Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/h0YsiUzTcZAxidKDJb7VjinJPU8.roa
File: h0YsiUzTcZAxidKDJb7VjinJPU8.roa (raw, json)
Hash identifier: pO08BX+T1PHZssdyeOLWxlyD0zeLXmCg2mnc3FxSQRw=
Subject key identifier: 87:46:2C:89:4C:D3:71:90:31:89:D2:83:25:BE:D5:8E:29:C9:3D:4F
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570028EB1D66C3E7BC65767550B4EFD8D
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/h0YsiUzTcZAxidKDJb7VjinJPU8.roa
Signing time: Mon 02 Jan 2023 01:04:53 +0000
ROA not before: Mon 02 Jan 2023 01:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201978
IP address blocks: 188.132.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8e:b1:d6:6c:3e:7b:c6:57:67:55:0b:4e:fd:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87462c894cd371903189d28325bed58e29c93d4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b3:c8:17:b1:4f:47:97:b0:ac:b6:13:ce:07:
93:df:6f:98:b8:1d:75:b7:49:05:52:9c:a1:73:4c:
bd:e3:ac:04:e2:30:17:bf:6f:60:b2:c6:24:bd:bf:
dd:52:72:e4:e3:00:80:34:4e:4a:68:48:0c:b0:5b:
23:ba:35:e7:31:ca:fd:b4:d1:f4:e9:69:8c:16:59:
84:99:a2:c0:41:52:65:dd:bc:e0:19:f3:2b:1e:9d:
d8:f6:8e:5a:fa:0e:42:ad:c2:10:c4:ad:1a:86:d1:
92:ee:fd:04:1e:0b:4f:fe:4c:a0:f9:e1:a4:c7:fb:
e2:54:fc:8d:9f:c0:af:9a:ee:dc:48:ce:05:88:ac:
ad:65:e9:ac:0d:8d:f7:79:33:5e:54:5f:38:ff:37:
03:4b:b3:ce:56:10:f4:ba:b9:49:a9:20:f2:f1:73:
0c:30:52:d3:56:7d:8e:5e:e0:7c:5b:de:d6:49:57:
43:28:cf:a9:9b:04:73:e5:45:52:f9:f4:32:cc:1d:
89:4a:10:6d:bd:da:cb:bb:c1:3a:53:93:3d:26:1a:
e1:59:4c:fc:06:24:cf:20:09:70:c7:5d:bb:01:51:
c0:fd:0c:34:41:77:53:5d:27:66:f6:b9:20:46:24:
b4:44:48:8a:a0:28:10:6b:34:da:71:03:6e:ca:f9:
52:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:46:2C:89:4C:D3:71:90:31:89:D2:83:25:BE:D5:8E:29:C9:3D:4F
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/h0YsiUzTcZAxidKDJb7VjinJPU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
63:21:c5:41:3b:ba:f3:96:d9:b1:02:b5:d2:50:17:9a:88:2e:
94:20:af:e0:df:fc:c6:03:ae:0c:d1:7b:84:e7:66:1b:b6:09:
8f:3e:73:e8:ef:29:a8:99:b3:58:92:a5:61:5d:7a:30:09:fc:
26:c1:bb:ed:07:85:01:9f:3d:6a:09:06:19:ef:0d:cc:16:dd:
7c:94:64:2a:f3:28:90:26:f2:76:8e:89:0b:7f:60:10:fd:84:
09:63:46:90:32:1e:43:4e:6f:42:4f:e9:bf:75:21:7a:5f:99:
21:c2:1e:5b:7f:ec:71:64:70:f5:5e:33:02:3d:4c:99:2a:8f:
52:29:72:6e:10:50:60:ea:03:bc:fc:d1:7b:3b:49:20:54:f1:
db:d7:1f:7a:ef:1e:8a:8f:43:ed:b8:9e:35:b6:66:13:29:1a:
66:6c:11:a7:ff:92:16:27:b9:be:61:fd:0a:06:ee:e6:f8:93:
bb:fa:90:7e:7e:b2:49:d1:2d:c3:05:3d:a5:2d:43:c2:c1:af:
80:0b:23:f9:81:9e:51:80:82:24:f8:7d:af:01:c0:89:36:21:
b7:cb:3e:59:3f:34:a7:a5:3a:68:80:fd:8d:26:e6:93:3f:58:
12:43:7d:c8:eb:9b:ac:0b:03:22:a9:3b:34:2f:7e:fe:52:77:
bf:c8:e8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org