTbJrt9WL6Fz/TawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEdI4CHdhEXo7cbjUlrUdxy7dKKMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvZ1IwamdJZDJFUmVqdHh1TlNXdFIzSEx0MG9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvITSMA0G
CSqGSIb3DQEBCwUAA4IBAQBd0wc+rWRjLUYe9hGLJU+jSoIyQPef/pVA2E7LLvzx
Fxf02wVqVu/ea6HCAD6FogyTYYxelWt4um4m1oMQ11xUJe6IrYXXzKhGxGhLbLjO
RYidWdN6cHZB4OaxXYjMJjPF4FMOmgBvpEwkrwxKfdyKzV0Qh7kUeb3jpNa8VQp7
DrMPko03RLZM8FNkTxMGnMTdUzcdqyLX44iYbJom3DzzOeViRedTsGr/yGMFJdCB
QvNkWI8AuY6Xh3JROtQPXOb53TGr0R5RoYUgeW9J1mRj/FGj7FCKhNIvCt+DR1e/
ugpRm7IvVgis9YnNjJBGeoPtS6DJDI+1B6+BhqUQ79BD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org