Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/W85mqe_gqjbnoOGNCoQrb6K9ixE.roa
File: W85mqe_gqjbnoOGNCoQrb6K9ixE.roa (raw, json)
Hash identifier: S/xtg835Kc88dT5G+C6cXcFjCwjdfAscpFCBd6qQRhg=
Subject key identifier: 5B:CE:66:A9:EF:E0:AA:36:E7:A0:E1:8D:0A:84:2B:6F:A2:BD:8B:11
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188DC5D0959256E7E2492D22D9ADF8A062F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/W85mqe_gqjbnoOGNCoQrb6K9ixE.roa
Signing time: Wed 21 Jun 2023 05:11:04 +0000
ROA not before: Wed 21 Jun 2023 05:11:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41095
IP address blocks: 88.216.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dc:5d:09:59:25:6e:7e:24:92:d2:2d:9a:df:8a:06:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 21 05:11:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bce66a9efe0aa36e7a0e18d0a842b6fa2bd8b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d8:4e:de:48:ce:0e:19:a5:5f:c9:67:fd:81:
97:07:97:aa:6f:ee:b5:19:6c:c1:ed:4a:af:95:e6:
f3:95:3a:fa:a6:ba:42:cd:b8:50:19:da:ad:04:05:
33:9d:85:ed:4d:da:44:9b:a0:a0:8c:a6:db:cd:da:
da:2f:fc:81:e2:45:43:1f:8f:4a:07:11:15:1a:3b:
47:6d:1c:81:f9:c6:20:50:27:fd:14:5a:1e:45:c4:
d9:cd:8f:b6:19:96:98:4c:b7:60:c1:40:94:7b:f6:
c4:5e:0d:58:e7:45:b3:d4:4d:31:26:ab:25:41:8c:
ed:13:34:ae:d2:85:a3:77:db:60:93:8b:c4:de:0e:
7e:0e:92:41:f6:76:35:84:d1:f0:01:9a:fd:1f:fc:
be:7c:e0:49:d4:eb:71:04:44:36:f8:a9:66:97:1e:
2e:25:8c:4e:7e:8d:d7:a3:87:cd:f4:88:35:85:da:
19:f6:08:bd:a6:e3:a3:00:8f:78:bd:b7:b7:42:62:
ae:c4:0c:e1:ee:53:33:ca:7f:de:9d:bf:d3:d8:2b:
51:20:56:4b:b6:20:b7:79:55:90:ad:2d:2b:d8:37:
2a:ee:8d:dd:6e:6b:9d:d6:ad:84:d4:0c:f2:01:fc:
32:1b:17:d0:0c:ac:e4:51:5b:2f:68:a4:bf:4a:7b:
29:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:CE:66:A9:EF:E0:AA:36:E7:A0:E1:8D:0A:84:2B:6F:A2:BD:8B:11
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/W85mqe_gqjbnoOGNCoQrb6K9ixE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.199.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:41:7d:0a:b0:96:44:8e:93:0f:7c:28:ac:4d:ab:6e:0f:3d:
88:67:82:41:24:d3:dd:60:87:53:1f:65:67:1d:12:c4:86:bd:
3d:1e:7b:6c:9c:4b:68:26:d4:39:4b:dc:bc:3a:06:27:e1:a5:
e1:be:51:07:66:80:12:f4:6d:1a:bc:8b:94:50:2e:ed:fb:b1:
b1:ce:83:6e:c8:43:4c:d4:06:4c:cf:54:d5:09:97:7b:a2:f1:
16:c3:5f:60:0f:28:76:08:6b:b2:e9:f5:19:e1:30:d7:69:cb:
5d:dc:7d:2d:25:94:ad:4d:25:a1:6f:fc:5f:94:95:f1:92:2b:
12:59:2c:73:20:32:4c:d3:96:43:19:e9:a4:0b:b6:d1:35:00:
fe:53:c6:41:9b:3d:36:7d:0c:42:a6:de:96:36:b4:68:5e:bc:
34:e9:3f:79:a3:f1:a6:f1:d5:d1:8a:04:c5:1a:a5:2f:af:34:
37:a2:9b:b1:6c:56:7e:33:c4:ff:dd:b9:c0:e3:84:89:f3:06:
e5:b2:15:af:1a:45:62:ca:0a:5b:5d:17:62:3d:ae:ad:be:fc:
a7:05:93:b1:78:f1:25:3f:da:2e:1f:ba:fa:06:6a:6e:80:8b:
ab:94:29:52:76:0d:86:c7:b7:7d:44:b5:18:ca:81:1a:dd:82:
b1:b9:1d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org