Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/_aOr7XoNr3iVo_c63pOttZwbxnk.roa
File: _aOr7XoNr3iVo_c63pOttZwbxnk.roa (raw, json)
Hash identifier: cJIAB+3l0VzS/39BQ013TH+XAqWSSp0jC5daL6LX0xs=
Subject key identifier: FD:A3:AB:ED:7A:0D:AF:78:95:A3:F7:3A:DE:93:AD:B5:9C:1B:C6:79
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0190739231EF858A4DACE5234B91091F4277
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/_aOr7XoNr3iVo_c63pOttZwbxnk.roa
Signing time: Tue 02 Jul 2024 13:11:18 +0000
ROA not before: Tue 02 Jul 2024 13:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204174
IP address blocks: 45.88.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 08:19:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:92:31:ef:85:8a:4d:ac:e5:23:4b:91:09:1f:42:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 2 13:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fda3abed7a0daf7895a3f73ade93adb59c1bc679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:07:f6:d7:cd:a8:99:63:35:32:77:b0:b2:a8:
5d:e7:52:6b:29:3b:c6:e2:0b:09:d6:94:3a:13:82:
52:71:3c:df:c4:99:02:80:56:96:90:20:e6:96:4e:
1d:96:71:d8:81:ad:c2:5f:df:e8:77:67:6c:14:fb:
66:bc:be:9b:87:2f:00:43:02:a1:a5:8e:9a:de:f9:
f5:bf:4f:f6:09:9e:c6:41:05:d7:bb:23:26:47:54:
93:d5:32:21:61:8e:d5:ce:8d:7f:5a:25:4e:3d:d4:
28:ce:79:d2:e2:f9:ec:bd:f7:fc:d9:6f:a1:4d:78:
79:c2:77:34:01:92:33:89:5d:9f:63:41:32:31:3e:
91:dc:5f:27:d9:7b:d2:d7:83:c5:74:51:48:d3:34:
98:cc:15:57:01:e3:e9:da:ca:4c:60:b1:af:90:6c:
ee:42:e4:36:af:08:1f:d6:3f:14:e4:d9:a8:83:ae:
47:d1:32:6b:cf:04:26:25:65:47:c1:61:39:03:7d:
1c:ae:94:2d:79:ca:20:aa:88:75:65:f7:f3:1d:71:
f3:c1:80:1e:92:76:13:50:15:e4:af:7c:1e:73:4e:
6e:ff:48:2f:17:f9:cc:62:ea:5b:c2:c7:05:15:37:
f8:fb:56:7d:e7:65:e8:3f:af:81:ad:ca:49:39:09:
ff:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A3:AB:ED:7A:0D:AF:78:95:A3:F7:3A:DE:93:AD:B5:9C:1B:C6:79
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/_aOr7XoNr3iVo_c63pOttZwbxnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.88.0/24
Signature Algorithm: sha256WithRSAEncryption
02:fd:22:7a:fb:ad:99:d6:49:a1:2a:cc:8f:f5:06:59:a7:ba:
41:7d:27:a1:9a:92:fd:ad:7a:54:61:70:0e:b9:ff:d3:43:86:
93:e9:fc:b7:cb:62:05:ef:49:74:d7:59:60:42:c8:b2:4b:c0:
c4:05:d3:5f:38:d9:eb:d1:c8:ce:69:e5:be:fc:5b:c8:60:07:
3b:e2:10:de:34:b6:e7:f2:ea:70:17:5c:0d:96:48:b4:45:e3:
f4:2a:a1:d9:c0:98:f5:16:ac:69:5f:14:e2:78:f7:5a:dd:b1:
f1:45:1e:5a:ee:59:25:cb:54:66:51:b3:d0:f4:6c:6c:68:bc:
57:5a:7a:57:26:eb:1d:ce:03:88:8e:70:86:63:3f:72:1c:cf:
07:be:4d:1a:85:35:4c:01:4b:e7:62:c4:a6:30:ce:7a:5a:c0:
ab:50:2f:6d:1f:b1:d0:17:5c:e5:7f:61:b5:cf:a5:42:d3:8c:
08:11:ba:ff:99:ac:da:c3:42:84:3b:6f:81:8d:d5:3d:4a:20:
cc:a9:12:f6:36:cc:81:50:98:60:3c:61:3d:ec:48:7a:20:4b:
32:ff:3b:52:7d:91:2a:ae:65:a5:37:d0:64:1a:c1:30:ac:6c:
a9:85:4d:82:09:63:f7:e6:c8:8f:4d:57:79:5e:9b:b7:73:56:
a0:ff:5b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 10:22:47 2024 by rpki-client on console-fra.rpki-client.org