Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/yFEIi2HYvonjYTB7ERMXzAM96p8.roa
File: yFEIi2HYvonjYTB7ERMXzAM96p8.roa (raw, json)
Hash identifier: texZeZZWhas3w9PguB9QepxQT0thxunE9uMCkBRCakY=
Subject key identifier: C8:51:08:8B:61:D8:BE:89:E3:61:30:7B:11:13:17:CC:03:3D:EA:9F
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF98F8FD3B355591A4E7DA9ACCF8859
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/yFEIi2HYvonjYTB7ERMXzAM96p8.roa
Signing time: Mon 02 Jan 2023 00:55:04 +0000
ROA not before: Mon 02 Jan 2023 00:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210853
IP address blocks: 88.203.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:8f:8f:d3:b3:55:59:1a:4e:7d:a9:ac:cf:88:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c851088b61d8be89e361307b111317cc033dea9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a9:65:48:53:47:89:a3:c1:56:e4:6b:a3:5c:
c6:99:64:48:6b:37:2a:b8:3a:2e:09:1b:16:cc:26:
94:e0:00:1e:ae:b5:a7:ea:22:c7:92:35:7f:90:82:
e6:a4:9a:49:f7:b0:d2:92:17:14:82:de:3f:e2:74:
53:29:a5:8d:8e:de:e1:e5:76:1a:d7:f9:f1:e2:1b:
d5:9c:fe:6e:06:31:3a:ea:6e:97:12:22:61:0e:2b:
38:de:bd:00:29:5d:04:b3:86:35:e4:ee:80:01:42:
93:ae:54:1c:d8:41:cb:32:83:95:20:d5:43:24:19:
9e:7f:6a:da:dd:20:4c:e0:6c:58:79:5f:9d:e0:95:
39:6b:d6:ff:ec:f1:22:6a:97:3c:75:e2:4b:a4:5e:
ab:02:9a:d5:ce:24:d4:5d:69:af:a9:10:bc:9a:aa:
90:25:a8:35:90:19:be:4f:36:e8:d5:9d:a0:02:64:
99:95:0f:da:e9:cd:e4:9c:bf:c0:aa:16:00:39:91:
c5:dc:aa:80:77:ca:52:50:33:0f:b6:24:8d:a6:a8:
e0:2a:bc:d4:6b:f3:98:d8:0c:f4:75:0c:2a:3a:79:
9b:18:67:52:0e:46:51:10:11:af:ac:f6:3d:28:24:
e3:af:b9:df:2e:3d:46:31:ad:b2:ee:29:a2:36:b9:
f5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:51:08:8B:61:D8:BE:89:E3:61:30:7B:11:13:17:CC:03:3D:EA:9F
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/yFEIi2HYvonjYTB7ERMXzAM96p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.203.177.0/24
Signature Algorithm: sha256WithRSAEncryption
49:36:f8:3e:b0:36:8a:f4:90:a2:9b:ae:56:60:64:54:28:33:
db:ac:84:d6:4a:a0:c3:c0:d7:d7:17:64:60:42:20:c8:c3:65:
bb:e1:99:38:e6:dd:ac:b7:19:be:a6:a6:24:ee:87:75:52:62:
b6:00:77:86:81:c7:89:92:c9:47:c4:01:44:1a:50:11:ec:16:
3a:c3:85:e1:2f:37:ac:c1:a2:b5:26:5c:59:b7:29:0f:8b:73:
0b:52:de:dc:f1:3c:24:eb:b9:4b:50:4b:8b:04:30:15:ab:e5:
2d:be:19:f1:fe:c6:7d:9e:8d:f3:68:93:2b:2d:35:4f:fb:20:
21:2b:9c:d7:d5:fa:3c:cc:ea:64:e9:1b:44:63:d2:d0:9b:85:
01:50:05:80:c6:2d:3e:ec:d2:27:e2:76:51:af:68:27:0e:76:
22:47:3e:f5:bb:29:dd:3c:05:f9:1b:ae:33:69:c4:74:50:34:
7c:c5:15:f7:a7:07:3f:c9:04:17:cf:d2:f7:d7:f7:1a:71:6d:
82:2c:9f:6f:7c:60:68:1c:e0:a4:71:40:f5:b4:c1:f0:51:e5:
32:62:44:63:08:e0:54:b0:8b:c8:3b:c9:69:85:60:9f:41:f6:
35:ac:a9:7f:d9:3b:0f:97:de:8b:8a:c8:15:09:20:48:8a:0a:
e6:24:f0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org