Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ueBwQKxp3LbpDg8X9CVddL4FLhs.roa
File: ueBwQKxp3LbpDg8X9CVddL4FLhs.roa (raw, json)
Hash identifier: e5nodGqgCJ41Fz6RnoQvgO/7f1nHfBA1drzQk3tI6Oo=
Subject key identifier: B9:E0:70:40:AC:69:DC:B6:E9:0E:0F:17:F4:25:5D:74:BE:05:2E:1B
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018CC8DF86468B4D27329038782A0362E888
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ueBwQKxp3LbpDg8X9CVddL4FLhs.roa
Signing time: Tue 02 Jan 2024 06:32:21 +0000
ROA not before: Tue 02 Jan 2024 06:32:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204843
IP address blocks: 188.132.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 19:26:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:86:46:8b:4d:27:32:90:38:78:2a:03:62:e8:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 06:32:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9e07040ac69dcb6e90e0f17f4255d74be052e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:85:20:c0:26:7a:ef:92:7d:9d:22:9f:a5:da:
ee:23:96:d9:f1:67:76:35:69:b7:bd:17:b1:4e:c3:
ad:b1:ca:16:4f:cd:68:f5:e9:74:42:64:e6:8b:53:
ac:15:1c:5b:fc:10:69:55:1f:99:99:c8:1b:c3:b9:
9c:8c:d2:36:1c:91:9a:5f:4a:62:52:7d:71:47:3f:
9d:e3:4b:04:eb:94:cd:d7:a7:b8:13:c2:84:8d:15:
96:7b:54:b1:d7:f1:13:f3:41:da:ef:a7:d4:ed:57:
25:4b:9a:e7:39:91:56:3c:d2:a8:52:6d:a0:fd:55:
2f:01:9d:ba:aa:a6:75:ec:02:0d:4b:fc:28:f8:95:
c8:ec:6d:5c:7f:46:e0:07:b6:96:b0:c4:c4:2d:6f:
89:35:9b:c2:ca:16:2d:33:40:5c:5a:0f:c8:68:81:
91:28:66:55:6b:7b:d0:19:93:46:76:f8:34:38:ff:
25:3c:38:8d:60:3f:41:af:81:74:72:a2:81:9e:6e:
ab:aa:46:72:32:8e:72:7a:44:23:7b:e9:80:cc:f2:
8d:bd:04:65:3e:c6:6d:fb:65:94:7d:56:cc:87:f9:
a2:1b:f7:50:7a:cf:5f:5a:10:ec:dd:48:d1:ff:03:
d8:69:ea:f5:a3:06:5c:bf:56:cc:4c:38:15:f2:c3:
c1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E0:70:40:AC:69:DC:B6:E9:0E:0F:17:F4:25:5D:74:BE:05:2E:1B
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ueBwQKxp3LbpDg8X9CVddL4FLhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ab:ef:5d:24:d9:00:18:12:5a:1a:7c:97:83:8f:b4:16:af:
08:3c:f6:47:6a:6b:48:d1:2b:c0:e0:68:d8:be:5a:77:ad:e1:
1c:c1:5a:1d:01:13:23:b1:e5:69:d2:fd:16:f3:32:df:fa:81:
2a:68:47:55:ca:13:34:a6:eb:39:2c:17:22:be:6a:88:47:fc:
91:56:c4:6b:f3:71:a3:47:44:95:a1:03:29:d7:f9:33:fa:a4:
80:a9:99:16:82:37:83:ca:f7:a6:d3:1c:a7:82:e1:b9:60:19:
7b:eb:8d:43:08:50:2d:33:cb:07:62:29:2b:f3:4c:3e:6d:9a:
b9:08:0b:52:85:56:cb:85:41:57:33:83:ff:f9:83:f8:05:93:
45:82:89:cd:94:32:ae:4d:5b:64:0b:c9:9e:d5:37:cd:cb:9f:
62:6c:f9:79:28:73:5c:7c:29:ee:05:13:5f:c6:3a:d4:3d:a3:
a0:09:66:46:db:14:d3:b8:54:ba:d0:49:c1:89:a1:40:f0:bf:
de:a5:15:d6:dc:9b:f4:05:a3:47:31:2e:dc:29:e4:f2:16:a3:
d4:78:21:8a:fd:60:b2:4b:55:e9:b7:bd:66:d9:e6:25:75:a7:
90:68:ec:a5:1d:99:ca:fa:ca:4b:d4:39:c4:79:67:74:74:c4:
8c:14:3e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org