Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/rrtBitIeSDNZH5Y1Q99Jr3QrdpU.roa
File: rrtBitIeSDNZH5Y1Q99Jr3QrdpU.roa (raw, json)
Hash identifier: vpJDmLWjqCgiHzaCyAhp6fKStDfws+3/oSypRWoq5cc=
Subject key identifier: AE:BB:41:8A:D2:1E:48:33:59:1F:96:35:43:DF:49:AF:74:2B:76:95
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 018AF031EB36DDA26EC854F070F250022AF3
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/rrtBitIeSDNZH5Y1Q99Jr3QrdpU.roa
Signing time: Mon 02 Oct 2023 11:41:57 +0000
ROA not before: Mon 02 Oct 2023 11:41:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 88.218.105.0/24 maxlen: 24
88.218.104.0/24 maxlen: 24
45.135.139.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:31:eb:36:dd:a2:6e:c8:54:f0:70:f2:50:02:2a:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Oct 2 11:41:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aebb418ad21e4833591f963543df49af742b7695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:39:90:c1:61:b5:13:a5:1e:4b:d0:16:88:e2:
82:94:1a:e7:6a:86:bf:c8:19:a1:b7:b2:e4:49:04:
22:e8:f9:84:89:12:d4:43:56:59:13:72:4e:4c:22:
3d:2c:e2:47:2d:84:d5:99:33:a7:08:61:28:4c:a1:
18:ce:f4:76:1d:7c:7a:9d:03:c6:7e:c6:10:5b:19:
ba:af:e3:9d:37:fd:a3:da:04:26:dd:d5:11:ca:bf:
25:4d:b9:f7:c3:d6:a6:2f:79:a3:5b:ba:bb:4a:88:
1a:42:e2:df:86:d2:db:69:57:a5:16:64:85:9b:24:
6b:c9:c3:c8:2b:14:a0:a4:84:a3:30:5f:1c:cf:eb:
47:c9:75:30:2b:d7:52:f8:65:e8:4a:81:a8:16:1c:
57:ef:6d:83:d7:08:32:09:fa:14:0d:be:5a:05:d0:
8c:45:8e:90:20:77:5e:0f:f2:53:bf:bd:eb:cf:77:
fb:b0:0e:79:96:83:af:cd:ee:01:9f:22:89:52:11:
46:82:2c:49:ec:59:b2:a8:7e:c9:66:66:17:d6:73:
44:06:04:9e:ed:a3:a0:f3:e6:7c:89:1d:2f:38:84:
0e:b4:92:22:62:28:d7:33:1c:2c:5b:f5:aa:da:5c:
68:81:a8:35:06:cf:7b:0b:83:f3:f7:9b:20:de:03:
86:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BB:41:8A:D2:1E:48:33:59:1F:96:35:43:DF:49:AF:74:2B:76:95
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/rrtBitIeSDNZH5Y1Q99Jr3QrdpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.139.0/24
88.218.104.0/23
Signature Algorithm: sha256WithRSAEncryption
54:13:dd:86:0c:34:5e:82:9b:74:bf:8e:5b:64:6a:67:9d:11:
45:68:45:5b:27:4b:0c:af:3e:c1:51:6e:06:9d:76:32:18:75:
85:78:99:ab:4e:a3:9f:53:7e:39:02:a8:f2:65:4c:6f:a7:f5:
08:34:b8:5a:96:d2:f8:fc:26:84:c3:95:a3:42:75:4e:da:27:
68:8e:8d:87:1b:43:4d:7c:05:00:00:a5:d7:39:b6:8b:d3:d5:
77:65:2a:65:93:01:38:23:cb:74:6a:04:35:71:a1:48:a0:74:
9f:17:d4:6b:d3:e4:10:98:9c:9f:74:fe:71:dc:4c:dd:46:7b:
cb:09:b7:ce:9b:a1:a3:42:be:c0:28:d1:bd:82:cb:6e:f1:56:
0b:9b:32:0f:2b:f9:56:72:56:9d:d5:a6:80:b9:c9:2b:a9:be:
2a:f0:c2:7d:81:b4:09:76:b3:b7:db:fb:ac:b4:ff:42:df:df:
73:d3:3c:1a:5e:55:e2:d7:98:6f:b6:79:94:17:c5:3d:20:3c:
da:4c:5b:a3:c7:7f:11:9f:b1:07:47:8f:c8:26:ed:80:aa:33:
71:4c:7f:4f:d9:ce:51:11:d1:50:3f:57:9f:1b:04:48:76:86:
10:cb:2a:b4:31:41:23:75:d9:83:ef:45:45:53:f9:64:53:b2:
5c:f9:29:92
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYrwMes23aJuyFTwcPJQAirzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx
OGM5YmMwHhcNMjMxMDAyMTE0MTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWJiNDE4YWQyMWU0ODMzNTkxZjk2MzU0M2RmNDlhZjc0MmI3Njk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzmQwWG1E6UeS9AWiOKClBrnaoa/
yBmht7LkSQQi6PmEiRLUQ1ZZE3JOTCI9LOJHLYTVmTOnCGEoTKEYzvR2HXx6nQPG
fsYQWxm6r+OdN/2j2gQm3dURyr8lTbn3w9amL3mjW7q7SogaQuLfhtLbaVelFmSF
myRrycPIKxSgpISjMF8cz+tHyXUwK9dS+GXoSoGoFhxX722D1wgyCfoUDb5aBdCM
RY6QIHdeD/JTv73rz3f7sA55loOvze4BnyKJUhFGgixJ7FmyqH7JZmYX1nNEBgSe
7aOg8+Z8iR0vOIQOtJIiYijXMxwsW/Wq2lxogag1Bs97C4Pz95sg3gOGYQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFK67QYrSHkgzWR+WNUPfSa90K3aVMB8GA1UdIwQY
MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt
YmQzYmZjOTliZGE5LzEvcnJ0Qml0SWVTRE5aSDVZMVE5OUpyM1FyZHBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5
LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYeLAwQB
WNpoMA0GCSqGSIb3DQEBCwUAA4IBAQBUE92GDDRegpt0v45bZGpnnRFFaEVbJ0sM
rz7BUW4GnXYyGHWFeJmrTqOfU345AqjyZUxvp/UINLhaltL4/CaEw5WjQnVO2ido
jo2HG0NNfAUAAKXXObaL09V3ZSplkwE4I8t0agQ1caFIoHSfF9Rr0+QQmJyfdP5x
3EzdRnvLCbfOm6GjQr7AKNG9gstu8VYLmzIPK/lWclad1aaAuckrqb4q8MJ9gbQJ
drO32/ustP9C399z0zwaXlXi15hvtnmUF8U9IDzaTFujx38Rn7EHR4/IJu2AqjNx
TH9P2c5REdFQP1efGwRIdoYQyyq0MUEjddmD70VFU/lkU7Jc+SmS
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:43 2024 by rpki-client on console-ams.rpki-client.org