Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/YmUIMSgTwojb0jDeHokjChzB1V0.roa
File: YmUIMSgTwojb0jDeHokjChzB1V0.roa (raw, json)
Hash identifier: bzJtMECIk3Flc7qhEBhvQ3cCQizPHGtUz4asmxvHeAw=
Subject key identifier: 62:65:08:31:28:13:C2:88:DB:D2:30:DE:1E:89:23:0A:1C:C1:D5:5D
Certificate issuer: /CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc
Certificate serial: 01874EA16C9305F4AAEAF828A85259DE14F5
Authority key identifier: 4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/YmUIMSgTwojb0jDeHokjChzB1V0.roa
Signing time: Tue 04 Apr 2023 23:36:54 +0000
ROA not before: Tue 04 Apr 2023 23:36:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 132.76.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 14:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4e:a1:6c:93:05:f4:aa:ea:f8:28:a8:52:59:de:14:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32b9eff9f02c7cabe1995a2db509d8258d35fc
Validity
Not Before: Apr 4 23:36:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=626508312813c288dbd230de1e89230a1cc1d55d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ac:6d:d1:1e:05:0b:57:8e:09:ff:ba:ae:ff:
48:9f:48:eb:79:d6:5d:71:a3:cc:4e:bf:08:dd:9f:
9a:ce:98:b7:a3:cc:bf:e5:20:92:2e:d9:3e:60:99:
2e:05:87:b4:6a:fa:4d:c1:61:78:c5:39:89:18:ea:
8a:61:ab:31:9d:bf:d7:29:24:b2:62:ca:45:7e:50:
5a:14:c9:80:60:90:88:3a:e8:cd:99:5a:99:13:f8:
48:72:84:0e:74:90:a1:4a:3c:26:0e:6a:28:ee:eb:
0f:3f:f6:6c:b4:df:4c:90:d3:20:b1:70:4f:2f:90:
8b:a8:25:39:14:44:0f:a5:5b:0d:37:4b:c5:8c:67:
4d:2d:dc:89:4b:2a:10:7e:0f:1e:b2:ee:a6:25:9e:
eb:b5:bc:7e:c7:9a:09:45:52:39:33:0a:4f:0f:a0:
49:61:bc:fa:75:1c:4b:d9:fe:3b:a7:e1:21:6e:0c:
0d:f3:5b:cc:31:6a:53:c2:6c:74:f8:f2:dc:2b:74:
7b:29:b6:e5:b5:61:a9:95:43:cb:14:b8:82:da:f0:
18:91:58:78:66:9c:6d:b6:7b:bf:7c:74:bb:bb:59:
ce:9d:16:a5:5f:5d:aa:59:b7:9e:93:5e:49:99:5a:
da:bd:95:c1:6f:60:89:0d:da:56:22:c8:6d:ec:7d:
0c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:65:08:31:28:13:C2:88:DB:D2:30:DE:1E:89:23:0A:1C:C1:D5:5D
X509v3 Authority Key Identifier:
keyid:4F:32:B9:EF:F9:F0:2C:7C:AB:E1:99:5A:2D:B5:09:D8:25:8D:35:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/YmUIMSgTwojb0jDeHokjChzB1V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/172c4e-6f5d-475e-9be9-c4073c13ff7c/1/TzK57_nwLHyr4ZlaLbUJ2CWNNfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.76.150.0/24
Signature Algorithm: sha256WithRSAEncryption
35:8a:4f:fa:4c:d1:c3:aa:6b:6c:4d:40:89:af:72:dc:c0:ad:
cb:f9:b0:7b:dd:f3:43:22:ca:bd:c0:69:01:70:df:e9:c8:1b:
ee:99:67:a4:5f:ef:d5:fa:83:ed:82:ee:d4:c0:f4:03:32:04:
c1:ea:20:f8:a0:57:91:05:52:64:83:2b:02:d5:e2:63:51:04:
0b:ee:ef:d9:9b:12:9b:08:67:74:c4:6e:93:e8:d4:72:b8:b1:
e0:7f:64:5b:f1:39:ae:1d:e2:ae:f8:6f:fc:dd:dc:d7:8a:03:
cc:cf:ef:25:39:8b:12:0e:d6:c7:22:d7:e9:4e:4d:27:a6:5a:
b7:6f:43:dc:5a:ba:2f:60:13:e4:9b:50:d9:a3:69:3b:f0:c4:
8f:46:5c:bb:5b:fb:ae:32:8c:90:b0:0f:47:7f:dc:4f:e7:2e:
3f:0d:8b:b1:80:02:5d:89:4e:8b:eb:eb:bd:2f:3b:50:26:a2:
81:ad:6c:11:34:36:03:4c:6d:1a:38:e1:a9:91:b2:b0:f7:70:
6e:f7:8c:ea:31:b9:ee:5a:0b:78:8f:8f:d7:36:b3:f3:6c:ef:
d8:3b:2e:2d:ef:26:78:72:be:3a:cb:db:ab:9d:ac:4b:bd:2e:
18:c1:6a:33:8e:1b:96:7e:10:28:70:5f:58:b0:94:e2:51:af:
d4:5c:d2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:50 2024 by rpki-client on console-fra.rpki-client.org