Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Y5VhhXT7XY_0CQv-1vHpDpw5cYw.roa
File: Y5VhhXT7XY_0CQv-1vHpDpw5cYw.roa (raw, json)
Hash identifier: AB0CQprQlmDlxVxlBSXtbijbrbP6bfX0kiXd4bQmkts=
Subject key identifier: 63:95:61:85:74:FB:5D:8F:F4:09:0B:FE:D6:F1:E9:0E:9C:39:71:8C
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEED626D6B60919CAE22AC98BBC05C3
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Y5VhhXT7XY_0CQv-1vHpDpw5cYw.roa
Signing time: Sun 01 Jan 2023 06:04:52 +0000
ROA not before: Sun 01 Jan 2023 06:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205030
IP address blocks: 188.114.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:d6:26:d6:b6:09:19:ca:e2:2a:c9:8b:bc:05:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6395618574fb5d8ff4090bfed6f1e90e9c39718c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:62:96:47:fe:6f:7c:ba:01:df:89:e5:ee:b8:
db:f9:57:63:df:c9:f5:46:ec:8d:df:a1:ea:b9:31:
55:30:27:2a:58:51:dc:73:d5:66:55:d5:c3:89:e3:
fe:dd:aa:bd:cf:b9:28:19:63:00:c2:60:8c:e5:42:
c3:0d:38:5c:65:56:dc:a2:8b:64:b6:68:b7:cf:dc:
81:2d:9e:9a:4b:16:e6:ec:12:30:3d:eb:e2:81:05:
ec:7e:e4:ba:30:19:ed:62:ce:03:b8:75:81:d4:bb:
3f:a6:1b:9b:b7:f7:3d:8b:84:c3:35:e9:c1:54:e9:
eb:db:d3:b9:ec:4c:8f:fe:73:8a:8a:d8:dd:01:c7:
b1:20:8c:23:50:06:93:92:70:bc:13:ee:2d:4e:9e:
5e:05:c3:b8:19:b4:e5:b3:96:57:3d:4e:78:c9:a1:
29:96:83:69:bd:c7:f2:1b:59:64:eb:fd:96:ef:93:
b3:39:6c:37:68:d3:c7:3f:8a:81:f6:7c:c3:54:a9:
d7:31:ed:09:73:84:23:80:be:82:5b:dd:36:ff:64:
30:7d:9e:ed:1d:07:17:43:51:10:97:81:b0:41:b7:
fb:95:78:d7:94:99:ae:a4:e5:c8:07:a9:4e:43:97:
16:1a:88:a1:76:86:a5:b0:03:7b:ce:a9:c1:27:d0:
53:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:95:61:85:74:FB:5D:8F:F4:09:0B:FE:D6:F1:E9:0E:9C:39:71:8C
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/Y5VhhXT7XY_0CQv-1vHpDpw5cYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.88.0/23
Signature Algorithm: sha256WithRSAEncryption
63:a8:b4:48:13:92:6a:9d:d0:46:aa:26:c1:50:4e:e3:9b:97:
62:14:0d:cc:9a:d3:f7:11:8d:7e:88:ec:06:d6:91:d5:c9:ff:
e2:7e:93:5b:ce:65:04:e3:ca:4e:95:23:ee:74:f8:9e:f3:f6:
af:84:8e:2e:07:99:66:a9:1d:dc:95:54:14:f8:d8:24:15:b8:
47:b5:d2:8a:81:40:e0:cb:14:61:9b:08:d8:84:17:57:5e:84:
eb:d2:25:59:fc:46:62:7a:b6:fe:7a:e4:2f:6d:d3:cd:4f:57:
d7:b1:ae:45:7c:84:0f:69:8f:ab:d2:e4:24:f9:1a:15:e4:ce:
b0:d7:81:7b:47:e8:8e:29:46:e2:a3:89:0f:d7:92:d3:23:68:
52:8e:7f:60:84:7f:69:cb:de:c9:ae:2d:7b:47:b6:28:cb:05:
a3:b5:9d:86:f5:5e:4a:92:00:b5:cf:24:00:78:28:26:73:ce:
c3:bf:0f:1a:fa:92:87:43:5b:5b:0f:2f:b1:ee:bc:16:8d:62:
ed:df:f7:77:b8:de:17:a3:bb:ec:8f:02:04:9b:76:72:6f:7c:
34:7a:67:53:60:6c:d3:1c:35:ce:8d:21:91:6a:83:b1:25:69:
6e:ff:3d:93:31:f1:b1:11:a2:46:4b:75:6b:98:2a:77:ae:00:
cd:f6:ee:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org