Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/4nyYiDy2P7_Pg5MlUkix7pNeh-s.roa
File: 4nyYiDy2P7_Pg5MlUkix7pNeh-s.roa (raw, json)
Hash identifier: YCd5tTKXhLdDEV1NPKMWGBJ0TkCGwZYKTkrlekDFJ9o=
Subject key identifier: E2:7C:98:88:3C:B6:3F:BF:CF:83:93:25:52:48:B1:EE:93:5E:87:EB
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0186A0BC72646832BE178AF665B77F409334
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/4nyYiDy2P7_Pg5MlUkix7pNeh-s.roa
Signing time: Thu 02 Mar 2023 05:12:29 +0000
ROA not before: Thu 02 Mar 2023 05:12:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 88.216.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Apr 2023 14:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a0:bc:72:64:68:32:be:17:8a:f6:65:b7:7f:40:93:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 2 05:12:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e27c98883cb63fbfcf8393255248b1ee935e87eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:42:ad:2c:60:9c:91:71:85:6f:9b:e6:4f:5b:
8c:9c:83:a3:54:b8:63:71:9b:7f:f3:a7:62:55:d0:
35:8c:2b:2d:04:b6:0e:d2:8d:20:91:1b:03:ba:5d:
3e:b7:d9:56:90:fd:dc:df:0c:be:71:09:38:fe:c1:
70:f4:68:15:fd:d7:25:6a:a5:e8:10:84:1e:e6:16:
c8:f7:97:45:d1:0c:08:7a:a3:a6:73:66:29:b2:27:
ec:35:cc:99:3d:c4:77:c5:69:e9:c1:28:d8:d3:57:
10:3e:4f:e5:c2:f5:68:4c:d5:4a:5b:cd:52:9c:bb:
24:44:67:e7:6f:44:e8:8f:84:8e:f1:9b:62:2a:c5:
05:8f:39:9d:75:44:24:e7:d5:48:78:70:ca:41:62:
4d:2c:34:71:56:99:85:5f:e5:dc:19:f8:f8:2c:7d:
a8:7c:09:ef:49:08:2b:2f:2b:7c:49:0c:5e:ea:c1:
0e:77:f0:6f:2f:98:2d:94:5b:44:93:2f:6c:3a:14:
5c:1d:e2:15:44:42:f2:bd:f7:8d:63:4f:1a:24:75:
4f:f5:23:5d:af:dd:63:91:8d:c2:30:69:ca:f0:0a:
0b:a2:0d:dd:ba:59:74:91:ea:7c:6e:2e:78:08:92:
e7:1c:cb:30:8f:3c:5b:74:85:19:d1:4c:db:2d:a5:
f2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:7C:98:88:3C:B6:3F:BF:CF:83:93:25:52:48:B1:EE:93:5E:87:EB
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/4nyYiDy2P7_Pg5MlUkix7pNeh-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.224.0/22
Signature Algorithm: sha256WithRSAEncryption
97:4e:13:07:3f:7b:72:52:46:48:79:74:2b:56:f4:5f:1a:66:
c3:9c:6e:ef:6f:3d:ec:d8:34:f8:a0:21:33:4e:b0:dc:68:0f:
d7:0f:54:d1:c7:3a:59:f2:b6:ca:ea:5c:97:8c:6e:4c:cb:6c:
0f:07:b3:45:13:45:0f:43:9f:b5:bd:d3:1c:c0:69:0b:d9:ba:
aa:07:97:56:36:9c:96:30:24:fe:3e:b7:98:50:6b:7b:28:63:
8c:4c:37:29:40:b0:3e:d3:20:1c:18:bf:74:2b:a5:67:9c:db:
23:bb:45:66:0a:f5:54:8b:63:20:3a:a9:6a:40:3b:61:ca:6b:
62:99:04:90:37:1f:b9:fa:a3:54:d8:62:63:8a:39:0c:11:a7:
ec:1c:3c:cf:b7:2e:33:b6:03:38:a3:30:0e:11:67:cc:1b:2e:
c5:5e:5e:5d:f4:a6:21:01:0f:cd:85:05:76:96:70:af:43:f3:
2f:d3:65:36:74:88:c0:3d:44:ef:66:75:0b:cc:ab:d0:79:19:
42:8e:2a:d3:72:9e:81:31:54:9d:d4:6f:fa:1a:8f:cb:50:f4:
e3:ca:e3:f9:6a:c6:6b:fd:3b:ce:60:29:07:c5:ac:59:69:c6:
ba:51:17:98:9c:df:91:61:ee:7a:ee:da:ad:be:a2:f5:65:4c:
ac:8b:84:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org