Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/YX9tDGEfjy1Ey1O496O6Ruc0bTs.roa
File: YX9tDGEfjy1Ey1O496O6Ruc0bTs.roa (raw, json)
Hash identifier: 7sWTM0GxBW71l5+1MxE9Gq4euAxsnJknqbvWHpb5fbw=
Subject key identifier: 61:7F:6D:0C:61:1F:8F:2D:44:CB:53:B8:F7:A3:BA:46:E7:34:6D:3B
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 018CC94C36EF5114323AB0B1613F386C5309
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/YX9tDGEfjy1Ey1O496O6Ruc0bTs.roa
Signing time: Tue 02 Jan 2024 08:31:04 +0000
ROA not before: Tue 02 Jan 2024 08:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 272825
IP address blocks: 88.135.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 20:14:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:36:ef:51:14:32:3a:b0:b1:61:3f:38:6c:53:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Jan 2 08:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=617f6d0c611f8f2d44cb53b8f7a3ba46e7346d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:08:80:dd:a3:ef:de:8c:cf:40:36:cf:18:d8:
cc:9c:e1:d9:c7:bf:9f:f2:11:a8:09:cc:9d:15:e7:
f6:c5:f1:9a:40:f3:30:43:6d:09:d9:f2:04:ee:62:
82:ff:b0:ab:04:ea:6e:c2:73:64:79:c5:ec:f1:11:
cc:40:16:f5:48:67:37:a6:6e:aa:48:6c:25:57:e0:
ba:ad:50:24:10:9e:07:f9:91:40:1b:6d:97:2c:a8:
a5:3b:b9:2a:9b:cd:4c:4e:4a:12:cf:fd:a3:48:fb:
94:7f:5a:75:d6:46:1f:e6:6b:ba:ab:f1:d2:6d:c3:
3a:1c:8a:58:9e:e7:fb:e2:09:1c:48:71:fe:9c:f8:
bd:c9:7c:79:1b:ad:7f:23:39:12:32:ca:04:1b:ba:
4d:33:2d:8a:1c:da:ed:aa:07:d6:4c:2f:cf:8d:82:
70:6d:e3:5c:84:04:17:eb:d9:a0:f0:5b:ad:b1:d0:
ad:b4:7a:14:87:2b:1c:8e:21:06:a8:99:9d:72:a2:
e0:b3:81:e0:43:f4:a2:d0:5d:a1:d2:99:52:fc:4d:
33:fa:bb:ec:a5:41:e4:83:6d:10:ec:58:f1:4f:c1:
78:e7:cc:8a:67:8b:03:34:a3:a7:a2:f9:40:9f:4b:
61:8c:9d:56:bc:ee:39:56:67:57:00:0f:ea:06:2c:
6e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:7F:6D:0C:61:1F:8F:2D:44:CB:53:B8:F7:A3:BA:46:E7:34:6D:3B
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/YX9tDGEfjy1Ey1O496O6Ruc0bTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.69.0/24
Signature Algorithm: sha256WithRSAEncryption
88:cc:3a:32:28:de:c8:42:cd:d6:e8:a7:f6:c2:fc:33:e1:05:
b1:10:6a:99:18:42:f5:1f:d7:07:9f:de:c0:09:36:b2:e0:f3:
c4:c1:61:c4:76:ad:e7:7d:cf:c6:36:88:1a:f8:42:51:1b:f5:
39:6c:4d:06:b3:69:21:6c:ca:3e:71:40:da:3d:e2:78:a1:b3:
81:d7:7b:c9:2e:a0:15:33:e2:ee:10:0e:e6:34:99:41:b3:fe:
7e:e9:40:12:69:0b:09:e7:b9:19:1c:5d:21:54:07:5a:69:4c:
cf:99:84:c8:1e:b8:ed:80:3f:d7:9b:9d:9a:ea:6e:95:1b:2c:
b0:cf:e0:0f:91:aa:73:25:e8:a4:fb:25:a5:ed:9e:8f:fa:06:
5c:37:cd:b9:ad:89:0a:c9:c8:69:e5:c8:1d:f2:62:43:c1:b4:
7a:bb:79:33:55:db:05:bb:6f:ab:db:ac:e9:92:d2:a9:a1:7c:
29:b9:68:fe:64:6f:9d:d6:9a:22:c8:7b:d9:b4:d1:15:5d:61:
06:af:6a:e9:74:cc:3c:0c:d6:77:5f:df:9c:20:68:6f:fe:08:
f9:7f:8f:68:7d:6b:04:4f:bf:6d:8d:76:0d:a1:15:d7:1a:30:
be:c6:d2:9b:b3:fe:27:61:51:5e:6c:1d:24:14:18:e1:fc:09:
88:4b:1a:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 23:20:48 2024 by rpki-client on console-ams.rpki-client.org