Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/jznYi6BvLAFA_lBHi-pzKw8S0Ik.roa
File: jznYi6BvLAFA_lBHi-pzKw8S0Ik.roa (raw, json)
Hash identifier: C4iRTH4LOAyGlbvdRaGlvDKNIe2Jweu3cKYYcjtt/4w=
Subject key identifier: 8F:39:D8:8B:A0:6F:2C:01:40:FE:50:47:8B:EA:73:2B:0F:12:D0:89
Certificate issuer: /CN=77347e168d69658545374e6a0b68d24b97fcd006
Certificate serial: 018A5FD5D7DC199918CC54C52D9C9AF9D478
Authority key identifier: 77:34:7E:16:8D:69:65:85:45:37:4E:6A:0B:68:D2:4B:97:FC:D0:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzR-Fo1pZYVFN05qC2jSS5f80AY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/jznYi6BvLAFA_lBHi-pzKw8S0Ik.roa
Signing time: Mon 04 Sep 2023 10:56:04 +0000
ROA not before: Mon 04 Sep 2023 10:56:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61275
IP address blocks: 88.84.48.0/20 maxlen: 20
185.9.90.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:d5:d7:dc:19:99:18:cc:54:c5:2d:9c:9a:f9:d4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77347e168d69658545374e6a0b68d24b97fcd006
Validity
Not Before: Sep 4 10:56:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f39d88ba06f2c0140fe50478bea732b0f12d089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a7:76:16:81:53:0d:73:1a:ed:a3:b1:4a:fa:
64:07:fc:24:fe:b3:26:64:72:bb:1a:bb:f8:e1:1c:
ce:1a:38:b0:a5:d3:1e:e3:81:ba:e1:5c:90:2f:eb:
8f:fb:02:42:df:40:37:6f:63:a8:e5:24:56:b4:27:
e0:0d:33:ba:87:67:4e:20:a3:7e:c2:a4:2b:9a:8f:
e9:03:b7:26:f9:85:c0:f3:e2:1c:9f:24:74:79:d4:
09:9b:01:16:e4:85:bf:0a:2c:c7:07:a6:d8:81:cd:
1f:0f:82:a8:09:77:88:3c:42:97:e0:b2:f8:19:70:
b7:df:8a:f4:27:88:a6:27:fa:a7:c9:89:0d:5a:3f:
e6:43:a1:dc:9a:09:f5:6e:9c:73:4b:1f:cb:a0:de:
e1:d1:7b:dc:a9:ad:bc:59:56:36:d3:52:3d:54:74:
d2:07:14:3a:39:59:bf:27:48:47:ee:b1:7d:51:bd:
41:8a:d9:ab:56:99:06:4f:4f:5b:4d:67:b9:be:de:
13:89:e1:4b:90:fb:07:da:17:4f:69:c5:df:24:41:
61:35:90:d5:9c:e9:da:e7:13:98:bd:a7:3e:6e:dc:
ae:c0:c4:1f:26:dd:16:3b:f6:6a:f5:aa:4d:73:de:
62:5a:de:e5:b3:de:fb:ea:f7:25:f3:40:73:ba:cb:
cf:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:39:D8:8B:A0:6F:2C:01:40:FE:50:47:8B:EA:73:2B:0F:12:D0:89
X509v3 Authority Key Identifier:
keyid:77:34:7E:16:8D:69:65:85:45:37:4E:6A:0B:68:D2:4B:97:FC:D0:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzR-Fo1pZYVFN05qC2jSS5f80AY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/jznYi6BvLAFA_lBHi-pzKw8S0Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/26a0a3-22f1-4ca1-a6cd-67ebbc8c6862/1/dzR-Fo1pZYVFN05qC2jSS5f80AY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.84.48.0/20
185.9.90.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:62:76:65:fa:af:d6:b3:32:42:de:4d:05:52:f2:15:df:f6:
bc:40:f5:11:d8:64:38:8d:f7:f8:b0:ab:69:49:f0:d0:09:df:
1b:93:4b:eb:e3:6f:f9:43:23:5b:8f:7f:c6:4b:8b:c3:e5:a1:
c1:4b:80:ca:d7:b6:32:42:81:7b:9c:ac:da:44:ce:d4:46:76:
c1:23:8f:c8:a5:1b:84:1f:c8:7f:e2:6f:0c:bc:9f:ee:a4:b2:
9b:ee:bd:87:a6:34:f0:4b:1c:65:cd:fb:cc:fc:fe:aa:2f:f2:
ae:31:08:da:b5:a0:ea:a5:56:74:33:94:83:cd:13:9b:92:0b:
24:eb:65:cb:ae:cb:70:a9:49:17:20:b1:7c:56:4a:4c:66:6c:
20:aa:a4:aa:06:80:8a:14:b2:81:22:0d:76:bd:4a:8c:cc:6b:
a0:e3:ee:80:9c:1c:3a:01:9a:f0:a4:65:a3:01:bd:08:3c:55:
21:2d:26:11:4b:8d:26:0c:3a:61:f3:f2:be:73:ab:63:ae:b6:
6c:ef:21:f0:07:dc:7d:91:0e:1b:0e:64:af:86:3e:fe:33:1b:
81:cb:8a:97:3c:a8:7b:c4:bc:68:41:d9:5e:95:1c:d3:d2:bc:
1a:b5:62:a4:e3:e4:28:9f:5e:30:05:81:6b:a5:ae:5e:01:01:
82:1b:d0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:28 2024 by rpki-client on console-fra.rpki-client.org