Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hrT97ON1VExJLegLrvXJyaNJUnI.roa
File: hrT97ON1VExJLegLrvXJyaNJUnI.roa (raw, json)
Hash identifier: j77KRwSJ1bNOJZRGBD8k+COhtelL+bpDaAZOEVfbwoY=
Subject key identifier: 86:B4:FD:EC:E3:75:54:4C:49:2D:E8:0B:AE:F5:C9:C9:A3:49:52:72
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0185A28CA7CB4352D0890122B36DD4DA84EC
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hrT97ON1VExJLegLrvXJyaNJUnI.roa
Signing time: Wed 11 Jan 2023 20:36:44 +0000
ROA not before: Wed 11 Jan 2023 20:36:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200231
IP address blocks: 188.132.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a2:8c:a7:cb:43:52:d0:89:01:22:b3:6d:d4:da:84:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 11 20:36:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86b4fdece375544c492de80baef5c9c9a3495272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:81:31:d9:99:94:df:58:fc:64:af:2c:9c:
2d:a8:3d:24:a2:6f:11:c2:db:d9:f0:c6:cf:97:d9:
6a:30:4e:24:69:b2:06:24:04:8e:b3:35:5f:81:55:
e3:f3:7c:14:7f:82:d9:dc:a5:c0:66:f8:3e:e9:7d:
c4:09:92:36:85:6a:b0:1d:dd:53:d9:46:82:e9:82:
06:c1:3b:13:33:e9:b4:a2:74:ac:67:97:59:8a:6b:
e4:a8:ea:72:57:74:4d:ef:01:a0:d6:1f:89:00:29:
dc:4a:a0:b0:7c:47:78:76:b2:05:94:ba:ea:6d:6c:
4e:6a:34:3a:f2:be:1b:9b:aa:7d:03:52:0b:c9:aa:
92:e1:02:6a:5b:2a:36:ee:7d:e6:ae:db:62:d9:d2:
89:0a:ba:40:44:2c:49:d9:c4:06:f3:d1:5f:ca:a7:
63:8a:25:60:bc:93:7a:5f:a8:75:80:3a:64:44:fa:
bf:41:04:91:35:8f:64:5f:17:94:7d:11:ad:d5:7c:
68:9b:04:bd:d0:4e:0d:72:a2:57:e4:67:81:94:14:
8d:62:95:b2:62:f1:4a:9a:ac:fc:e9:75:6f:9a:f0:
4b:9e:a5:30:68:68:1e:61:fd:db:21:10:9c:85:2b:
72:9f:51:ab:c5:cc:e4:2b:3e:c5:82:19:57:3b:dd:
d8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B4:FD:EC:E3:75:54:4C:49:2D:E8:0B:AE:F5:C9:C9:A3:49:52:72
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/hrT97ON1VExJLegLrvXJyaNJUnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.238.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:80:95:90:b7:c4:f6:3f:44:27:89:e9:db:cf:b1:30:d3:ea:
3b:ef:6b:50:e2:d2:e6:5a:14:92:6e:05:b9:b2:5c:43:db:eb:
b9:ae:7a:c1:b9:60:c0:ab:1a:e3:8a:e1:11:26:05:2e:2a:c2:
ca:d7:b9:91:cc:fa:41:40:d0:8a:67:ba:17:85:a4:6b:07:98:
d6:e9:d2:5a:c9:77:41:cf:c6:09:be:c5:cf:17:45:54:6d:98:
fb:db:ef:09:a7:b9:ab:d4:1a:fa:43:dd:9c:fe:f7:9e:dc:21:
f5:a5:10:7f:5a:04:c7:bd:f0:d9:0d:0d:2a:73:bd:e1:f8:d1:
2e:52:6c:a0:db:4a:e9:60:a8:22:58:57:ea:16:db:6e:ba:d2:
8d:c8:a9:2f:82:94:20:ed:b3:41:ff:ca:d8:cd:08:d5:79:cb:
bd:bb:3f:4d:6b:32:e3:0b:52:de:ad:6e:24:9d:e0:c9:e6:e1:
d7:a7:e1:50:66:98:54:a4:63:18:fd:90:95:4a:82:3f:dd:8c:
43:38:01:c5:89:0f:34:49:15:d1:1b:42:9c:dd:57:10:2b:f0:
18:78:8b:e5:c9:95:60:9e:94:07:94:ac:04:c7:8e:9d:f1:ae:
16:86:e3:e0:1c:23:1a:7e:1b:38:6e:8b:a1:db:1c:44:5c:e1:
24:3d:60:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org