Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xmgXStJc0hIP51OS7VNiaGOkjVY.roa
File: xmgXStJc0hIP51OS7VNiaGOkjVY.roa (raw, json)
Hash identifier: 0fGZ9Ilnplogam1cVaaIXcG+XyLUOGKfk71zWetYvdY=
Subject key identifier: C6:68:17:4A:D2:5C:D2:12:0F:E7:53:92:ED:53:62:68:63:A4:8D:56
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018856FE953037CAC0A0E3245ADCDF5C7817
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xmgXStJc0hIP51OS7VNiaGOkjVY.roa
Signing time: Fri 26 May 2023 07:38:24 +0000
ROA not before: Fri 26 May 2023 07:38:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 88.216.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 20:21:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:fe:95:30:37:ca:c0:a0:e3:24:5a:dc:df:5c:78:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 26 07:38:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c668174ad25cd2120fe75392ed53626863a48d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ac:f9:97:ac:1d:8e:49:e6:61:67:13:3e:b0:
f4:6f:1b:81:60:b2:de:38:e7:f8:60:79:91:42:81:
af:fb:62:7c:a5:ce:9d:a4:b8:1d:1c:c5:b9:74:b1:
f0:d9:04:f5:60:f1:d4:1d:f3:9e:bf:76:98:8f:b3:
f5:bd:75:e0:d7:7a:5a:7d:c8:03:f8:2e:92:ca:2f:
78:95:c8:54:6f:d3:aa:34:02:98:2a:12:17:e5:1d:
c5:3b:69:f7:0c:16:45:44:89:2b:12:f8:5f:5b:b1:
eb:45:c6:ef:05:1b:46:99:5c:f7:0a:85:91:0e:d2:
e4:6c:b0:d4:79:90:37:14:68:48:09:f3:c0:0f:36:
02:16:51:eb:91:18:7f:7e:87:ed:3a:54:82:5d:f6:
7c:2e:82:9f:79:e2:b9:42:59:54:60:d8:6f:d8:0b:
40:1d:55:1c:2d:fc:9c:4b:61:90:f6:fc:a9:20:8f:
7b:49:fd:57:15:47:72:09:de:b4:d6:bf:81:c7:05:
04:3d:e4:66:a2:64:98:0d:17:6a:3f:2e:2f:da:92:
b9:1a:ac:cc:68:5e:67:e1:2c:98:7d:95:f5:cd:0e:
86:7a:73:99:fe:af:d7:25:55:57:8c:e5:60:a7:90:
ad:5a:89:49:7e:0a:30:a3:61:d6:1c:bf:34:d3:e2:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:68:17:4A:D2:5C:D2:12:0F:E7:53:92:ED:53:62:68:63:A4:8D:56
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xmgXStJc0hIP51OS7VNiaGOkjVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.181.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:5b:bf:21:c9:4f:c7:b2:14:1d:79:1e:14:96:02:bf:f3:07:
ea:3a:79:dc:8c:fd:68:3c:56:0e:48:a2:64:23:87:34:c4:db:
c8:eb:0f:f4:21:50:44:f0:9b:2c:69:a0:c4:3a:85:30:f0:af:
82:1e:27:b1:5f:91:e0:e3:5a:b9:23:87:e4:16:4e:ed:b0:43:
6b:42:60:a6:7f:49:35:55:57:62:e4:6b:5f:3f:63:a3:18:79:
84:44:34:63:f9:8a:5d:a5:08:6c:3e:1e:5a:bd:19:33:43:42:
a1:a3:5b:53:fb:af:06:14:b7:ac:a9:31:90:01:a3:40:c9:03:
74:ad:ab:9f:4d:47:1e:da:86:e9:dd:f7:40:6b:ae:44:5d:12:
1d:97:82:3b:af:cf:cf:21:45:9c:43:78:8e:3b:5c:e6:4e:79:
c1:fa:51:1c:5e:89:94:dc:3b:cd:60:0e:56:5c:60:89:5e:28:
57:6d:d5:95:7d:db:c6:77:f3:b6:46:a7:aa:34:96:fe:e6:fb:
f1:38:fc:6d:ab:ed:cd:9d:44:4f:26:76:08:7b:55:63:05:eb:
5f:66:c9:95:a1:33:3b:b2:89:8a:1a:12:63:d3:7a:4f:40:17:
17:c5:13:1c:f8:b4:83:63:84:14:54:88:96:85:a7:30:fb:cc:
3f:6d:e1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org