Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/lIdpvyTrrHgHNylTE7_yfCPubwA.roa
File: lIdpvyTrrHgHNylTE7_yfCPubwA.roa (raw, json)
Hash identifier: C2P/aONNTXJfEjJgRlpKOCCd+bqAIv3lnR/WzmMaheI=
Subject key identifier: 94:87:69:BF:24:EB:AC:78:07:37:29:53:13:BF:F2:7C:23:EE:6F:00
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 018C3F4C9DB7B505D6280B03F5C286FEDE09
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/lIdpvyTrrHgHNylTE7_yfCPubwA.roa
Signing time: Wed 06 Dec 2023 13:23:54 +0000
ROA not before: Wed 06 Dec 2023 13:23:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 88.218.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:4c:9d:b7:b5:05:d6:28:0b:03:f5:c2:86:fe:de:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Dec 6 13:23:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=948769bf24ebac780737295313bff27c23ee6f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7a:5b:46:6d:62:ee:61:9c:d3:7b:d9:48:7e:
dc:fd:a0:52:a3:68:68:65:4f:06:f7:8d:0f:1c:ca:
07:97:5b:4d:d6:48:f2:d7:7c:ac:e6:4b:c9:24:21:
48:e8:de:21:61:5c:f9:47:f4:fd:62:a2:a4:2a:c6:
8d:f9:91:83:73:9c:89:3e:9f:89:50:af:8a:88:de:
cb:2c:73:27:a0:31:53:f3:05:56:c4:64:6c:e4:f9:
b5:fe:21:03:62:4f:e7:82:42:a6:1c:f4:da:ba:d6:
8f:23:4e:34:ad:cd:6d:6f:17:94:00:71:47:fe:d5:
6b:5c:c1:43:9a:ae:31:b4:5a:48:86:b7:e2:e9:63:
e5:1f:cf:1e:47:4d:2a:3a:e2:22:e8:9b:3f:19:34:
f8:14:52:d7:65:d4:81:e6:96:c2:6a:f6:db:0c:44:
d5:42:6c:9b:2e:d5:cf:f4:65:d5:83:fc:e8:6a:b3:
e9:2a:7b:fb:1d:ee:df:25:d9:53:45:91:32:b9:a5:
32:e6:4b:c3:b8:8a:72:07:e9:9c:46:c4:1e:83:fe:
49:ee:3e:2c:67:04:93:6b:61:b4:11:d6:c7:98:22:
d6:b9:ae:18:19:46:83:01:a5:47:9f:18:13:8e:dd:
56:e4:f3:d7:9c:9e:d1:63:6e:91:34:df:64:86:32:
0e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:87:69:BF:24:EB:AC:78:07:37:29:53:13:BF:F2:7C:23:EE:6F:00
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/lIdpvyTrrHgHNylTE7_yfCPubwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.104.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ba:97:10:66:cd:d0:d2:24:e3:0f:8f:72:ca:1c:23:b2:9b:
f9:9e:db:14:b8:46:4f:a8:00:52:86:3c:96:5a:48:cb:8c:2f:
50:da:eb:24:e0:89:5f:4d:53:7d:91:9f:09:c5:58:b4:fc:93:
83:6a:96:8f:1c:a5:d5:dc:f2:3b:59:aa:80:60:4d:f6:a0:ee:
a5:5b:f4:44:0c:2c:a0:ee:5d:63:f9:5f:b9:7f:d7:a4:30:67:
52:74:60:47:76:d6:ee:27:65:5d:78:5d:fe:d8:a8:5d:9b:28:
98:89:f8:6e:b9:e5:cc:ed:9f:87:8f:46:81:28:31:d9:3f:ca:
5d:91:e7:eb:fb:52:22:e1:c9:db:d2:e8:d6:56:2f:0e:4c:fa:
f8:84:f4:e3:fa:37:6c:7d:bb:53:98:2f:78:79:81:88:0a:e9:
e6:af:9a:9d:02:6e:73:37:84:5e:11:89:f4:3c:ee:90:47:11:
0f:c1:8d:06:95:a0:55:74:0d:7e:74:89:11:a4:72:8b:1b:ed:
d7:c2:81:0a:fd:ce:b4:75:36:d6:0c:ea:e8:c6:b8:f5:32:8d:
fb:53:3d:20:42:10:15:fd:77:15:57:2a:3e:da:02:4d:09:9f:
f1:97:c8:7d:f0:5a:92:8e:19:01:9a:f2:2a:08:f8:c4:d4:76:
42:78:9d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:43 2024 by rpki-client on console-ams.rpki-client.org