Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/06Vtwnj50M01-U-RdWvF4QpTMyQ.roa
File: 06Vtwnj50M01-U-RdWvF4QpTMyQ.roa (raw, json)
Hash identifier: AO1WKRNiM7vNfL2nqfM3qLXXcQxC3CXzhlgR/0nWNXY=
Subject key identifier: D3:A5:6D:C2:78:F9:D0:CD:35:F9:4F:91:75:6B:C5:E1:0A:53:33:24
Certificate issuer: /CN=5a68d699d1a9457c78acfbec004f98677aa4cc16
Certificate serial: 01856C6EECDFD09F24FD9D3FDC9B4DE2A88E
Authority key identifier: 5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/06Vtwnj50M01-U-RdWvF4QpTMyQ.roa
Signing time: Sun 01 Jan 2023 08:24:46 +0000
ROA not before: Sun 01 Jan 2023 08:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205734
IP address blocks: 88.205.16.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:ec:df:d0:9f:24:fd:9d:3f:dc:9b:4d:e2:a8:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a68d699d1a9457c78acfbec004f98677aa4cc16
Validity
Not Before: Jan 1 08:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3a56dc278f9d0cd35f94f91756bc5e10a533324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e0:de:8e:20:c9:e1:5e:70:dd:10:4c:06:f7:
ca:f7:df:89:d3:4f:30:16:8d:63:73:a9:77:42:3d:
3d:76:0b:f0:38:7c:31:cf:33:bf:3c:69:69:b6:22:
fe:01:07:1c:7a:4a:1a:e3:97:c0:2e:d6:e5:15:23:
ed:73:50:02:29:b5:ba:14:7d:23:db:4d:d6:bc:c9:
37:c4:ba:c7:ee:5c:d8:a9:58:c2:54:e6:b2:3a:10:
25:15:82:d8:cf:18:53:60:a6:4a:12:e9:43:be:4f:
fb:8d:2c:99:72:aa:be:a3:9d:33:36:02:d7:76:88:
a6:ca:bd:b4:7a:97:12:be:37:d4:02:a2:ad:20:28:
35:bc:47:fb:f9:62:fd:db:12:b7:a2:da:5c:f1:1f:
d2:a5:28:12:c3:00:6d:df:25:ef:28:ca:af:78:68:
6e:f6:26:07:b8:58:0c:82:09:3e:73:3b:47:40:d8:
d6:cf:31:28:f1:aa:7a:0d:d7:17:cb:e4:38:bf:0c:
64:8d:b8:73:7c:57:a9:20:f3:78:42:c0:ba:1d:61:
5d:47:8b:60:a0:03:63:b3:42:7a:28:af:44:02:61:
b4:cf:e1:fc:0a:84:aa:55:35:b3:ca:33:c4:84:a6:
d5:fa:d3:23:51:30:38:0c:58:13:8d:30:9a:c2:82:
69:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A5:6D:C2:78:F9:D0:CD:35:F9:4F:91:75:6B:C5:E1:0A:53:33:24
X509v3 Authority Key Identifier:
keyid:5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/06Vtwnj50M01-U-RdWvF4QpTMyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.205.16.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:2e:88:32:ab:e3:61:8c:15:86:c3:12:41:ac:a7:c5:8d:54:
89:d4:f4:88:76:4a:63:8f:d2:bc:3b:f3:e3:e7:4f:69:31:e4:
99:9a:b2:88:c4:9b:6e:f3:73:1e:d2:c7:35:54:27:2c:fe:ab:
df:7d:c7:96:5f:2f:c2:4d:0e:7b:a1:5c:9a:91:6f:8a:91:f9:
05:fe:c8:af:8a:5e:fd:70:fe:20:a0:e1:6a:1b:fa:9f:a2:b4:
e1:ae:d3:64:9f:89:d9:7b:9d:aa:6f:ae:7f:f4:a5:0c:b9:af:
d0:52:7c:81:7a:cb:81:f9:d2:2a:f5:05:84:9e:d8:b1:ef:ba:
c4:c5:20:d2:24:3f:dc:c7:42:a6:36:5d:f2:d2:3c:6b:a4:ed:
5e:35:72:76:26:78:55:ef:50:ef:8b:46:1f:58:79:12:fc:1e:
fb:a2:63:b6:58:c3:71:75:ce:37:55:68:29:b5:a7:03:b7:d8:
99:db:70:03:9c:6a:65:f9:42:c8:02:14:2e:41:09:a9:84:8f:
d5:d3:d4:02:b4:b7:85:c2:0e:7a:87:f3:f3:53:48:51:b8:5b:
d2:55:4e:6b:3a:7d:b6:9f:f9:68:ba:f8:21:94:10:36:a6:bc:
a0:09:59:8b:97:77:99:4c:cc:36:e1:69:58:cd:cf:46:ba:eb:
2f:47:9b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:29 2024 by rpki-client on console-fra.rpki-client.org