Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/4gfqGqQIGt6fyoPz5OgnER_zj8E.roa
File: 4gfqGqQIGt6fyoPz5OgnER_zj8E.roa (raw, json)
Hash identifier: FMijVg87UUPRY6gLFa/4rcR/iU1ACb34XMA66WQLZC0=
Subject key identifier: E2:07:EA:1A:A4:08:1A:DE:9F:CA:83:F3:E4:E8:27:11:1F:F3:8F:C1
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018D162AB6610ED26C271AA58CA91D135232
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/4gfqGqQIGt6fyoPz5OgnER_zj8E.roa
Signing time: Wed 17 Jan 2024 06:45:14 +0000
ROA not before: Wed 17 Jan 2024 06:45:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 88.218.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 07:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:2a:b6:61:0e:d2:6c:27:1a:a5:8c:a9:1d:13:52:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 17 06:45:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e207ea1aa4081ade9fca83f3e4e827111ff38fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8d:a5:b2:20:81:95:37:14:d6:78:c8:5d:cd:
78:fd:c5:25:8c:f6:21:87:a3:03:ab:23:ed:0e:16:
49:e5:6a:32:1d:0f:44:85:5d:26:bc:13:9f:ce:cd:
a5:d1:7b:10:3a:30:30:35:a3:c2:9e:ab:d5:a0:89:
96:85:c9:7a:ea:31:d7:e4:53:b0:0a:d6:76:1b:f8:
d4:e0:3d:c7:68:f4:cd:fe:00:8f:2e:f9:5a:de:78:
93:32:52:e4:f1:c4:df:9b:26:c2:24:01:c2:52:4c:
81:ea:ce:0b:62:57:fb:c8:b6:00:12:98:1a:9b:ea:
69:9c:a5:33:79:58:9c:d5:72:54:59:82:c7:85:8e:
ec:29:a4:3c:54:eb:46:7a:39:8d:91:f0:74:ce:7b:
8c:bb:3e:3b:78:2d:2f:c8:b5:d9:c9:9d:64:a4:4c:
f5:7a:a9:7a:e2:9c:57:a3:78:1a:bc:14:61:d6:a0:
a7:d0:28:ce:90:21:95:ae:d5:24:83:0a:26:33:f9:
43:3b:0c:dc:ff:39:62:77:e7:5e:a9:67:88:2c:98:
ba:89:ca:a4:06:6b:58:c7:0e:3e:91:b3:3c:27:b9:
45:8f:3b:e9:ab:91:4d:45:bf:48:1e:58:e0:06:61:
d1:a2:c1:8e:66:d6:e7:c2:14:01:3c:9f:a0:cc:b7:
41:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:07:EA:1A:A4:08:1A:DE:9F:CA:83:F3:E4:E8:27:11:1F:F3:8F:C1
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/4gfqGqQIGt6fyoPz5OgnER_zj8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.43.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:b1:96:f1:52:81:a8:f8:1f:d4:2a:e9:24:26:02:72:8a:4e:
94:26:be:fd:f1:e5:0e:dc:f8:23:ac:84:09:3b:1a:52:68:5b:
1f:30:b9:3e:a5:b5:27:d0:f8:bc:99:40:31:41:24:0a:6e:24:
38:58:ff:39:b6:ef:fc:df:fd:20:15:45:83:40:88:b6:ba:e7:
5a:ba:83:57:64:5d:71:3d:c8:a1:8f:ab:c1:47:b4:a8:6c:ed:
9d:78:09:86:11:da:6e:c9:09:61:0f:98:ed:55:bc:01:f7:73:
93:4f:f5:19:72:8b:0c:ad:fd:48:c7:a9:a2:fe:e0:96:3c:50:
ae:8d:48:82:72:3f:79:0c:97:1f:f6:b7:fe:a2:c6:5b:e1:24:
11:f9:24:37:91:78:4b:e3:5c:76:7e:32:f7:1c:0f:91:a0:f7:
4b:5f:8b:c0:e8:a9:f4:fc:0f:2f:51:16:64:b9:16:b9:c0:ea:
b0:0a:b5:5f:ea:c0:a1:fd:27:15:35:56:2f:e7:da:05:ce:40:
ae:8e:eb:0b:c3:cc:23:f6:75:d0:bc:cf:32:8d:81:3a:7a:a8:
66:de:0e:95:23:98:03:59:b6:5f:59:06:c3:ca:a7:d6:0f:10:
fc:c6:be:1b:f0:a6:5a:2d:db:3f:2f:cb:e9:c0:2e:dd:30:d5:
69:83:7f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org