Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/jnAVrw5mumcc4ia75ErVvFwSRes.roa
File: jnAVrw5mumcc4ia75ErVvFwSRes.roa (raw, json)
Hash identifier: 06CjY+8SA+haTEa2gCKfdRrT6a5hVl3U8BL7y90GqXM=
Subject key identifier: 8E:70:15:AF:0E:66:BA:67:1C:E2:26:BB:E4:4A:D5:BC:5C:12:45:EB
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01857002985523E3ECA52F662C46486095E3
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/jnAVrw5mumcc4ia75ErVvFwSRes.roa
Signing time: Mon 02 Jan 2023 01:04:56 +0000
ROA not before: Mon 02 Jan 2023 01:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208425
IP address blocks: 188.132.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:98:55:23:e3:ec:a5:2f:66:2c:46:48:60:95:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e7015af0e66ba671ce226bbe44ad5bc5c1245eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:50:27:f2:0d:bb:ae:fb:24:80:96:52:ba:18:
a8:80:4c:18:c8:11:fc:8f:04:de:7c:aa:b6:d0:df:
ed:45:a1:49:ed:2b:95:c7:4e:ab:fd:d4:4d:3d:7e:
1c:36:df:b9:d1:6e:a2:67:c1:d5:ef:29:1b:47:de:
0f:83:f0:9e:ca:c8:3b:50:e5:45:f3:73:9f:64:c4:
1e:1f:dd:0d:77:bf:c5:b3:22:20:ea:76:ff:1d:bf:
62:86:a9:1b:d0:5d:ed:94:6a:5c:59:6d:4c:36:50:
de:00:52:6b:69:bf:04:a6:86:5b:ca:5a:7e:fa:10:
ec:ff:9f:9d:b2:57:49:9d:8c:cd:53:78:97:e6:27:
4f:06:2c:3b:1f:d0:ab:3a:da:80:d5:19:58:43:2a:
0d:0f:be:9a:cd:59:25:6a:42:17:e2:92:71:82:cc:
79:e3:30:31:84:28:97:35:cb:dc:96:7c:0c:0e:66:
e1:a8:4e:5d:0f:59:42:a6:a4:03:1d:5c:33:04:5e:
c3:04:19:db:2c:22:39:80:23:8b:45:28:2b:55:bc:
b4:f6:ab:f6:7b:e1:ea:6b:4d:6a:86:e2:26:23:b9:
a9:74:b2:d6:37:bb:97:46:cb:37:2f:d2:15:52:a1:
6f:3a:82:35:b8:02:9e:4a:a5:7d:8c:46:85:bf:f5:
a6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:70:15:AF:0E:66:BA:67:1C:E2:26:BB:E4:4A:D5:BC:5C:12:45:EB
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/jnAVrw5mumcc4ia75ErVvFwSRes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
25:dd:57:6e:b5:d7:39:a0:c5:49:1f:b0:97:fa:7c:cb:e6:74:
3c:d2:52:45:f9:5e:c2:74:c1:aa:46:94:f7:55:82:af:0b:5e:
b1:58:cc:b6:63:dd:88:92:d1:54:97:3f:1b:bd:90:91:80:bd:
19:f2:1e:78:51:b5:3f:6e:53:e6:c8:9e:0a:a7:99:e9:46:f8:
93:49:5e:3b:9d:fc:d2:b4:13:66:c6:35:e4:eb:6c:26:4c:de:
d6:b9:e0:67:b4:2e:e5:cd:b3:8e:92:d5:e2:0a:ab:4d:f4:54:
25:55:76:02:3f:e4:32:71:13:09:10:71:72:ea:39:d1:46:60:
fb:aa:25:f8:4d:50:5f:05:ec:27:03:09:2b:43:11:43:24:e6:
7a:9a:c6:0e:55:1c:47:7c:e5:97:7d:f6:dc:eb:6e:a7:49:86:
8d:ef:66:5b:b6:2b:78:67:70:17:57:8d:7e:b9:eb:77:24:28:
b6:a0:75:5a:ab:b1:4d:56:ce:e1:74:4e:32:5d:1e:60:b4:54:
fb:de:b2:f4:8c:e7:70:c2:07:33:4b:61:30:6a:2f:e8:72:62:
f5:37:30:40:c4:00:7b:53:f9:a8:9f:4e:84:ab:d2:36:4f:d5:
70:87:f0:4d:6e:21:ea:86:32:03:da:ac:13:44:9b:fa:d4:b1:
40:98:dc:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org