Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/AnZpoT4NsoGwANZPbpvWpmFRszw.roa
File: AnZpoT4NsoGwANZPbpvWpmFRszw.roa (raw, json)
Hash identifier: d1b3mrDcfd7286bQMNiJhI6Zqg6EbgYynuo9WvleGqY=
Subject key identifier: 02:76:69:A1:3E:0D:B2:81:B0:00:D6:4F:6E:9B:D6:A6:61:51:B3:3C
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF98E255830229A85E07CE4E32802A9
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/AnZpoT4NsoGwANZPbpvWpmFRszw.roa
Signing time: Mon 02 Jan 2023 00:55:03 +0000
ROA not before: Mon 02 Jan 2023 00:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208318
IP address blocks: 88.203.205.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:8e:25:58:30:22:9a:85:e0:7c:e4:e3:28:02:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=027669a13e0db281b000d64f6e9bd6a66151b33c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:35:65:de:6d:a3:3b:1b:e9:2a:e9:52:52:13:
5d:8b:6a:73:56:7d:4a:5a:62:90:e1:91:82:dc:b4:
f6:9b:59:bd:2b:ee:af:70:bb:5d:6a:8a:ac:3b:d0:
3f:0d:02:91:ac:d3:f0:13:5b:8a:1b:14:ee:26:4d:
7a:13:56:90:07:d0:1c:b0:ee:93:df:bc:d5:50:4a:
64:c9:be:b8:a3:1e:9b:27:e4:d4:c9:46:ab:f7:04:
36:eb:3d:20:79:17:09:f0:b3:94:08:5c:c3:60:70:
9a:d5:b8:7c:21:26:3a:d1:7f:2a:98:4e:e9:33:93:
6f:75:7a:a4:5d:e6:10:ca:18:8f:b1:a0:09:56:b7:
53:9d:7a:b0:04:bb:b4:58:a8:44:a1:13:88:91:9b:
9e:32:69:a4:a3:06:15:8f:16:15:dc:21:3d:ed:7d:
c2:c2:45:b4:d2:e2:41:a4:e9:1f:a1:7e:89:de:d3:
0c:05:0d:a6:4e:f4:5a:31:20:d1:09:62:64:82:ed:
75:4f:58:4f:90:c0:ed:97:41:cb:d0:a5:ae:c2:62:
b0:15:a8:dc:02:fa:93:5c:c8:b0:82:2a:92:05:8b:
ae:b7:3b:74:c8:63:43:ad:d1:82:d9:09:b9:c0:ed:
d8:0a:8a:12:2e:e3:ba:64:b9:23:c1:21:e4:dd:1f:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:76:69:A1:3E:0D:B2:81:B0:00:D6:4F:6E:9B:D6:A6:61:51:B3:3C
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/AnZpoT4NsoGwANZPbpvWpmFRszw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.203.205.0/24
Signature Algorithm: sha256WithRSAEncryption
87:0c:a4:e3:ee:fe:61:00:fd:97:78:08:4c:f6:07:9a:5b:e8:
0b:9d:be:b0:dc:14:87:71:b5:9f:a5:8e:47:0c:54:57:4f:0a:
f9:6a:a1:ce:c9:b5:33:1a:59:31:3c:b4:91:89:d6:4b:6e:55:
96:04:67:d9:08:1d:7b:a8:c0:3c:d1:55:7c:bb:59:b1:cc:c6:
9f:bf:89:b0:80:0a:e6:e8:40:e6:6f:69:14:32:21:64:91:44:
e9:6b:5c:a3:d9:d1:df:e1:8d:17:26:12:21:0c:7e:8e:60:00:
1d:0b:eb:32:89:a9:d7:04:dc:70:b9:af:45:6c:a0:88:7c:28:
cd:07:5d:bf:0a:7e:d5:f8:b0:49:01:5c:47:48:00:9e:a1:82:
15:61:e8:22:7c:4e:9b:d1:1d:fe:c9:4d:e3:22:28:48:ea:51:
ee:33:70:69:63:fd:b9:e5:87:02:a9:56:a7:47:4a:4c:76:0d:
01:b8:9c:20:a0:eb:62:39:fb:e7:f6:18:a0:f6:52:67:14:5f:
0b:9d:a3:ad:18:f7:5a:13:59:83:e7:ed:ea:cd:27:99:03:1b:
95:b4:e5:19:db:ac:ef:ea:39:25:6a:93:72:31:0b:88:9e:bb:
df:56:a4:6d:e9:3a:4f:2a:ca:37:11:50:60:c5:49:1b:c8:b0:
c4:1c:36:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:00 2024 by rpki-client on console-fra.rpki-client.org