Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/4UF7XVO5kXjTolKvncLJOd0k2gc.roa
File: 4UF7XVO5kXjTolKvncLJOd0k2gc.roa (raw, json)
Hash identifier: Yv6T9TMtKNsLRaXHiNfqyTnOD4YPYs7UOAxfZBNqROc=
Subject key identifier: E1:41:7B:5D:53:B9:91:78:D3:A2:52:AF:9D:C2:C9:39:DD:24:DA:07
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B294FC6E10FBAACB55A87D453FD07F327
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/4UF7XVO5kXjTolKvncLJOd0k2gc.roa
Signing time: Fri 13 Oct 2023 13:52:55 +0000
ROA not before: Fri 13 Oct 2023 13:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51388
IP address blocks: 88.216.48.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:4f:c6:e1:0f:ba:ac:b5:5a:87:d4:53:fd:07:f3:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 13 13:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1417b5d53b99178d3a252af9dc2c939dd24da07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:43:2c:1b:51:bb:fd:a0:f6:ee:cf:7b:40:a5:
7f:34:72:c2:bb:25:3d:bd:59:bd:dd:de:56:55:51:
fa:75:c6:02:6e:36:15:d9:c8:ba:d9:94:01:73:d3:
cf:fd:88:72:81:ff:d5:8f:7b:99:8c:a3:0e:b9:5f:
a2:5b:55:db:66:87:80:98:3e:1a:c3:7a:b8:15:b5:
91:c9:8d:be:a0:cc:74:77:f3:bf:7b:86:c8:19:14:
74:26:30:56:3a:ba:c9:4d:3d:71:b6:7c:ba:59:9c:
27:e8:e2:fc:31:ea:45:ee:4b:bc:24:8a:84:c2:bb:
b4:38:26:d2:73:26:ee:3c:19:74:50:71:bf:96:f0:
48:cc:2f:19:8e:f3:5e:a1:07:e0:40:7d:c2:b0:5e:
74:f2:c6:61:c3:b3:31:db:e8:38:02:89:c4:73:00:
84:2b:7a:54:20:2f:a3:cc:72:ea:b5:22:ab:d2:56:
a1:80:26:6f:fb:57:b7:bc:17:31:af:0b:7b:bd:6f:
44:21:ff:08:fc:f6:b3:38:ea:3d:8a:4c:00:af:0f:
6a:0c:ed:e5:94:95:90:5b:63:05:16:b0:cc:02:1d:
ed:eb:d7:5b:c4:40:21:f4:82:bf:23:3a:df:8d:b7:
64:c2:58:6e:48:49:72:34:b2:7c:c0:96:9d:a0:0a:
7a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:41:7B:5D:53:B9:91:78:D3:A2:52:AF:9D:C2:C9:39:DD:24:DA:07
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/4UF7XVO5kXjTolKvncLJOd0k2gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.48.0/21
Signature Algorithm: sha256WithRSAEncryption
28:2e:60:87:b9:b0:4d:9b:9f:42:12:b0:79:32:33:ab:63:d7:
9a:f5:36:ca:0d:2e:da:64:7f:9f:d4:de:53:bc:c9:a9:32:94:
31:d2:f1:89:12:69:57:cf:2a:30:96:8c:9a:6a:47:c1:a3:61:
bf:28:7a:05:7b:23:da:74:20:dc:f4:48:a5:88:9b:ec:c8:86:
18:69:88:8f:ff:30:54:f2:ef:11:43:f6:0f:bf:5e:be:af:a7:
ac:46:f4:01:e8:3a:06:cf:d0:e5:9a:05:27:6d:15:3d:fd:05:
ac:92:43:a1:dd:6a:a1:cd:d0:dc:66:c8:77:b5:fa:19:1a:3d:
f6:fc:f1:1b:f3:a9:93:d4:ce:b8:0c:d5:97:6c:cd:9e:0e:a3:
d0:50:56:f4:87:dc:8e:b7:3d:bb:44:ed:5a:b4:be:a8:26:90:
ce:0c:87:b4:b8:af:d4:8c:d0:94:b5:27:d2:20:41:ea:2e:fa:
d9:3f:13:af:a0:c6:80:b0:93:7c:f5:7c:a0:f8:1c:0d:73:32:
5d:7f:13:03:f0:83:05:6c:6b:5e:f4:e3:cf:2e:3d:81:4b:54:
fa:d6:a7:21:10:3d:b3:21:40:62:fd:7a:74:71:17:8a:9e:ec:
01:1d:04:05:91:73:96:e4:01:20:0c:e7:e3:2b:e0:ef:9f:27:
8d:fb:7b:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYspT8bhD7qstVqH1FP9B/MnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMxMDEzMTM1MjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTQxN2I1ZDUzYjk5MTc4ZDNhMjUyYWY5ZGMyYzkzOWRkMjRkYTA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAikMsG1G7/aD27s97QKV/NHLCuyU9
vVm93d5WVVH6dcYCbjYV2ci62ZQBc9PP/Yhygf/Vj3uZjKMOuV+iW1XbZoeAmD4a
w3q4FbWRyY2+oMx0d/O/e4bIGRR0JjBWOrrJTT1xtny6WZwn6OL8MepF7ku8JIqE
wru0OCbScybuPBl0UHG/lvBIzC8ZjvNeoQfgQH3CsF508sZhw7Mx2+g4AonEcwCE
K3pUIC+jzHLqtSKr0lahgCZv+1e3vBcxrwt7vW9EIf8I/PazOOo9ikwArw9qDO3l
lJWQW2MFFrDMAh3t69dbxEAh9IK/IzrfjbdkwlhuSElyNLJ8wJadoAp6+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOFBe11TuZF406JSr53CyTndJNoHMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvNFVGN1hWTzVrWGpUb2xLdm5jTEpPZDBrMmdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWNgwMA0G
CSqGSIb3DQEBCwUAA4IBAQAoLmCHubBNm59CErB5MjOrY9ea9TbKDS7aZH+f1N5T
vMmpMpQx0vGJEmlXzyowloyaakfBo2G/KHoFeyPadCDc9EiliJvsyIYYaYiP/zBU
8u8RQ/YPv16+r6esRvQB6DoGz9DlmgUnbRU9/QWskkOh3WqhzdDcZsh3tfoZGj32
/PEb86mT1M64DNWXbM2eDqPQUFb0h9yOtz27RO1atL6oJpDODIe0uK/UjNCUtSfS
IEHqLvrZPxOvoMaAsJN89Xyg+BwNczJdfxMD8IMFbGte9OPPLj2BS1T61qchED2z
IUBi/Xp0cReKnuwBHQQFkXOW5AEgDOfjK+DvnyeN+3sk
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:49 2024 by rpki-client on console-fra.rpki-client.org