Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/mKSXbrpEF7hiwYOisoXwAkimsKc.roa
File: mKSXbrpEF7hiwYOisoXwAkimsKc.roa (raw, json)
Hash identifier: oMtNIg12QJGqyCsjh2zkcOkdLpNes7k5YHwTxHVssxw=
Subject key identifier: 98:A4:97:6E:BA:44:17:B8:62:C1:83:A2:B2:85:F0:02:48:A6:B0:A7
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018F5C7844BBB1EB42E1704782BD81D2AE95
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/mKSXbrpEF7hiwYOisoXwAkimsKc.roa
Signing time: Thu 09 May 2024 08:28:56 +0000
ROA not before: Thu 09 May 2024 08:28:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211567
IP address blocks: 188.132.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 10:47:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5c:78:44:bb:b1:eb:42:e1:70:47:82:bd:81:d2:ae:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: May 9 08:28:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98a4976eba4417b862c183a2b285f00248a6b0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c8:5e:d2:fc:3b:24:6b:37:24:9d:dc:48:49:
e1:52:6a:9f:07:81:b4:7e:ac:7a:fb:57:0d:01:d9:
95:94:e5:7b:c8:09:c5:26:5b:26:bc:6a:15:18:f4:
8a:31:05:bf:0b:e6:07:3b:f1:23:38:3c:19:76:d9:
80:04:e7:ac:2f:55:98:f2:14:47:a9:a1:d1:b2:ba:
9f:e9:28:31:65:ac:c6:29:60:d4:b2:01:e5:e0:dd:
70:2d:82:a0:28:25:79:15:8d:5c:22:f5:4c:66:ab:
b5:c5:bf:59:6d:94:a6:08:40:29:b7:26:cc:7d:c2:
92:27:0e:4c:10:b9:bd:ff:17:bc:4e:9b:4b:16:82:
f1:4d:5b:64:eb:8d:78:f4:47:c1:86:e4:fd:67:c5:
4b:c7:71:52:09:51:ee:6f:f7:bc:e6:3d:f7:1f:c0:
fd:10:ea:3b:93:5a:81:bb:3f:12:d1:06:2e:76:d4:
bd:b0:c0:c5:a8:d1:16:c6:32:eb:63:94:a2:90:24:
4b:ea:64:59:a4:43:ee:a8:fb:7f:06:a2:d5:0b:f8:
55:67:1a:92:02:bb:42:69:21:5f:0f:47:d8:29:44:
c6:4f:93:5b:7e:4f:4b:f4:69:a5:b0:ba:f2:fc:f4:
60:79:c1:0e:2f:4f:8f:e4:e8:3c:9f:cd:e3:3c:fa:
ee:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A4:97:6E:BA:44:17:B8:62:C1:83:A2:B2:85:F0:02:48:A6:B0:A7
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/mKSXbrpEF7hiwYOisoXwAkimsKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.231.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:42:17:ca:df:18:ee:bf:e7:b2:9a:aa:de:d8:c5:6a:7f:e1:
30:46:d0:57:39:e6:c0:f6:c1:64:7a:26:42:ee:07:a9:c2:9e:
b9:7d:89:8c:2b:ed:b4:1b:12:d9:b0:86:f6:08:2f:45:30:03:
90:5c:19:bb:79:e6:e0:ea:9a:f5:d0:06:f8:3c:64:5c:9d:3b:
e2:c1:a3:43:bb:cf:25:43:a9:0b:36:1a:8b:10:d8:25:ba:29:
8f:9f:61:1a:04:e4:bb:51:c8:7a:70:1e:20:12:a5:a7:d9:ea:
b3:fb:bb:8c:41:2b:48:58:39:7d:1f:19:9e:aa:9e:fa:22:d9:
37:4f:53:24:ab:5c:80:c9:4f:ac:c4:f8:75:15:de:a8:e2:a6:
33:88:f7:04:b3:78:fc:4e:6b:4a:72:23:ae:22:8d:84:2d:97:
9d:de:7c:bf:3a:31:35:9d:8b:9e:50:3a:49:9a:a3:83:49:f2:
1e:38:1a:21:a7:f9:73:05:66:4d:be:25:00:bc:6e:4d:90:48:
ee:55:46:e7:c8:75:54:92:00:ca:32:7d:fc:5e:58:00:86:5a:
cb:76:fd:af:14:d3:c9:6b:d7:b7:fc:8f:84:93:20:3a:ef:2c:
99:89:79:8e:39:fd:37:fd:17:ee:cb:66:d8:65:11:2b:15:38:
81:f6:ff:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org