Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/q32A_431Ib85KrLww915QjyBFQM.roa
File: q32A_431Ib85KrLww915QjyBFQM.roa (raw, json)
Hash identifier: lEfmRU3wKOrBgebJ4T7NTPxDremAV/jC1d8+1hWIKI8=
Subject key identifier: AB:7D:80:FF:8D:F5:21:BF:39:2A:B2:F0:C3:DD:79:42:3C:81:15:03
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018856FE95E924EE45598244A71EEA14E1F1
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/q32A_431Ib85KrLww915QjyBFQM.roa
Signing time: Fri 26 May 2023 07:38:25 +0000
ROA not before: Fri 26 May 2023 07:38:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30058
IP address blocks: 88.216.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 20:21:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:fe:95:e9:24:ee:45:59:82:44:a7:1e:ea:14:e1:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 26 07:38:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab7d80ff8df521bf392ab2f0c3dd79423c811503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3b:b3:91:41:d0:fd:5e:c0:3b:ad:39:f4:a4:
0e:67:9d:3d:ec:dc:90:49:9b:28:2a:be:bb:8b:21:
fc:31:c1:e5:f5:8c:e7:f4:b1:cb:4b:47:15:28:aa:
0d:6e:a3:fd:d1:cb:3b:f7:b0:87:71:84:76:c5:1d:
c5:23:7f:bf:65:16:96:f5:a4:4a:8d:49:55:a1:f0:
53:cd:30:c0:fc:6e:58:dc:28:f4:c9:63:31:74:6c:
db:18:b7:b2:ce:52:08:4c:b9:57:a9:15:c1:b2:49:
e5:f8:fe:77:d7:c3:24:0a:70:51:5e:8a:fc:9b:d9:
39:43:90:58:0a:eb:02:95:88:eb:84:10:94:63:27:
e0:af:13:ba:3f:fb:64:99:73:d4:16:53:1e:e0:7e:
53:53:69:4b:af:b0:a0:14:d3:26:ad:28:5e:40:a5:
8f:ff:86:d0:4f:67:c7:ab:39:a1:f5:d1:db:c1:a5:
f5:2a:d3:88:f5:f3:c9:9e:3f:8d:4d:2f:6a:56:c9:
aa:41:f8:3e:b8:d0:f0:30:71:89:7c:05:f9:43:0a:
89:a9:6d:61:30:54:d7:c5:ae:ff:3b:e5:55:9f:ed:
e1:34:c4:a0:e0:66:b6:b9:22:92:fa:ce:19:c1:12:
7c:af:f6:f5:4c:5c:14:77:73:08:0b:3d:16:7e:17:
25:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:80:FF:8D:F5:21:BF:39:2A:B2:F0:C3:DD:79:42:3C:81:15:03
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/q32A_431Ib85KrLww915QjyBFQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.181.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8e:74:bc:c4:6f:61:6c:27:7c:59:03:2b:72:0d:24:fe:e7:
f9:64:5d:ec:a8:da:f9:ab:20:9b:a7:0a:3a:1a:52:1a:38:fe:
0f:b9:75:b8:78:24:b2:de:e2:e8:24:22:6d:4e:e1:af:a1:09:
20:cf:d0:cb:37:7a:c9:62:33:c1:79:cd:ca:8e:a4:49:76:c6:
4d:97:42:ce:78:e5:58:18:6c:27:f2:e5:38:a0:dc:de:e8:98:
9b:59:8e:bc:0b:60:6a:f2:97:b4:b5:c7:29:59:f2:a8:93:a3:
a9:1b:18:ce:4c:cb:f9:cb:09:0a:fd:b5:f8:a7:3d:95:41:b6:
88:49:1a:48:a4:01:4e:70:c9:51:52:e7:6a:01:df:23:38:a4:
0b:2f:57:23:fc:b7:49:c2:ba:ac:f0:1c:72:df:a0:0a:84:40:
16:01:98:c8:db:6d:b8:60:d9:47:7d:fc:ff:97:2a:a4:8c:19:
b3:ac:99:b5:90:c7:e3:3a:8b:df:b1:ce:c4:34:4e:45:3a:b7:
68:28:4f:8b:6b:ca:0f:31:23:a2:0e:db:23:6c:e6:1a:43:8a:
20:04:ee:4b:5d:75:4f:39:14:37:ba:22:1d:16:a0:b0:30:3c:
e4:64:dc:64:89:69:94:15:2e:04:7e:5c:85:a4:56:5c:3b:e3:
87:66:68:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org