Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/kgus6vVTkN70DYdemKF5AgN8110.roa
File: kgus6vVTkN70DYdemKF5AgN8110.roa (raw, json)
Hash identifier: V3BIJltn3+bnQXg+6aBbEBdL9BEAW39Nm8Gj5YJhzXs=
Subject key identifier: 92:0B:AC:EA:F5:53:90:DE:F4:0D:87:5E:98:A1:79:02:03:7C:D7:5D
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018737DFECABE02F0A7F26BB7A15144728EE
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/kgus6vVTkN70DYdemKF5AgN8110.roa
Signing time: Fri 31 Mar 2023 13:33:54 +0000
ROA not before: Fri 31 Mar 2023 13:33:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 88.216.228.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:df:ec:ab:e0:2f:0a:7f:26:bb:7a:15:14:47:28:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 31 13:33:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=920baceaf55390def40d875e98a17902037cd75d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:78:14:22:64:0d:68:9e:37:43:6f:00:ce:9c:
0d:aa:6b:3b:fe:40:95:83:60:3a:97:83:5d:3c:cd:
57:02:ca:54:31:37:db:40:85:81:7e:51:dd:fb:0c:
6b:f8:56:73:8c:ff:d6:74:85:fa:72:00:45:7e:23:
4c:e8:5c:32:cc:e6:2b:e8:a0:91:24:db:9e:79:ac:
ef:36:d3:79:6d:2d:c1:0c:b3:b0:c6:90:12:ed:b9:
09:0d:35:e8:c3:39:c2:4e:89:c6:f6:24:c4:82:55:
2e:29:07:81:f5:d1:6d:77:8b:62:4c:88:83:23:85:
38:22:cd:3c:43:6b:7e:f0:a2:26:7a:6e:cb:1c:25:
7d:06:5f:74:cc:00:91:16:db:1a:a9:cd:b0:03:46:
33:93:1c:f3:fa:77:d2:43:e7:bd:4c:c1:04:10:f6:
8e:df:63:6a:96:22:d2:7a:d9:e1:9c:89:f6:e3:a9:
98:43:7e:ee:b7:74:f7:ee:1d:8a:1e:45:84:de:38:
7a:67:1e:7f:4f:7a:b5:c6:47:5f:57:12:2c:b7:d8:
e7:8f:09:27:06:be:89:1c:46:47:eb:01:49:92:9c:
02:fb:ce:0a:13:dd:13:56:4a:fe:e0:80:0e:52:1d:
b6:08:7e:9d:90:5b:00:01:44:0b:08:d1:fa:89:08:
cb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0B:AC:EA:F5:53:90:DE:F4:0D:87:5E:98:A1:79:02:03:7C:D7:5D
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/kgus6vVTkN70DYdemKF5AgN8110.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.228.0/22
Signature Algorithm: sha256WithRSAEncryption
74:43:24:79:cb:03:01:b1:0f:c5:5f:f2:d7:22:01:d9:71:95:
d4:3d:4f:99:4b:ad:17:14:88:c9:5e:01:d3:5e:9f:bb:fc:31:
11:74:00:ee:49:10:66:90:b5:14:b3:00:e7:ae:75:9d:25:8b:
df:ec:40:a5:4a:72:e9:0f:f7:53:96:0c:46:4f:a2:9b:c3:f0:
14:d9:93:6b:20:61:ea:d9:d4:98:df:39:e4:dc:1b:ed:c2:1a:
ca:15:18:98:02:c1:33:21:e1:9c:ea:04:42:fe:43:1f:fb:7f:
15:b0:87:7c:c0:9b:53:90:0d:ae:13:da:29:56:91:6b:6a:bd:
cb:38:e1:b7:3b:a7:9d:63:f0:ad:c8:83:b5:22:c5:0b:af:37:
73:94:0d:f2:fd:25:8d:1f:08:0f:fc:14:4f:ff:a0:ad:92:69:
3b:f5:65:eb:2a:66:46:78:88:8c:33:14:20:2b:a9:c4:93:11:
58:cf:46:6d:6c:2b:50:be:06:24:54:cc:6c:06:44:a7:27:27:
22:44:25:e7:23:e1:c1:fc:81:12:17:11:32:fe:a7:12:8c:90:
46:7c:00:0b:4d:b0:42:cb:9d:83:46:79:db:76:6b:cb:08:38:
8d:26:43:1b:32:20:41:3b:cc:be:dc:37:0f:d5:4b:12:6e:dd:
c3:b2:08:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:50 2023 by rpki-client on console-fra.rpki-client.org