Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/tpldaAZqpXg_1tUETmr9eKL23V4.roa
File: tpldaAZqpXg_1tUETmr9eKL23V4.roa (raw, json)
Hash identifier: t0KDlGcnpjDVZXMX8qBwlSmCwBfs/FBtE5O5tGgsiOo=
Subject key identifier: B6:99:5D:68:06:6A:A5:78:3F:D6:D5:04:4E:6A:FD:78:A2:F6:DD:5E
Certificate issuer: /CN=1319f052bc9e7284888074390c9d0bc127606692
Certificate serial: 01856F670D62E6C93A0893A3C58D89ECBAB3
Authority key identifier: 13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/tpldaAZqpXg_1tUETmr9eKL23V4.roa
Signing time: Sun 01 Jan 2023 22:15:02 +0000
ROA not before: Sun 01 Jan 2023 22:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12527
IP address blocks: 88.157.231.0/24 maxlen: 24
88.157.230.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:0d:62:e6:c9:3a:08:93:a3:c5:8d:89:ec:ba:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1319f052bc9e7284888074390c9d0bc127606692
Validity
Not Before: Jan 1 22:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6995d68066aa5783fd6d5044e6afd78a2f6dd5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6a:2f:f9:4f:4d:bc:51:42:a5:6a:6b:1a:37:
be:73:cb:f0:3b:20:68:bf:3a:e5:82:fd:a6:0c:68:
b9:f0:d6:ff:e0:94:7e:59:6d:29:bc:40:db:7e:fd:
4e:25:7f:96:6f:97:1f:11:19:50:23:c6:92:87:af:
ef:a7:03:ce:82:fd:a6:15:f7:5c:f3:d8:bc:71:77:
30:78:9f:83:14:15:97:f9:71:a4:8f:31:cb:2b:9a:
a9:ca:e7:e1:80:13:0a:d7:07:fa:01:c1:0f:a7:ad:
1b:d3:cd:a9:0e:91:2b:fb:92:a6:85:6c:a2:50:a7:
03:7f:71:9f:e8:c7:59:32:7f:30:06:c6:e1:5f:54:
e8:65:21:bd:c8:d0:fb:c0:82:8e:60:3d:08:46:56:
4e:70:8f:1d:b6:66:3d:f1:47:a3:55:79:3e:ae:e5:
f3:58:43:fd:2c:11:90:f9:27:86:f2:e7:8b:e4:34:
f6:57:af:f2:23:4b:ae:40:c6:87:4f:18:4b:7b:02:
7a:29:6b:c9:a7:f3:a0:5a:da:13:1f:af:eb:da:93:
ce:bc:cd:22:d3:23:58:ad:e1:7a:79:f9:da:ad:ca:
6b:4e:92:e6:ae:3f:01:d0:ad:83:6d:7b:78:50:fb:
4b:d1:de:27:26:25:14:ee:47:05:49:7e:d7:f7:82:
08:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:99:5D:68:06:6A:A5:78:3F:D6:D5:04:4E:6A:FD:78:A2:F6:DD:5E
X509v3 Authority Key Identifier:
keyid:13:19:F0:52:BC:9E:72:84:88:80:74:39:0C:9D:0B:C1:27:60:66:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExnwUryecoSIgHQ5DJ0LwSdgZpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/tpldaAZqpXg_1tUETmr9eKL23V4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5bbce-4220-4ec4-8af5-2c1a7730bd25/1/ExnwUryecoSIgHQ5DJ0LwSdgZpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.157.230.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:c4:e4:38:53:74:be:e2:60:be:6f:57:16:ad:74:dc:42:01:
a4:5d:21:32:0d:ed:15:73:ec:0c:37:3f:0e:73:87:62:ed:d6:
13:ae:ba:3e:44:57:a9:46:38:4e:a2:d2:d1:0a:8f:28:be:4c:
ea:ce:96:86:9c:26:45:1c:07:f8:a3:80:3c:df:37:7e:ec:64:
62:5d:87:3b:e8:a8:1a:f1:08:87:ee:51:3e:04:b9:98:f3:67:
92:55:63:0a:cb:4d:96:24:d3:b8:3d:ab:52:ca:35:12:58:de:
43:e3:40:93:a7:2c:a1:ef:19:fa:de:77:32:88:c2:7e:e8:0a:
35:62:e2:67:82:5e:12:b2:3b:cf:5f:c5:16:f8:b6:91:79:31:
2d:ea:64:7d:a9:f6:36:3f:ea:13:17:62:33:aa:50:42:da:94:
89:82:57:0e:da:b1:10:5f:e5:45:aa:16:22:2e:fc:51:5e:fb:
49:25:e7:05:3f:cd:d1:9d:10:01:31:fa:8f:61:d0:37:a2:cd:
28:aa:4f:0a:a7:f6:0b:3b:b6:ca:52:ea:31:18:27:82:25:3d:
64:79:6e:a1:95:59:01:4b:24:39:c3:17:1b:93:24:67:85:a4:
09:07:d1:5e:7b:04:0a:83:1a:cc:ae:72:9a:a4:c6:b3:b4:41:
b3:1b:4d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:51 2024 by rpki-client on console-fra.rpki-client.org