Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZCPDIhdAPDV_BHdygifZ9oVkwDY.roa
File: ZCPDIhdAPDV_BHdygifZ9oVkwDY.roa (raw, json)
Hash identifier: iV7BWQBrw5chpQYWN9f5psAn00Rbpbv878D7WZmVYig=
Subject key identifier: 64:23:C3:22:17:40:3C:35:7F:04:77:72:82:27:D9:F6:85:64:C0:36
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018BA9678F9257F6542EA340F9AFD2910E33
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZCPDIhdAPDV_BHdygifZ9oVkwDY.roa
Signing time: Tue 07 Nov 2023 10:50:18 +0000
ROA not before: Tue 07 Nov 2023 10:50:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 88.216.66.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:67:8f:92:57:f6:54:2e:a3:40:f9:af:d2:91:0e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Nov 7 10:50:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6423c32217403c357f0477728227d9f68564c036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:31:85:4e:b0:90:b6:65:1a:3f:85:11:50:10:
13:1b:d3:35:4f:4d:e1:51:22:5c:08:05:eb:3c:55:
5f:1d:1c:16:b2:ed:58:fb:07:79:e3:f3:1b:1b:da:
20:d4:43:0a:bc:17:c2:74:6e:8a:12:de:bd:30:61:
3e:2f:d5:b9:24:22:36:ae:6f:dc:b3:92:f8:80:d6:
a9:dc:7b:17:88:c8:1b:2e:75:a4:78:ae:6f:b3:af:
65:76:a2:d3:be:c7:b1:33:68:19:f2:e2:97:2a:1c:
b9:1a:81:b1:d7:a6:20:d0:f9:48:1e:3f:89:38:15:
5e:44:5c:c0:29:b9:6c:70:d2:3f:24:a2:2f:50:0e:
b2:07:69:1c:40:36:74:37:7f:18:fb:57:15:63:9a:
e8:e5:08:4e:90:7c:bf:a9:a4:a8:68:b1:06:4d:a5:
26:e2:6c:89:4e:ed:21:b9:da:80:bb:a7:86:8a:b7:
8e:bb:a3:15:ed:f5:1d:a6:0e:97:7e:4b:34:a5:90:
ac:40:cb:34:ae:de:dc:82:b8:8f:86:22:8c:30:fe:
c6:78:75:98:0d:40:4b:40:80:15:23:82:bd:4b:56:
b4:58:6d:23:d8:6f:ad:b2:d3:8d:db:9d:84:d9:8f:
2c:cd:4d:f5:ee:01:e1:56:65:53:e5:bb:35:95:b9:
68:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:23:C3:22:17:40:3C:35:7F:04:77:72:82:27:D9:F6:85:64:C0:36
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZCPDIhdAPDV_BHdygifZ9oVkwDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.66.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:57:52:82:7f:6d:98:ba:9f:89:33:b3:5a:0f:d5:30:66:62:
9f:2c:5e:c3:2b:b1:f0:dc:2d:42:fc:ef:9e:4e:89:0a:6f:68:
9f:df:61:99:5e:5c:34:d3:85:08:32:3f:8d:2b:68:7a:7c:79:
95:27:e4:ef:27:1e:e0:51:5e:80:a8:4e:8a:6e:20:6d:1a:1d:
5b:fd:ac:fe:0e:8d:ce:9b:f6:72:2e:cc:3d:c9:85:8b:01:08:
04:7b:3c:aa:f9:3e:27:95:eb:89:c1:d8:cc:24:34:f7:f4:0c:
38:2a:21:e4:24:8e:f3:9f:70:60:21:85:00:96:e6:a4:fc:64:
df:ec:53:a5:c9:eb:ef:c9:59:9b:72:29:35:2a:53:97:4f:ad:
f9:e9:3e:2b:f7:2c:82:e3:ab:75:e0:cd:dd:9c:b8:21:6d:e4:
1c:ae:3d:0b:65:8b:5f:8e:e3:9b:80:91:d7:e7:95:b3:e9:1e:
f5:e0:21:31:c7:74:b7:18:e1:58:fb:3c:f6:72:80:4c:c8:cd:
f8:32:79:e6:aa:41:89:9f:76:a0:af:9c:f9:f0:c1:5f:e2:87:
a4:ec:6e:57:44:df:85:8d:44:d8:d9:3a:ab:d4:ec:94:fa:c7:
67:76:20:f7:3a:2a:42:f8:f0:d6:b4:8d:39:44:1c:66:b4:ef:
7e:42:a6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org