Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/h_cKONlgfmIemAKIm_RmZn-frCo.roa
File: h_cKONlgfmIemAKIm_RmZn-frCo.roa (raw, json)
Hash identifier: TEqcpKnFNgqZgdKsJ5k15cqm2zj0djLxorFzefR7BV4=
Subject key identifier: 87:F7:0A:38:D9:60:7E:62:1E:98:02:88:9B:F4:66:66:7F:9F:AC:2A
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018DB2110C191C26A9B7DAA869A057C76682
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/h_cKONlgfmIemAKIm_RmZn-frCo.roa
Signing time: Fri 16 Feb 2024 13:17:58 +0000
ROA not before: Fri 16 Feb 2024 13:17:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212742
IP address blocks: 188.132.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 22:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b2:11:0c:19:1c:26:a9:b7:da:a8:69:a0:57:c7:66:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Feb 16 13:17:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87f70a38d9607e621e9802889bf466667f9fac2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:7f:d2:0b:8e:82:93:8f:8b:b7:9c:5a:32:
f1:ae:21:ef:96:63:e3:eb:37:f8:f9:1e:fc:f0:95:
95:0e:ce:12:19:a4:d9:e3:e8:31:57:dc:d0:b1:14:
6f:ad:2c:99:9e:51:e7:5c:e4:6d:d2:36:5c:ca:06:
94:66:0f:f7:55:82:34:7c:a5:e8:fc:26:34:51:04:
2d:e5:77:cf:41:3a:81:93:ae:85:89:31:72:76:d7:
f0:aa:d0:f0:5c:0d:2b:d1:4a:c5:c9:47:52:52:ba:
bf:0e:3f:80:d4:72:05:9b:08:23:97:0f:f3:9b:4d:
62:f1:98:fb:64:6e:30:8b:ea:9f:cb:48:5f:4a:09:
9d:0f:1d:44:87:71:0d:75:5b:88:7f:f1:46:6f:c6:
29:a5:b6:6c:14:98:f3:de:ca:2f:6c:49:65:ab:45:
7d:ff:47:6d:28:ca:86:f8:48:ac:1a:e0:0b:6b:04:
d3:49:98:97:ef:70:2e:02:f6:13:ed:ad:49:d6:a8:
e0:73:54:dd:35:9b:47:6a:60:08:08:d9:ed:b5:58:
7a:3b:c7:d9:24:5e:c4:c9:23:2c:54:6c:50:83:d8:
a0:97:da:2a:f4:c9:02:7a:8b:3f:69:63:a8:85:d5:
7d:81:fd:80:e5:21:de:c4:24:ae:45:11:7e:25:cd:
01:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F7:0A:38:D9:60:7E:62:1E:98:02:88:9B:F4:66:66:7F:9F:AC:2A
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/h_cKONlgfmIemAKIm_RmZn-frCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.216.0/24
Signature Algorithm: sha256WithRSAEncryption
21:34:f4:ae:ba:25:09:31:01:24:c6:d7:3d:d1:fd:a5:cb:36:
56:b2:c7:2c:28:00:4d:e9:4f:3c:82:05:2c:48:46:10:f7:34:
38:20:08:7c:00:2a:29:57:e8:c7:89:dd:55:9e:83:32:ea:89:
64:e1:0a:41:1d:70:2b:6f:65:e8:b3:2f:b3:64:2a:20:1c:ab:
4d:d4:03:47:fb:08:b2:3f:58:08:41:f8:28:bd:df:f8:ea:58:
9f:59:b3:69:bb:51:9b:ff:89:42:d0:85:ef:5e:78:94:ef:47:
f2:84:bc:81:12:f3:6a:42:0d:8b:2d:34:65:b1:b9:38:ec:b6:
1c:87:6e:1f:2c:83:01:d9:60:78:d3:47:a8:89:66:34:8a:0f:
f2:b5:c2:f2:08:85:be:37:63:bf:58:6c:59:6a:d8:cb:75:fc:
41:34:b9:d4:94:f8:95:d3:84:79:8d:00:53:7f:38:d9:61:9b:
91:23:82:7b:07:51:b3:75:f0:c7:9a:32:bf:63:b5:07:3a:18:
0e:bf:61:4c:d3:76:29:af:74:58:a4:6b:9a:64:fe:6f:e9:ce:
4b:30:9c:7a:13:9d:7d:f4:70:12:f2:fc:df:d2:2e:ad:96:24:
d7:b3:d6:2b:f4:9b:3c:d0:55:d1:1d:37:1d:1c:02:c1:49:d9:
3b:ef:3c:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2yEQwZHCapt9qoaaBXx2aCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjQwMjE2MTMxNzU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2Y3MGEzOGQ5NjA3ZTYyMWU5ODAyODg5YmY0NjY2NjdmOWZhYzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAge1/0guOgpOPi7ecWjLxriHvlmPj
6zf4+R788JWVDs4SGaTZ4+gxV9zQsRRvrSyZnlHnXORt0jZcygaUZg/3VYI0fKXo
/CY0UQQt5XfPQTqBk66FiTFydtfwqtDwXA0r0UrFyUdSUrq/Dj+A1HIFmwgjlw/z
m01i8Zj7ZG4wi+qfy0hfSgmdDx1Eh3ENdVuIf/FGb8YppbZsFJjz3sovbEllq0V9
/0dtKMqG+EisGuALawTTSZiX73AuAvYT7a1J1qjgc1TdNZtHamAICNnttVh6O8fZ
JF7EySMsVGxQg9igl9oq9MkCeos/aWOohdV9gf2A5SHexCSuRRF+Jc0BbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIf3CjjZYH5iHpgCiJv0ZmZ/n6wqMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvaF9jS09ObGdmbUllbUFLSW1fUm1abi1mckNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvITYMA0G
CSqGSIb3DQEBCwUAA4IBAQAhNPSuuiUJMQEkxtc90f2lyzZWsscsKABN6U88ggUs
SEYQ9zQ4IAh8ACopV+jHid1VnoMy6olk4QpBHXArb2Xosy+zZCogHKtN1ANH+wiy
P1gIQfgovd/46lifWbNpu1Gb/4lC0IXvXniU70fyhLyBEvNqQg2LLTRlsbk47LYc
h24fLIMB2WB400eoiWY0ig/ytcLyCIW+N2O/WGxZatjLdfxBNLnUlPiV04R5jQBT
fzjZYZuRI4J7B1GzdfDHmjK/Y7UHOhgOv2FM03Ypr3RYpGuaZP5v6c5LMJx6E519
9HAS8vzf0i6tliTXs9Yr9Js80FXRHTcdHALBSdk77zwW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org