Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/maDnX8rYJ5hJwbTq95E68Uq39cs.roa
File: maDnX8rYJ5hJwbTq95E68Uq39cs.roa (raw, json)
Hash identifier: Rz+RzNyquk9BRcHTf4Rua7M/+Qty1dXQgKZB2eFxa+c=
Subject key identifier: 99:A0:E7:5F:CA:D8:27:98:49:C1:B4:EA:F7:91:3A:F1:4A:B7:F5:CB
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 0192C9E00E12677AAE75C563E76900E82FC9
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/maDnX8rYJ5hJwbTq95E68Uq39cs.roa
Signing time: Sat 26 Oct 2024 17:29:16 +0000
ROA not before: Sat 26 Oct 2024 17:29:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.214.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 00:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c9:e0:0e:12:67:7a:ae:75:c5:63:e7:69:00:e8:2f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Oct 26 17:29:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99a0e75fcad8279849c1b4eaf7913af14ab7f5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f2:28:5b:ba:db:0d:2d:f7:4a:b4:c9:bb:a9:
6b:61:32:ae:1b:43:d6:21:ca:ea:26:70:29:09:0f:
fb:da:d1:09:14:94:23:1c:65:90:ed:14:24:c0:ed:
f7:19:8f:65:35:92:de:7b:05:51:46:75:75:88:9f:
76:cd:d1:31:ff:bb:ca:10:b1:99:79:cf:99:26:8d:
fa:53:9a:a7:99:f5:0d:6c:aa:35:3d:6f:7b:b2:e9:
b7:b1:f0:12:f2:84:3e:5c:6e:c9:1e:bb:ae:11:6a:
19:0f:83:5c:53:1f:1d:be:68:b8:44:e3:b8:9a:fd:
e6:5b:57:55:47:f6:cd:1f:f3:6e:16:fe:aa:56:3d:
4d:84:50:33:3c:96:cc:57:04:90:42:39:d1:6e:7d:
2b:7d:a0:4a:4a:0b:de:94:3d:b6:45:6f:bc:37:ab:
1b:cd:bd:34:8e:6f:7d:12:50:7f:7e:38:77:69:8d:
c9:a9:00:fc:d2:37:bf:56:7d:51:60:92:7f:a4:e8:
59:97:a3:2f:d0:dd:bf:a4:f0:4e:38:24:71:74:71:
aa:a6:68:31:fb:73:dc:5d:ab:a9:ac:b7:db:f6:de:
3a:15:dc:83:5c:37:80:4b:eb:aa:a0:a2:55:c8:92:
e3:5b:22:8f:ec:7a:81:72:8e:af:43:a8:ef:e2:8e:
5b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A0:E7:5F:CA:D8:27:98:49:C1:B4:EA:F7:91:3A:F1:4A:B7:F5:CB
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/maDnX8rYJ5hJwbTq95E68Uq39cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.234.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:b4:09:cf:a6:85:4f:e7:9e:96:d6:20:53:29:53:03:50:ae:
cc:ef:af:6d:5b:1a:43:90:a7:33:d9:7d:67:34:d4:33:bc:9d:
42:3b:ba:73:20:3d:94:e2:c7:83:43:09:bf:32:5a:93:11:8b:
48:91:7f:99:83:d4:f8:88:13:03:e4:55:70:7c:db:ab:86:c9:
69:e1:fe:3d:70:13:c6:28:f3:11:78:74:99:f7:f5:d5:cf:09:
fc:b2:9c:f1:8e:b2:ad:c6:d2:80:77:63:56:a1:c9:86:24:b3:
26:b9:ef:4d:10:1f:f1:82:c1:d2:06:39:7c:b1:c7:da:4d:26:
ca:1e:f7:a4:de:c6:a9:2f:69:cc:8a:b9:f9:8f:aa:13:0a:22:
7c:76:87:14:77:d8:e9:f9:75:24:f2:04:d7:f1:20:6d:f8:86:
5b:fe:bd:59:b9:03:84:a3:06:81:6b:63:8e:f0:4c:d5:8f:de:
9b:8e:fb:6c:d2:ff:85:01:e6:1e:3f:f9:0d:8c:95:46:08:d1:
05:24:4c:0d:2c:01:4c:90:43:77:e8:e0:d0:28:14:f2:ca:c5:
79:ed:06:19:8a:0e:04:ad:8f:8f:71:65:37:96:66:0c:83:37:
de:5c:cb:cc:46:fd:b4:35:e5:cb:80:60:7c:67:23:a0:10:e8:
9b:cc:8b:00
-----BEGIN CERTIFICATE-----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Generated at Wed Nov 13 02:25:53 2024 by rpki-client on console-fra.rpki-client.org