Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/oUorgzdgiCwQOjsB2kaEohbS2RM.roa
File: oUorgzdgiCwQOjsB2kaEohbS2RM.roa (raw, json)
Hash identifier: PljwO311hR0YcvlJgL/l8KEJvsTEL9HWlu6MaXrdQhQ=
Subject key identifier: A1:4A:2B:83:37:60:88:2C:10:3A:3B:01:DA:46:84:A2:16:D2:D9:13
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 01917AD989B9ED0C2C600994AE70E6B14ADD
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/oUorgzdgiCwQOjsB2kaEohbS2RM.roa
Signing time: Thu 22 Aug 2024 16:09:22 +0000
ROA not before: Thu 22 Aug 2024 16:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50284
IP address blocks: 88.151.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:d9:89:b9:ed:0c:2c:60:09:94:ae:70:e6:b1:4a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Aug 22 16:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a14a2b833760882c103a3b01da4684a216d2d913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:44:f6:17:6b:c3:e9:7c:4b:2f:ff:1f:06:64:
f6:81:75:02:4e:05:1a:a6:fc:9d:dd:4c:f4:cf:fb:
2d:54:dc:25:d7:3d:7d:48:53:30:1c:ae:6e:03:5c:
4c:56:4b:74:df:0e:e9:cb:73:e1:bf:a4:06:8b:98:
91:9d:7d:2f:25:4e:d8:6d:e3:2c:bc:54:60:f7:59:
4e:ec:b1:65:18:25:6e:99:eb:ae:e8:fb:c1:c4:ce:
85:34:19:52:28:71:33:23:cf:c6:58:be:32:2d:3f:
dd:6c:53:f6:5a:9e:53:d0:21:58:c4:3a:c6:b2:7c:
12:ea:92:d6:ab:a0:43:b4:5b:6d:c9:5d:47:93:8b:
f4:93:cb:f8:56:ec:b3:10:af:95:6f:22:54:fd:eb:
6e:57:89:04:e5:c7:6d:1b:da:12:f6:0d:53:b0:b1:
0a:50:d5:cf:97:7d:8d:87:76:6b:b7:81:be:50:b4:
e2:6e:7e:64:85:fe:8d:02:a6:81:12:03:3a:f9:53:
91:7c:7d:2c:32:af:62:c1:28:eb:c9:e1:b3:96:20:
24:6e:90:83:26:86:2a:96:05:76:96:4e:0d:5d:11:
c4:a1:bf:50:84:1a:b1:05:42:4e:c9:a1:ea:55:b6:
be:09:93:f5:d3:de:ef:03:d7:4e:68:d1:97:c2:16:
78:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:4A:2B:83:37:60:88:2C:10:3A:3B:01:DA:46:84:A2:16:D2:D9:13
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/oUorgzdgiCwQOjsB2kaEohbS2RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.117.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5b:58:42:ba:74:8e:91:c4:2e:e6:54:56:97:69:5c:b2:dc:
05:49:19:47:81:16:79:99:ee:fa:05:3e:33:4d:96:51:a4:ee:
c7:96:f2:e0:b5:c3:74:88:46:46:a1:36:63:28:1c:57:70:97:
4f:f7:e5:0d:8f:41:6b:79:b2:73:6c:5c:aa:54:7f:ce:20:b1:
0b:ed:d1:51:e9:ee:23:b5:9c:fd:fe:1c:e8:44:b3:78:c3:1d:
d6:e9:80:af:95:ea:8b:67:88:00:52:7c:64:8a:ec:03:82:be:
db:74:a0:9a:b1:07:d5:b5:bf:49:70:d4:c8:0a:dc:c6:f8:be:
fb:c3:34:b4:c0:0c:29:a4:84:ac:93:c5:2d:db:b2:b5:6f:68:
73:cd:40:e8:09:ef:a1:5e:2c:83:00:27:a5:c0:bd:2c:a3:8e:
39:38:57:4d:a2:80:0e:7c:98:81:08:c3:ae:9a:e4:56:b7:31:
65:d3:8c:30:17:92:f6:9b:ca:ff:8c:93:7e:b2:02:ba:ae:a8:
fb:42:8c:cf:56:3f:fb:fd:dc:50:2c:48:43:77:be:68:0f:ce:
88:b8:e4:5f:1f:0b:22:ca:b4:a8:c3:ac:fd:82:b4:dd:cf:03:
87:6d:e0:0e:12:e7:0d:ab:03:30:8d:f8:d0:2f:c7:6e:81:08:
a2:80:9f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:30 2025 by rpki-client