Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6otxkGC2MQM2mWJNiZpm74gba0k.roa
File: 6otxkGC2MQM2mWJNiZpm74gba0k.roa (raw, json)
Hash identifier: s3Ih/v3EtY3YpIOLj3o39xRXY1FJiOqHEdOtzzWwRMs=
Subject key identifier: EA:8B:71:90:60:B6:31:03:36:99:62:4D:89:9A:66:EF:88:1B:6B:49
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188FCACB512C9742C4F2BE1978C1E14EA43
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6otxkGC2MQM2mWJNiZpm74gba0k.roa
Signing time: Tue 27 Jun 2023 11:45:56 +0000
ROA not before: Tue 27 Jun 2023 11:45:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56322
IP address blocks: 88.216.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:ac:b5:12:c9:74:2c:4f:2b:e1:97:8c:1e:14:ea:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 27 11:45:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea8b719060b631033699624d899a66ef881b6b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d1:42:87:34:14:b0:0b:a8:ab:57:e9:db:48:
62:de:39:5d:7f:d6:45:d7:20:e6:7c:4f:57:ab:45:
b7:68:8f:d8:79:bd:e3:94:00:3c:f9:8b:c8:36:9e:
a9:2f:1e:1f:7b:7b:84:71:46:b1:cd:e0:e6:16:a0:
b2:7c:24:02:b0:a0:91:74:f4:5c:f3:53:30:21:97:
25:d9:b6:ed:c5:07:85:8c:d8:69:c3:5c:ba:4a:c2:
ab:d1:ff:4e:62:d4:ef:dd:64:fc:ab:1c:9b:cb:81:
2f:7b:a7:e4:c2:34:98:76:44:db:74:9f:9f:9f:50:
2b:fc:61:ff:e6:d2:07:d2:69:ec:f3:80:4b:83:7f:
c0:6c:0b:4a:ad:a9:3d:9e:8a:38:88:6a:95:a6:8e:
a3:09:0c:18:b1:fa:68:92:68:75:af:2a:ad:e9:d2:
ad:1b:56:52:e1:a3:07:e4:d4:08:ab:91:6c:50:7c:
c7:7c:0a:1f:de:a9:cf:77:a4:0c:2a:55:2d:cb:35:
9a:ab:78:4d:b1:cf:ff:97:78:f8:09:36:07:df:4c:
b5:a6:7f:10:a1:41:8e:7c:44:86:c9:51:78:5d:8e:
4f:3d:70:dd:b1:bc:d9:b7:74:64:db:d9:1b:96:d1:
9c:6f:2b:98:e5:25:7e:cd:c4:e0:17:62:28:85:8b:
02:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8B:71:90:60:B6:31:03:36:99:62:4D:89:9A:66:EF:88:1B:6B:49
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6otxkGC2MQM2mWJNiZpm74gba0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.39.0/24
Signature Algorithm: sha256WithRSAEncryption
70:2b:fc:ba:5c:a9:9f:84:25:c4:1c:71:2d:99:33:b0:0c:17:
c5:dd:91:0a:73:d3:23:78:17:65:10:d7:25:88:f7:1b:a9:18:
bb:d4:ad:03:13:f0:c6:ae:bb:95:25:bc:04:01:aa:73:e5:cb:
b8:49:ae:4d:1b:a7:76:d6:d0:72:3b:41:45:7a:39:6b:39:bf:
75:9f:da:ac:8c:17:74:76:78:17:ad:c5:f2:8a:2b:68:20:60:
11:36:27:46:e2:a7:8e:05:05:69:f2:e6:ed:7e:f3:22:c7:58:
14:0e:86:a0:df:93:0d:33:e8:2d:c3:c8:1d:3f:9b:97:2e:7f:
b0:57:0c:b3:f0:f9:29:50:ac:f0:9d:c0:95:e5:17:45:90:19:
e0:bc:a9:d2:c4:54:9c:6e:c6:ed:b2:5b:56:9a:e4:54:34:ad:
ce:c8:a9:ba:e7:71:2a:1e:1a:c1:3b:41:d4:96:45:7b:87:7c:
e3:6f:c4:7d:50:a1:1a:be:cf:8e:a8:ee:8b:b3:d2:87:93:00:
3e:78:8b:0d:65:b2:1d:ab:f7:61:24:8b:da:45:8e:c8:9e:2a:
6a:cd:38:21:b3:a3:da:0a:0d:11:21:c9:a7:3d:47:c1:a1:34:
88:45:c9:2e:e9:63:30:77:08:bc:f2:bb:72:43:14:39:5b:84:
11:71:15:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org