Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ejvoAiSf0inRiUX5E9lQio3u9hY.roa
File: ejvoAiSf0inRiUX5E9lQio3u9hY.roa (raw, json)
Hash identifier: ylFzte9EIdoorv2s3qKjusUA5LURBqAVj0LIsv6QrtY=
Subject key identifier: 7A:3B:E8:02:24:9F:D2:29:D1:89:45:F9:13:D9:50:8A:8D:EE:F6:16
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFD21AC4829412EEF4C3A9F11D1652
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ejvoAiSf0inRiUX5E9lQio3u9hY.roa
Signing time: Sun 01 Jan 2023 18:54:54 +0000
ROA not before: Sun 01 Jan 2023 18:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210443
IP address blocks: 88.216.186.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:d2:1a:c4:82:94:12:ee:f4:c3:a9:f1:1d:16:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a3be802249fd229d18945f913d9508a8deef616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:74:ce:bc:16:04:98:9b:d6:09:c1:d0:3b:bc:
8d:e8:77:ab:8b:8c:de:25:90:18:e8:a5:79:47:fd:
53:75:83:9d:ea:70:bb:e5:f0:9b:22:26:6c:04:04:
d9:ae:d8:21:7b:d4:55:e3:64:42:d8:e2:68:77:45:
47:a0:6e:52:2b:42:bb:9a:2f:ea:ba:16:dd:5f:a3:
f6:b9:c9:fd:96:c5:0a:6c:e7:a8:fd:c5:9d:51:6a:
99:4d:35:f2:2d:20:03:f1:4d:64:b3:50:54:21:fd:
3a:29:76:b4:61:1d:d2:1b:b7:bd:31:b7:fe:03:d4:
1d:8f:cf:32:20:c1:db:e1:28:5e:97:02:2d:9d:77:
91:13:1c:f0:a9:1a:46:37:31:51:ae:8e:5f:b9:ed:
28:cb:f8:de:73:f6:61:ec:b0:50:83:42:8a:af:ce:
d5:c7:e1:84:d8:32:fd:a2:eb:da:98:46:75:98:da:
5d:59:fe:9f:cf:fd:5b:14:f2:aa:0a:77:5a:80:bd:
08:7a:fe:6f:3a:9b:cd:86:f2:75:cb:5a:57:67:4e:
63:15:0b:c3:cc:f7:20:1c:fc:b6:b9:c2:e2:11:d8:
41:c4:ba:3a:1f:3c:a2:74:87:07:fa:79:8d:bc:10:
2c:d3:3a:9d:72:bd:aa:16:91:6a:c0:3f:2a:50:92:
aa:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3B:E8:02:24:9F:D2:29:D1:89:45:F9:13:D9:50:8A:8D:EE:F6:16
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ejvoAiSf0inRiUX5E9lQio3u9hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.186.0/23
Signature Algorithm: sha256WithRSAEncryption
37:94:56:22:5b:c0:fb:ca:9d:d1:8c:d4:72:8d:75:65:4d:ea:
3b:47:7c:b5:7d:f8:66:a4:7e:54:b6:3f:6e:cf:2f:18:3d:1d:
94:8d:be:6d:8c:03:ea:58:e5:90:dd:77:63:f9:c4:5a:0c:e7:
45:13:26:d9:4b:05:9e:2f:af:4c:82:bb:cb:c7:4a:79:f0:0b:
47:f8:80:ef:b8:c0:b2:db:7f:08:93:ce:50:5e:55:6f:8d:72:
c9:27:b7:27:7a:be:cd:fe:99:9b:68:f7:8d:30:60:01:28:93:
df:93:91:61:e7:fb:e3:0f:c1:fd:31:25:e1:b4:e2:1e:fa:51:
ab:b4:c7:7d:fc:5a:ca:7a:9e:55:b3:3d:c3:0e:ba:33:94:a3:
89:09:ac:eb:b7:d3:93:1d:b0:78:0a:00:69:54:49:54:1f:73:
25:b3:25:83:3f:d8:4d:66:ea:85:8d:50:9b:a8:ba:55:a7:6b:
2d:42:a7:89:7e:0f:50:74:74:ea:ad:5d:a7:04:af:de:e4:fc:
cc:4e:45:6e:5a:3a:c2:ce:6f:7d:41:ac:fd:19:6c:c1:90:5f:
cb:89:6a:8c:9f:52:76:ac:f2:ae:3d:5f:2d:95:44:ec:55:11:
41:8c:63:23:32:90:01:3c:e6:70:7e:be:7f:29:f8:ff:bf:ee:
36:82:49:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:34 2024 by rpki-client on console-fra.rpki-client.org