Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/wTMOKYpau6U29Q-K_n09yGKJevM.roa
File: wTMOKYpau6U29Q-K_n09yGKJevM.roa (raw, json)
Hash identifier: z0PvataepCEKVHnX3htG/TphfiJYvn/dxNq+YY0pE30=
Subject key identifier: C1:33:0E:29:8A:5A:BB:A5:36:F5:0F:8A:FE:7D:3D:C8:62:89:7A:F3
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018767D3210721FE5D538BCFBE57F809F98E
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/wTMOKYpau6U29Q-K_n09yGKJevM.roa
Signing time: Sun 09 Apr 2023 21:01:42 +0000
ROA not before: Sun 09 Apr 2023 21:01:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199724
IP address blocks: 188.132.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Apr 2023 12:36:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:67:d3:21:07:21:fe:5d:53:8b:cf:be:57:f8:09:f9:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Apr 9 21:01:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c1330e298a5abba536f50f8afe7d3dc862897af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:31:82:04:df:0f:7b:e6:23:2b:00:26:23:50:
8c:dd:02:d6:bf:4c:7f:64:31:38:2b:43:78:3c:be:
41:b3:71:bc:8d:4d:91:71:e5:25:2c:84:7c:95:3d:
88:5f:a8:53:39:31:07:4d:3e:fe:c0:03:38:05:f2:
b4:36:47:19:26:72:20:36:62:4c:ab:47:3e:15:91:
82:99:01:02:f2:38:4f:91:82:50:82:19:9d:f7:1d:
8d:a4:c3:f3:c6:5e:ec:f6:70:60:d1:fe:c3:7f:8f:
06:52:6a:44:a1:1f:ad:73:9d:88:81:23:82:2b:41:
2a:1a:7f:66:8c:03:a6:7c:91:55:ea:71:30:5c:f6:
11:cb:e2:f2:0e:e1:62:ac:ac:a7:95:75:b0:34:d0:
c5:a9:99:9d:4b:48:ca:87:79:6f:93:08:a4:da:4f:
d4:42:b3:bf:c8:5f:20:43:f7:55:8f:42:6a:b1:e6:
4b:22:a0:86:de:f2:17:79:7d:eb:9c:f8:20:ea:16:
9e:30:84:51:02:bd:f6:2c:8e:0e:76:f6:04:d3:8f:
6a:6d:ed:c6:98:78:04:89:a3:cc:5b:9d:e1:9d:f1:
6d:7b:b4:a9:25:73:c3:46:36:21:f1:05:45:47:3d:
62:03:76:f4:b0:46:43:30:db:33:0d:92:d6:ca:50:
08:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:33:0E:29:8A:5A:BB:A5:36:F5:0F:8A:FE:7D:3D:C8:62:89:7A:F3
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/wTMOKYpau6U29Q-K_n09yGKJevM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.199.0/24
Signature Algorithm: sha256WithRSAEncryption
35:27:72:66:84:7b:81:93:f3:b0:56:13:e9:82:a4:85:69:0f:
ef:84:b0:59:c4:82:82:90:56:44:05:d5:e0:39:55:33:4a:4c:
62:84:6b:8d:e5:66:2b:58:64:f0:33:47:48:74:1a:1a:d8:ca:
82:73:24:1c:bf:41:e0:10:29:15:d6:5e:8e:ac:fc:9d:d0:cf:
0a:88:4a:fa:49:c5:99:e3:0c:7e:a9:86:76:4f:16:0f:4b:02:
79:ed:be:d4:3a:ca:ca:69:56:f0:4f:15:7e:8e:cc:e0:9a:d7:
33:84:d2:ea:aa:05:35:28:58:ff:39:86:bb:c3:fb:d8:eb:1a:
08:94:33:ba:ea:8e:97:0d:43:b7:0c:60:0e:62:74:de:aa:70:
9b:f1:a0:3c:f4:22:7a:12:80:44:e3:90:26:7e:9e:ef:b9:91:
e6:5c:86:56:87:80:e8:23:79:43:e1:00:b5:e5:e6:42:75:b3:
cd:e2:2d:95:7e:ed:bc:fd:86:55:a4:24:a8:d6:22:25:f8:0f:
83:26:49:85:2c:62:8b:90:7d:ee:c5:11:78:28:2e:af:01:d4:
7f:e9:69:4e:cc:a9:86:93:0e:44:a8:89:30:c0:30:36:e2:ed:
ba:5a:32:cb:00:f4:0c:ee:58:66:19:51:73:60:ae:80:83:02:
a3:62:76:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org