Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/ryWiIQt1_jZ_I2D75YxGOep90sM.roa
File: ryWiIQt1_jZ_I2D75YxGOep90sM.roa (raw, json)
Hash identifier: D/vQSirRFgs82/w2EIWM7ixxzVigSqu6SB7huOvC4ms=
Subject key identifier: AF:25:A2:21:0B:75:FE:36:7F:23:60:FB:E5:8C:46:39:EA:7D:D2:C3
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 0189C6AC74A6E6137926FBE016C8426588E0
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/ryWiIQt1_jZ_I2D75YxGOep90sM.roa
Signing time: Sat 05 Aug 2023 17:08:58 +0000
ROA not before: Sat 05 Aug 2023 17:08:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 88.218.105.0/24 maxlen: 24
88.218.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c6:ac:74:a6:e6:13:79:26:fb:e0:16:c8:42:65:88:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Aug 5 17:08:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af25a2210b75fe367f2360fbe58c4639ea7dd2c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:31:57:d7:88:f3:11:23:c7:c1:b2:d5:77:18:
97:4b:fb:c5:ee:65:cf:60:56:2c:89:02:92:ca:96:
b1:6a:b6:65:06:43:8e:18:d2:42:d0:51:29:e4:f3:
d8:0f:80:c1:86:58:db:0b:65:fa:d0:79:21:35:7a:
55:0e:7a:ca:9b:ef:64:b5:ba:0d:b3:36:ff:98:92:
ac:44:4f:78:d4:d9:8e:a1:5e:e7:06:d7:16:ac:5f:
f9:7f:9c:89:8a:50:23:4f:51:e0:d0:79:b0:2d:9c:
f8:33:28:33:72:41:10:25:dc:45:69:ba:09:2f:ba:
53:17:e4:19:19:9a:d1:0d:0d:e3:ad:40:61:35:24:
89:df:79:36:23:88:38:76:e6:66:fd:04:e7:5e:c5:
d2:74:e8:3d:c9:2b:04:ed:95:09:a1:64:dc:53:76:
fa:47:90:72:7a:bc:a0:d7:d8:a7:7b:c4:96:05:e3:
8f:6a:e4:f4:f2:3b:f3:bc:83:2b:ed:4b:a6:7e:97:
60:b1:de:37:f1:0b:1a:1e:4f:6b:2c:83:45:6c:b8:
8c:68:f8:f2:f2:33:b6:28:80:04:5a:bd:76:ea:1c:
1f:f6:5a:0a:43:43:28:01:00:3b:4e:05:fc:10:bc:
97:b8:e0:ae:35:22:5f:28:ad:b3:87:64:5c:0b:87:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:25:A2:21:0B:75:FE:36:7F:23:60:FB:E5:8C:46:39:EA:7D:D2:C3
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/ryWiIQt1_jZ_I2D75YxGOep90sM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.104.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:d0:ba:25:4f:89:57:ed:f4:61:01:89:aa:af:8f:80:df:a7:
d4:cc:a6:67:1a:14:5f:e4:7a:26:ac:2a:28:7a:bd:c3:42:1c:
53:0e:e6:99:2b:51:2a:7b:d8:de:c6:39:9f:a7:bb:ca:d8:09:
2e:30:47:5e:81:83:a9:2c:e2:6f:3c:e4:aa:a5:e8:04:45:67:
ae:6a:f6:f7:f2:82:c7:f4:11:54:c2:1e:35:69:c2:db:b4:29:
a5:0f:1b:b2:15:a8:40:79:b8:8b:2a:95:0a:f1:1d:e5:50:be:
4b:df:e7:d5:6a:c0:6a:86:24:ee:ca:ca:4b:89:ea:c8:8a:52:
2b:b9:d4:f5:8b:c3:d7:c9:33:28:33:b8:cb:cc:1a:f6:dd:11:
b9:8d:87:39:3d:20:60:a7:3b:28:c3:39:e1:73:c9:72:3d:70:
48:58:b7:33:8d:5d:5a:1e:d8:8c:b1:fa:81:80:b5:22:36:09:
2c:c4:bd:30:26:fa:41:24:10:c4:47:d7:b3:e9:95:6f:af:df:
a5:ea:85:bd:f1:e5:ec:c1:12:8a:69:b1:28:4b:a6:c6:16:61:
80:32:dc:5d:4e:c7:3b:91:fc:66:a3:53:e5:a5:c4:9a:8e:3c:
72:08:ba:95:32:c5:f3:cf:a7:f6:99:2c:39:f9:7d:ea:b2:ea:
20:a6:3f:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 2 12:27:51 2023 by rpki-client on console-fra.rpki-client.org