Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/3E3UelsqR7Mph08JMf9q9qskXTk.roa
File: 3E3UelsqR7Mph08JMf9q9qskXTk.roa (raw, json)
Hash identifier: NvNgJPhtBkFD2QtR4v1dECLmjiVGHR3GDoZgGN6LLTk=
Subject key identifier: DC:4D:D4:7A:5B:2A:47:B3:29:87:4F:09:31:FF:6A:F6:AB:24:5D:39
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0189CD56FFCD7EA2D34A905BDDDB70668397
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/3E3UelsqR7Mph08JMf9q9qskXTk.roa
Signing time: Mon 07 Aug 2023 00:12:58 +0000
ROA not before: Mon 07 Aug 2023 00:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.214.232.0/23 maxlen: 23
188.214.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 16:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cd:56:ff:cd:7e:a2:d3:4a:90:5b:dd:db:70:66:83:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Aug 7 00:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc4dd47a5b2a47b329874f0931ff6af6ab245d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:19:b0:90:05:62:00:f1:78:9f:3b:39:c4:54:
d4:0e:a4:bc:88:9c:61:5d:9f:38:6d:9c:c0:26:66:
cb:53:c4:53:0f:d8:ca:e8:ba:30:c9:81:f0:f3:e0:
9d:20:b3:1f:a7:73:68:9e:46:e9:0a:78:1f:5d:4c:
0f:d5:e3:97:e0:05:81:70:c2:71:fd:2b:b0:eb:63:
87:47:cb:64:83:8d:d9:4b:6a:32:33:da:8c:7e:b9:
7f:45:80:3c:d7:4b:8b:d3:f9:17:f5:df:c1:58:b1:
be:d6:f6:3a:eb:c7:bc:0d:55:3d:5a:34:f7:90:3a:
fa:98:5b:09:6a:cc:68:da:0b:a3:f7:0f:53:08:05:
04:5a:7a:e3:73:e2:6d:c0:09:02:ce:df:a0:01:eb:
92:7c:af:8b:0f:89:a7:d7:36:ba:ed:12:bc:75:77:
24:47:a2:67:c3:eb:3d:e6:fd:99:ba:5f:8c:ac:ae:
33:d5:12:c8:c6:e8:8d:b8:54:36:6b:32:a2:94:ee:
11:e3:bf:da:10:07:33:cf:2a:63:40:b0:cb:ee:e5:
1a:36:d5:90:57:fe:61:be:65:ce:e1:1a:8a:70:20:
36:1a:d1:35:b5:5e:f4:53:30:e2:33:72:7f:da:27:
bd:3f:13:ba:71:79:1e:82:ee:94:9f:37:be:2f:c9:
fa:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:4D:D4:7A:5B:2A:47:B3:29:87:4F:09:31:FF:6A:F6:AB:24:5D:39
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/3E3UelsqR7Mph08JMf9q9qskXTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.232.0/22
Signature Algorithm: sha256WithRSAEncryption
29:f4:49:bb:2d:08:5d:18:24:86:a3:88:a7:1b:40:73:39:c0:
73:96:5f:8a:8c:f9:0c:ec:80:d5:59:a9:ef:af:b5:05:41:8f:
4f:a1:6c:eb:9e:31:77:02:f4:65:59:63:f4:d8:9f:7e:00:1a:
1e:88:a4:44:34:4b:c0:e9:a5:46:05:ea:6d:cd:19:52:60:83:
50:7e:3d:d8:ce:a0:63:92:66:05:52:b9:59:0e:ce:fa:4a:84:
6d:97:6f:7f:ba:38:5f:cb:d4:7e:dd:6a:7b:e3:c5:67:99:6e:
9b:7e:cd:a0:87:48:0a:ae:37:cc:63:9a:e2:ca:09:8b:4e:76:
72:2b:34:3b:96:8c:e4:09:f1:27:14:48:4e:c5:c0:99:1d:9d:
2f:8c:78:e6:63:b3:32:73:53:3a:cb:1e:1c:30:44:04:76:bf:
61:c7:c9:27:74:65:4b:6c:77:31:46:18:bc:bd:64:7f:7b:d0:
57:ec:51:af:6d:85:51:ed:44:0a:fd:e8:76:9b:c2:f5:26:df:
32:ce:e0:b4:ce:ea:6d:81:b7:db:c6:56:04:60:d0:19:9d:c3:
92:87:e6:b5:94:18:f9:29:69:e3:e8:95:09:27:2b:47:9a:59:
77:80:40:ab:a6:c9:fa:2b:c2:9f:9c:b2:55:dd:11:79:80:9d:
88:20:77:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:23 2024 by rpki-client on console-fra.rpki-client.org