Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/r5Uq8_Cw1tmUf9nt-EiNpgd0PTA.roa
File: r5Uq8_Cw1tmUf9nt-EiNpgd0PTA.roa (raw, json)
Hash identifier: 5IwszENiy+KFfsAkoUCX6lf66f3mx61Hu7F7oiJLvnQ=
Subject key identifier: AF:95:2A:F3:F0:B0:D6:D9:94:7F:D9:ED:F8:48:8D:A6:07:74:3D:30
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018B375125F44E86F8010A6DAA00955C5333
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/r5Uq8_Cw1tmUf9nt-EiNpgd0PTA.roa
Signing time: Mon 16 Oct 2023 07:09:06 +0000
ROA not before: Mon 16 Oct 2023 07:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51791
IP address blocks: 185.88.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:51:25:f4:4e:86:f8:01:0a:6d:aa:00:95:5c:53:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Oct 16 07:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af952af3f0b0d6d9947fd9edf8488da607743d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9b:aa:ff:2e:5b:9a:d2:7a:bc:b8:f4:93:86:
c2:c6:c0:ef:3c:4d:20:20:e0:e3:5a:f2:a0:42:13:
07:09:72:18:85:45:2b:b5:55:ad:78:a1:e8:07:22:
80:b3:9b:3c:6e:02:8e:2a:b1:44:b3:d5:54:1d:39:
9a:c1:d0:64:ca:d9:46:62:cc:34:48:e6:17:49:7f:
b7:ef:47:3b:14:36:0a:27:a5:12:c4:02:fb:ce:77:
7f:a5:20:57:7a:9c:26:85:fd:64:0f:fe:90:c1:f1:
b1:40:e0:84:68:32:84:be:4f:72:bb:4d:f0:84:e0:
e9:44:14:93:d3:e1:b5:39:39:8f:1a:a3:30:94:dc:
3a:9e:7d:0d:d2:cb:e5:2a:be:67:d6:82:2b:f6:ad:
2f:a0:b9:b6:8e:df:71:be:82:7d:7d:7c:23:82:97:
16:dd:ab:ac:96:61:72:dd:2b:36:34:ff:62:38:4e:
f6:3e:98:58:fb:ed:ed:7c:d0:f2:2f:c9:8e:0f:fc:
49:7e:ac:e0:9b:3b:e9:88:1e:da:cd:76:ce:d9:6c:
b6:48:51:6a:35:a9:d8:34:ca:05:17:ef:27:eb:92:
91:0f:fe:63:ac:52:4b:bf:d7:37:c1:76:8a:6c:ca:
ab:31:ee:44:62:23:a4:a0:29:7d:c8:43:6e:6b:94:
9e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:95:2A:F3:F0:B0:D6:D9:94:7F:D9:ED:F8:48:8D:A6:07:74:3D:30
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/r5Uq8_Cw1tmUf9nt-EiNpgd0PTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.174.0/24
Signature Algorithm: sha256WithRSAEncryption
14:dc:fb:96:43:9e:6b:c9:14:80:16:6a:d1:c7:e9:11:51:82:
99:19:5a:9b:ca:65:c8:02:32:24:6f:41:0b:bf:8b:10:e8:eb:
09:79:4f:e0:f6:e3:7e:de:6f:51:f2:9d:c8:cc:38:6d:15:fb:
2c:38:b5:1f:2c:b9:cb:a1:6a:5c:f6:76:b2:31:52:fe:45:70:
82:76:36:c0:36:b6:db:4b:68:32:dc:5c:58:79:3f:a8:d5:f1:
9d:82:c1:ab:7a:08:5d:cc:65:65:5c:17:2e:bd:5a:5d:2c:e5:
24:75:46:78:a3:9c:75:6e:bb:cd:a6:4f:13:83:3b:4c:1d:a6:
cf:0a:98:cb:24:21:b2:77:0b:47:15:bb:24:dd:e1:fa:22:b0:
c0:44:d3:89:ac:36:eb:9d:8e:d7:e1:51:65:cb:fa:4d:0b:32:
aa:33:ea:06:e0:7a:2a:18:ad:72:9f:b8:3d:a3:65:98:19:05:
10:b4:ae:7f:b8:7c:55:e4:cc:2e:84:de:26:81:63:0c:aa:c4:
04:ad:71:13:34:3c:61:44:59:6e:d1:c5:a2:fb:de:7b:17:34:
c5:47:70:01:db:0a:31:0b:0f:91:f6:cf:64:8f:76:2e:87:4c:
10:a3:28:14:48:91:e8:e9:cc:93:84:44:2b:fa:ac:94:53:09:
ab:c3:04:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org