Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/KA-aIJWQEpKzu9e-MeG_BesX-MA.roa
File: KA-aIJWQEpKzu9e-MeG_BesX-MA.roa (raw, json)
Hash identifier: UMHAodc+fj3xA2HXfwLkzNIyv9mPKHQ7bb2ulFUZrN8=
Subject key identifier: 28:0F:9A:20:95:90:12:92:B3:BB:D7:BE:31:E1:BF:05:EB:17:F8:C0
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018705E41829A28C136965B3869656FA4EF1
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/KA-aIJWQEpKzu9e-MeG_BesX-MA.roa
Signing time: Tue 21 Mar 2023 20:37:27 +0000
ROA not before: Tue 21 Mar 2023 20:37:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14576
IP address blocks: 194.110.150.0/24 maxlen: 24
88.218.46.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:e4:18:29:a2:8c:13:69:65:b3:86:96:56:fa:4e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Mar 21 20:37:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=280f9a2095901292b3bbd7be31e1bf05eb17f8c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e0:8e:da:cc:80:dd:8d:4e:ff:e5:cf:1a:1f:
02:25:b6:54:cc:a7:ab:2b:57:25:55:56:66:95:87:
9f:41:33:27:d2:1c:a0:f2:bc:5b:2e:f0:e7:93:9e:
8a:d5:8d:07:9e:be:48:5c:4c:78:83:16:ab:2d:41:
ef:52:41:8b:0c:98:b0:58:74:60:31:99:fd:07:64:
6e:3f:b8:8a:b6:ec:ba:08:ad:be:61:b4:0a:48:72:
7e:f3:55:d6:bd:78:d2:4e:a8:01:77:f9:96:12:60:
e8:4e:d4:65:ea:7b:87:78:c7:43:30:f5:47:de:15:
93:c7:24:9e:38:d4:d0:f9:7e:ba:31:b6:b0:89:7c:
e6:c3:ab:d8:34:bd:39:e8:f6:5f:01:ad:0e:ee:b3:
c5:38:a2:90:a7:0e:41:14:6e:4d:21:9f:0c:da:8a:
96:0b:a2:8b:f2:44:2b:e8:64:e9:4f:21:ce:bd:87:
6e:c2:37:96:f7:8b:0c:8f:df:d1:c2:a0:06:9d:2a:
ea:cd:e5:9a:f1:54:07:25:e7:e0:c4:41:77:3d:c7:
9b:ca:9d:a1:b7:38:53:13:b5:9c:b6:36:99:07:85:
7d:90:45:d6:e2:98:a8:09:9d:3c:78:d7:dc:f9:4e:
79:ce:a0:63:e1:11:ae:42:1b:ba:67:9b:74:74:2a:
07:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0F:9A:20:95:90:12:92:B3:BB:D7:BE:31:E1:BF:05:EB:17:F8:C0
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/KA-aIJWQEpKzu9e-MeG_BesX-MA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.46.0/24
194.110.150.0/24
Signature Algorithm: sha256WithRSAEncryption
61:22:2e:ad:8d:b4:44:6f:f2:19:26:d6:a9:57:4f:e6:a3:97:
36:8c:5f:22:32:74:d0:b6:19:48:f5:33:cf:47:a1:2b:4d:62:
24:be:f3:3c:f3:9f:2c:8b:99:2f:8b:82:ee:6f:b9:74:3b:85:
32:5b:7d:29:31:ce:75:f3:f9:8d:93:d6:7c:e0:9b:94:7d:11:
d8:a5:84:bb:cb:fb:15:db:72:19:06:9b:1c:fc:04:ca:92:d1:
b2:92:c0:cc:9f:de:7e:7b:a1:a1:66:06:86:e9:3a:58:d3:fa:
d1:ca:fb:d2:cd:90:2d:ed:6d:72:d4:65:75:81:c9:a3:53:cf:
d1:da:9b:01:16:7d:55:c3:06:74:bb:e7:eb:22:82:d5:51:fb:
08:59:a2:57:39:b7:d5:8c:e2:69:df:18:7d:77:95:ec:25:0b:
a0:cb:0e:63:1a:72:09:45:e8:87:3b:9e:b4:41:1d:4b:29:1b:
52:b0:7c:37:f2:11:b7:7e:a6:f8:68:06:e8:44:4b:1b:ab:33:
2b:29:da:c4:18:bd:3e:01:70:b8:47:3e:d0:f0:11:ba:4e:42:
6a:c4:84:41:0b:4f:09:0c:8b:de:d2:10:fa:ce:a6:3a:56:be:
55:42:e4:b7:a0:43:13:d7:fc:ad:ef:5a:0b:50:aa:2f:13:44:
09:2f:6c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org