Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/0YrXI1Pj2UOA2gkmzFtffZko9GI.roa
File: 0YrXI1Pj2UOA2gkmzFtffZko9GI.roa (raw, json)
Hash identifier: uHDmHcL6zSQfTcMqsovH2FnJ20LJudGVFpwckARykF0=
Subject key identifier: D1:8A:D7:23:53:E3:D9:43:80:DA:09:26:CC:5B:5F:7D:99:28:F4:62
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0192D28EF493EA2806E113DAC90220AC5DED
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/0YrXI1Pj2UOA2gkmzFtffZko9GI.roa
Signing time: Mon 28 Oct 2024 09:57:16 +0000
ROA not before: Mon 28 Oct 2024 09:57:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Nov 2024 09:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d2:8e:f4:93:ea:28:06:e1:13:da:c9:02:20:ac:5d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Oct 28 09:57:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d18ad72353e3d94380da0926cc5b5f7d9928f462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0d:b8:9c:90:f7:4d:07:26:b5:c5:94:4e:5f:
f2:a5:3d:3c:22:8c:0f:0c:66:55:b3:91:6e:bd:6e:
b2:91:84:40:d0:cd:d5:a3:15:6d:f0:01:38:3b:df:
d2:c1:a9:6b:c1:73:85:62:04:04:37:6c:65:75:c8:
0c:f8:75:89:1a:58:63:2f:49:7b:af:d0:ba:4f:13:
1f:80:5a:8e:4d:76:df:e6:bc:af:84:2d:24:b8:0f:
e1:26:1b:32:e3:6a:d5:c4:79:c9:17:fd:4e:a3:b5:
3e:06:0c:75:5b:85:ba:c2:97:d6:e8:6a:70:cc:b2:
46:90:d3:b5:0b:9a:74:20:a9:df:f8:98:2c:f8:5c:
aa:9d:c2:20:b4:6f:75:25:0c:55:84:26:d3:d1:18:
60:e8:43:aa:b6:2b:0f:52:b3:37:f6:f3:e4:db:96:
7d:c4:3f:21:c0:74:02:34:c0:fc:05:0b:fc:cf:e9:
6c:ae:36:f1:2b:4b:69:79:4d:c0:73:be:18:d8:52:
f0:e9:6c:67:5d:10:f6:44:e9:8f:96:a8:32:ef:a5:
c7:8e:ff:63:1e:30:e1:f4:ec:9c:39:65:69:17:e7:
a1:b6:0d:87:2f:17:15:ed:50:b3:1d:09:19:0c:6c:
a3:60:d6:d9:7b:88:0a:e7:71:2b:77:1f:f9:21:e9:
a0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8A:D7:23:53:E3:D9:43:80:DA:09:26:CC:5B:5F:7D:99:28:F4:62
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/0YrXI1Pj2UOA2gkmzFtffZko9GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:d1:4f:ea:52:e6:d1:18:8d:3f:ac:2d:a5:ac:9b:43:0a:15:
13:8b:fe:0b:c6:ec:e7:23:62:32:0c:9d:46:23:a8:9f:87:62:
b4:d8:7c:c6:7d:00:5b:77:0f:19:27:f3:3d:ba:94:a8:40:58:
0a:1b:72:82:60:83:01:78:61:71:2f:76:e8:e9:09:d0:82:cc:
ea:03:ae:84:ae:fd:5f:6b:24:40:16:af:ad:ea:da:95:88:02:
4c:c8:f4:1e:82:2a:26:13:2c:2b:78:42:2c:95:5b:8f:ea:bc:
a9:44:36:3f:53:3a:72:95:72:f8:cb:46:11:df:bb:79:ee:c0:
63:33:c5:ed:d5:09:ef:98:63:86:1c:2e:7b:cb:21:67:aa:bc:
ff:90:d1:2e:48:dc:23:77:ef:a3:21:42:15:91:05:4e:13:e6:
8f:a0:c0:89:c2:c8:f3:25:ec:9c:67:36:18:0b:b3:ce:9e:da:
bc:78:0c:66:59:77:ad:36:37:2c:4f:3c:20:78:93:b4:8b:69:
da:70:da:0b:9a:13:ab:50:a4:85:3e:93:e4:65:c3:ff:c0:75:
f0:61:d6:36:61:ac:3c:4e:bf:f3:58:cb:ba:14:7d:cf:ce:34:
d6:b2:df:d3:8c:ae:0d:97:e8:b6:ef:41:bc:83:00:3d:55:ce:
2b:87:8f:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:47:32 2025 by rpki-client