Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iIS0x4a-hJZ4n-zz98okiSvmkOo.roa
File: iIS0x4a-hJZ4n-zz98okiSvmkOo.roa (raw, json)
Hash identifier: S7+fe1bErX6pAGErkO1bQQ3f5CC0OEtgE2k+fzEe2yw=
Subject key identifier: 88:84:B4:C7:86:BE:84:96:78:9F:EC:F3:F7:CA:24:89:2B:E6:90:EA
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C8C18D9FF0546D07304895BEE3908945F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iIS0x4a-hJZ4n-zz98okiSvmkOo.roa
Signing time: Thu 21 Dec 2023 11:18:08 +0000
ROA not before: Thu 21 Dec 2023 11:18:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49716
IP address blocks: 45.88.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:18:d9:ff:05:46:d0:73:04:89:5b:ee:39:08:94:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 21 11:18:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8884b4c786be8496789fecf3f7ca24892be690ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8d:bb:3d:41:cc:38:bc:28:f4:22:c9:0e:33:
69:a1:55:12:69:90:61:70:15:ce:3f:f1:04:93:8d:
48:1f:f9:5f:90:a4:26:fa:24:fe:d5:92:e1:e3:6a:
7a:f3:26:7f:a9:20:e7:0b:b5:0d:6a:e9:2b:aa:db:
ce:67:27:63:0a:78:6b:37:c4:7a:4e:ec:25:2f:b9:
1b:42:76:d0:04:21:15:d5:9b:12:1f:9d:6a:f8:d0:
6d:52:4f:17:ad:83:41:a8:b0:c1:e6:e3:74:41:c8:
b3:42:05:7e:85:5a:9d:f0:34:25:09:fb:80:9f:9a:
bd:5f:ad:63:09:9c:30:b3:26:f1:c2:c6:51:a3:d0:
e1:b2:4b:32:75:c8:10:10:c8:cc:7a:ba:4d:05:0f:
f8:4a:d0:06:47:7a:c9:70:38:01:c9:33:f8:7a:21:
93:04:25:d2:c9:d4:03:6b:80:50:8e:e3:ea:8e:67:
c5:5c:bf:d9:61:d6:21:14:05:8a:0c:c7:a5:cc:28:
f6:97:cf:63:35:d6:56:a2:b1:e0:71:66:02:b8:ff:
37:01:d0:f9:ae:57:35:64:fe:ad:ff:81:e5:34:c9:
51:4f:00:47:5f:9a:ab:af:02:47:ec:7a:6a:f8:9a:
b4:c7:f0:3a:1a:69:cf:4c:90:46:fd:3e:bc:3a:0b:
d4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:84:B4:C7:86:BE:84:96:78:9F:EC:F3:F7:CA:24:89:2B:E6:90:EA
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iIS0x4a-hJZ4n-zz98okiSvmkOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.88.0/24
Signature Algorithm: sha256WithRSAEncryption
30:c4:73:a0:dc:f2:4e:b0:a7:fd:2b:14:ee:c6:ac:91:39:3a:
dc:6f:7c:df:fb:9b:36:2d:08:44:28:2a:15:ca:fc:7f:7a:fb:
42:94:aa:cf:2a:26:56:94:5f:f0:6e:96:92:ff:72:87:71:68:
46:58:0a:86:a7:c5:a6:10:de:fc:89:c9:c5:6f:c1:9a:62:9e:
99:10:29:65:f4:81:60:3a:7a:f7:a4:b3:4f:3b:9a:7f:e5:5b:
04:89:a0:33:ad:f2:45:6d:8e:de:dc:66:ed:de:ca:b1:98:ea:
cd:5c:e7:3c:66:9b:b6:e5:4a:8c:60:dc:cf:5e:88:21:a0:92:
87:e2:60:4d:d7:d0:f8:00:41:de:96:e8:ae:9b:c7:e3:4c:b1:
25:f9:26:d1:76:da:78:2f:d1:e8:4c:25:0d:cd:bb:46:06:d2:
6d:4e:5d:d1:d9:7f:f0:e0:74:b0:b9:c7:90:bb:cd:45:bb:31:
d6:d8:04:7d:bd:77:a7:81:38:9a:a9:b6:fc:8d:5f:3c:32:10:
85:98:bf:8b:19:03:84:6e:c4:03:09:80:6b:fd:8b:0b:3f:ac:
4d:e2:31:80:98:6a:02:87:f0:59:8c:9d:7a:cc:97:e7:91:13:
32:23:b0:68:e8:17:d5:b4:98:93:ed:82:cf:16:3c:c2:36:e9:
8d:ad:d1:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyMGNn/BUbQcwSJW+45CJRfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMxMjIxMTExODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODg0YjRjNzg2YmU4NDk2Nzg5ZmVjZjNmN2NhMjQ4OTJiZTY5MGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj427PUHMOLwo9CLJDjNpoVUSaZBh
cBXOP/EEk41IH/lfkKQm+iT+1ZLh42p68yZ/qSDnC7UNaukrqtvOZydjCnhrN8R6
TuwlL7kbQnbQBCEV1ZsSH51q+NBtUk8XrYNBqLDB5uN0QcizQgV+hVqd8DQlCfuA
n5q9X61jCZwwsybxwsZRo9DhsksydcgQEMjMerpNBQ/4StAGR3rJcDgByTP4eiGT
BCXSydQDa4BQjuPqjmfFXL/ZYdYhFAWKDMelzCj2l89jNdZWorHgcWYCuP83AdD5
rlc1ZP6t/4HlNMlRTwBHX5qrrwJH7Hpq+Jq0x/A6GmnPTJBG/T68OgvUnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIiEtMeGvoSWeJ/s8/fKJIkr5pDqMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvaUlTMHg0YS1oSlo0bi16ejk4b2tpU3Zta09vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVhYMA0G
CSqGSIb3DQEBCwUAA4IBAQAwxHOg3PJOsKf9KxTuxqyROTrcb3zf+5s2LQhEKCoV
yvx/evtClKrPKiZWlF/wbpaS/3KHcWhGWAqGp8WmEN78icnFb8GaYp6ZECll9IFg
Onr3pLNPO5p/5VsEiaAzrfJFbY7e3Gbt3sqxmOrNXOc8Zpu25UqMYNzPXoghoJKH
4mBN19D4AEHeluium8fjTLEl+SbRdtp4L9HoTCUNzbtGBtJtTl3R2X/w4HSwuceQ
u81FuzHW2AR9vXengTiaqbb8jV88MhCFmL+LGQOEbsQDCYBr/YsLP6xN4jGAmGoC
h/BZjJ16zJfnkRMyI7Bo6BfVtJiT7YLPFjzCNumNrdFS
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:13 2024 by rpki-client on console-ams.rpki-client.org