Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xVwrC90o2fjR17aMzyUPxC4m_aI.roa
File: xVwrC90o2fjR17aMzyUPxC4m_aI.roa (raw, json)
Hash identifier: uIJmaXGOdK7SPqYnYlq8CIHrOuuQN5qobWKtMFiLeOY=
Subject key identifier: C5:5C:2B:0B:DD:28:D9:F8:D1:D7:B6:8C:CF:25:0F:C4:2E:26:FD:A2
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018A51EC71FD3A097A103659695CE94984CB
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xVwrC90o2fjR17aMzyUPxC4m_aI.roa
Signing time: Fri 01 Sep 2023 18:06:04 +0000
ROA not before: Fri 01 Sep 2023 18:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56582
IP address blocks: 188.132.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:51:ec:71:fd:3a:09:7a:10:36:59:69:5c:e9:49:84:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Sep 1 18:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c55c2b0bdd28d9f8d1d7b68ccf250fc42e26fda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:cf:53:d9:20:38:0b:68:9f:17:a7:82:1a:
d8:5f:6f:93:7e:42:e7:90:43:bd:89:0e:f3:c3:4c:
bb:05:6e:15:ec:85:34:56:63:ba:17:2e:1d:79:8b:
9a:4e:3a:b4:1a:65:52:b5:d4:b0:73:95:c0:2c:df:
3c:ca:28:2f:bb:8f:b7:4c:32:57:bf:1c:92:88:4c:
72:9c:ea:6f:1e:90:5e:12:41:2f:73:4d:bc:91:1a:
9a:8d:22:97:5e:bd:4a:f8:6c:d1:78:50:c7:5d:83:
8d:52:24:18:83:db:86:05:fc:55:0e:95:73:c3:df:
83:26:d3:1e:bd:7c:77:55:8a:b7:75:2d:7b:62:1a:
47:b7:61:2c:ff:4c:b7:8c:3c:a3:48:1e:7a:54:ea:
6e:2b:0d:a9:e4:f9:be:1f:3c:15:1b:5e:8d:75:c1:
aa:6a:32:a6:0e:81:44:fe:73:44:5d:5c:b5:a8:5c:
90:8e:01:f2:ee:69:d8:cd:3a:ce:c9:7c:d7:28:f2:
91:3b:cd:2c:72:53:ba:0f:d8:78:d0:18:16:9e:b3:
fe:9e:4a:a4:ac:32:5a:e4:66:41:28:aa:8b:f0:da:
0f:97:96:da:d9:b8:2f:31:d0:1e:03:81:27:9e:78:
b5:0f:bd:db:cd:7a:71:32:ab:f5:94:86:49:3e:86:
f2:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:5C:2B:0B:DD:28:D9:F8:D1:D7:B6:8C:CF:25:0F:C4:2E:26:FD:A2
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xVwrC90o2fjR17aMzyUPxC4m_aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.132.128.0/24
Signature Algorithm: sha256WithRSAEncryption
97:87:2f:2b:f6:3a:b5:76:f2:8a:74:fd:ad:b7:b1:ac:b7:b1:
d3:f0:e6:21:ef:d9:ff:b5:b4:e1:c9:87:d2:73:22:be:16:16:
bb:d1:df:3b:05:6e:da:21:f8:69:92:51:e9:da:a0:27:7c:89:
95:9b:b4:31:49:36:09:49:5a:1e:b3:15:2f:d0:fa:33:d9:9b:
5a:66:16:25:fd:b3:5f:71:ce:6c:8c:66:19:95:e3:a2:f3:2c:
f3:25:f0:2c:1c:b4:11:0d:66:f0:7d:75:f0:aa:07:de:45:be:
18:2e:f2:cf:57:0d:54:d7:85:92:5c:f6:de:ca:40:b6:e0:cf:
4e:d8:1a:60:cc:bc:db:8d:9d:40:24:3a:37:71:2f:c9:d1:c3:
70:f1:1a:8b:dc:44:71:15:b9:4a:c8:15:80:16:ea:2a:95:e7:
f0:d5:c2:02:30:7a:ae:93:f1:5f:c0:20:32:b2:a6:09:48:3c:
e6:dd:b6:65:88:b6:55:f0:f9:1e:5b:17:2e:f9:bd:33:04:e7:
30:5d:75:2e:13:b9:e5:99:e6:e2:d8:56:fe:92:75:a3:28:a4:
e8:0e:68:84:b9:2c:fb:f9:91:cb:b3:e7:9e:3a:9a:f0:06:32:
ae:3b:a9:a8:bd:93:c2:a1:a2:32:6a:d3:9b:73:5f:ba:c6:05:
2e:e8:81:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org