Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/3b0tr-mp1xas4yhVQn9Rn9e5kxo.roa
File: 3b0tr-mp1xas4yhVQn9Rn9e5kxo.roa (raw, json)
Hash identifier: 8V/Wzuwlz8L1JMRNpdlDCbiYR7hm/NbYVqGRY6sa2So=
Subject key identifier: DD:BD:2D:AF:E9:A9:D7:16:AC:E3:28:55:42:7F:51:9F:D7:B9:93:1A
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018DB0DB0C3E7503A4DE45425F0ED13C0EC1
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/3b0tr-mp1xas4yhVQn9Rn9e5kxo.roa
Signing time: Fri 16 Feb 2024 07:39:21 +0000
ROA not before: Fri 16 Feb 2024 07:39:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
88.218.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 11:53:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b0:db:0c:3e:75:03:a4:de:45:42:5f:0e:d1:3c:0e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Feb 16 07:39:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ddbd2dafe9a9d716ace32855427f519fd7b9931a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a6:0b:58:8e:bd:94:d8:cc:0a:bd:51:fd:1e:
20:59:b3:ec:16:ce:71:b4:a1:4c:dd:d0:21:b6:5c:
e1:ca:39:36:4c:54:7c:63:bf:7a:38:66:8a:66:12:
30:bc:3f:ba:0d:41:34:d6:ac:b5:4a:73:29:fd:c8:
68:ef:fc:91:35:b8:97:f7:4c:18:d9:2d:a8:3e:d4:
f5:87:9e:35:3c:8a:fb:9f:37:54:dd:c7:c9:74:2a:
cb:01:a2:9d:58:a9:c1:97:5d:38:94:39:9f:e9:08:
ff:44:e5:81:eb:49:f8:aa:f7:c3:bb:8a:28:49:86:
80:f7:83:24:95:a5:e1:fc:09:90:84:9a:12:44:4c:
ef:72:ba:53:26:2b:e9:e5:3b:94:f3:ce:8b:77:b2:
f8:af:2d:a7:f3:24:15:d3:2a:1e:19:29:1e:6b:1f:
02:2a:aa:ae:67:17:48:4c:fd:db:33:eb:a7:2f:76:
9d:9c:1d:31:61:1d:32:c1:40:09:66:81:d2:bf:48:
b6:ad:21:f0:c0:8e:aa:96:7a:0b:72:c1:2b:17:60:
39:e6:b3:d9:c8:c4:88:93:ef:07:2f:00:fe:8c:09:
17:da:26:50:23:c1:74:17:d6:84:59:8e:ef:ad:26:
99:6c:c0:8f:8b:64:83:6d:d8:dc:eb:94:42:13:af:
50:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BD:2D:AF:E9:A9:D7:16:AC:E3:28:55:42:7F:51:9F:D7:B9:93:1A
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/3b0tr-mp1xas4yhVQn9Rn9e5kxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:79:f3:92:43:60:df:d4:3e:89:22:41:ee:57:8a:95:3e:5b:
3a:2f:4f:6a:12:5d:0b:57:6a:14:40:15:ad:c3:10:12:24:4f:
6a:0f:01:fd:27:54:f9:0e:93:d0:91:91:3e:8a:f5:fe:96:86:
28:b1:81:59:7a:82:0b:00:c7:95:44:28:97:05:54:24:20:f3:
09:6e:2a:d2:dc:47:03:be:47:0e:9e:d0:f3:65:dc:b6:55:99:
4c:45:05:ba:ef:9d:ee:5b:ee:9b:64:84:33:75:9e:ac:4f:59:
e0:28:73:63:3a:93:b3:83:84:c0:31:87:5a:61:91:b1:5b:c5:
8d:31:84:55:68:b2:03:ee:52:a3:a3:d8:18:7e:dc:07:26:30:
55:9f:1a:a4:7b:3d:ec:c5:68:2e:bf:f9:46:c4:fe:d3:19:3a:
c6:a0:fa:8a:90:e9:1d:19:1f:7e:c2:34:b3:ec:ae:9f:66:e5:
86:a1:a2:e4:3d:67:df:24:6d:6b:d9:c9:3f:f0:31:bb:76:13:
30:a3:c6:b9:0d:ac:5a:d4:dd:26:66:45:3e:32:3d:5c:c7:a4:
5b:74:ec:67:7a:75:45:75:ba:c7:c7:d7:d4:12:5e:bb:af:ff:
c5:cb:49:24:86:59:ee:f6:3c:cd:a6:c2:60:4f:7e:fa:d1:6b:
30:64:f1:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2w2ww+dQOk3kVCXw7RPA7BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjODkyYWVkMzgzM2U2MTAwZjVlMGNmMTIyNzFmZDgwYjc1
NWMzNjEwHhcNMjQwMjE2MDczOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGJkMmRhZmU5YTlkNzE2YWNlMzI4NTU0MjdmNTE5ZmQ3Yjk5MzFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6YLWI69lNjMCr1R/R4gWbPsFs5x
tKFM3dAhtlzhyjk2TFR8Y796OGaKZhIwvD+6DUE01qy1SnMp/cho7/yRNbiX90wY
2S2oPtT1h541PIr7nzdU3cfJdCrLAaKdWKnBl104lDmf6Qj/ROWB60n4qvfDu4oo
SYaA94MklaXh/AmQhJoSREzvcrpTJivp5TuU886Ld7L4ry2n8yQV0yoeGSkeax8C
KqquZxdITP3bM+unL3adnB0xYR0ywUAJZoHSv0i2rSHwwI6qlnoLcsErF2A55rPZ
yMSIk+8HLwD+jAkX2iZQI8F0F9aEWY7vrSaZbMCPi2SDbdjc65RCE69QewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN29La/pqdcWrOMoVUJ/UZ/XuZMaMB8GA1UdIwQY
MBaAFFyJKu04M+YQD14M8SJx/YC3VcNhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2Ut
M2FhN2RhYTlkM2VjLzEvM2IwdHItbXAxeGFzNHloVlFuOVJuOWU1a3hvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2UtM2FhN2RhYTlkM2Vj
LzEvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWNoqMA0G
CSqGSIb3DQEBCwUAA4IBAQAfefOSQ2Df1D6JIkHuV4qVPls6L09qEl0LV2oUQBWt
wxASJE9qDwH9J1T5DpPQkZE+ivX+loYosYFZeoILAMeVRCiXBVQkIPMJbirS3EcD
vkcOntDzZdy2VZlMRQW6753uW+6bZIQzdZ6sT1ngKHNjOpOzg4TAMYdaYZGxW8WN
MYRVaLID7lKjo9gYftwHJjBVnxqkez3sxWguv/lGxP7TGTrGoPqKkOkdGR9+wjSz
7K6fZuWGoaLkPWffJG1r2ck/8DG7dhMwo8a5Daxa1N0mZkU+Mj1cx6RbdOxnenVF
dbrHx9fUEl67r//Fy0kkhlnu9jzNpsJgT3760WswZPH5
-----END CERTIFICATE-----
Generated at Mon Feb 19 15:21:40 2024 by rpki-client on console-fra.rpki-client.org