Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5P6BSu7oaR89t8F6UXOuOaNGk_0.roa
File: 5P6BSu7oaR89t8F6UXOuOaNGk_0.roa (raw, json)
Hash identifier: A/Bfd6knSd69+VJg5WTfBNavDf0UJ4fStqYD6U4QDsM=
Subject key identifier: E4:FE:81:4A:EE:E8:69:1F:3D:B7:C1:7A:51:73:AE:39:A3:46:93:FD
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018DC136AB915012BA614C34981FE1F1E461
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5P6BSu7oaR89t8F6UXOuOaNGk_0.roa
Signing time: Mon 19 Feb 2024 11:53:22 +0000
ROA not before: Mon 19 Feb 2024 11:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 88.218.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 13:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:36:ab:91:50:12:ba:61:4c:34:98:1f:e1:f1:e4:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Feb 19 11:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4fe814aeee8691f3db7c17a5173ae39a34693fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5c:9f:b3:ac:4d:f9:ee:9b:51:08:1a:f4:63:
32:8b:50:bb:ee:2a:05:b6:da:bc:0d:c0:7b:e0:cc:
9f:b0:b7:69:44:e2:7e:bd:6f:ce:68:d3:d7:43:9a:
79:74:62:4c:18:98:b9:49:4c:d4:97:44:c7:72:e1:
51:19:f6:eb:d2:68:80:ad:0e:fb:a4:d4:7a:20:f4:
b7:eb:8d:c3:30:05:38:ce:55:57:b3:3c:b0:36:08:
af:c8:68:fa:28:f9:db:e6:23:81:bc:17:85:3c:bb:
08:dd:98:91:8e:18:09:ca:ee:a3:2b:c6:d5:42:be:
b6:b6:89:49:bd:24:de:60:74:ef:8e:a2:61:7c:c2:
d9:30:46:db:87:b2:b3:29:50:35:02:d8:d8:e7:2e:
b0:4e:fa:cb:ef:41:5c:fb:90:19:79:26:f6:55:61:
b7:f7:50:a6:5b:e0:42:a4:13:34:1e:68:79:81:32:
70:f0:24:a3:70:4e:c9:27:d5:f0:2a:3a:eb:08:5d:
cf:b2:9c:84:dc:d5:eb:8a:7d:39:ba:00:42:97:b6:
30:d3:5b:83:1e:3e:0f:98:12:86:00:18:69:b4:9f:
25:6f:f0:60:a0:80:4f:05:8e:1f:c3:9d:34:8b:68:
e9:01:4b:c0:fd:ab:69:7e:15:b9:64:83:be:cf:32:
87:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FE:81:4A:EE:E8:69:1F:3D:B7:C1:7A:51:73:AE:39:A3:46:93:FD
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/5P6BSu7oaR89t8F6UXOuOaNGk_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.43.0/24
Signature Algorithm: sha256WithRSAEncryption
09:9e:4b:e8:dd:a4:26:80:f6:37:43:57:12:8d:be:9b:1b:6d:
e6:d1:9f:ea:61:2d:b8:85:31:48:58:ee:41:b7:39:f5:1f:30:
8f:7f:62:e0:d5:5f:89:be:26:94:46:14:58:8f:02:e0:29:b0:
09:04:22:b5:2f:7e:f7:6d:31:36:e6:35:54:5f:ff:0e:98:ec:
75:6a:17:4f:82:08:ff:8b:18:d8:8a:11:13:26:7d:64:64:03:
7b:f7:d2:2d:e3:5c:93:2b:0a:d1:83:f9:af:e0:0d:b7:2d:14:
a3:f7:f7:d8:35:e8:59:92:83:b3:d1:79:43:06:4a:04:59:53:
81:ca:70:34:d6:39:df:d0:20:6a:83:e9:3d:58:98:6a:ba:d0:
be:5f:8a:bf:24:f3:83:20:05:68:eb:f7:b2:8c:e8:e4:d8:b8:
b2:f4:db:98:44:67:6a:4f:e7:d2:8c:f7:79:2f:f1:e7:18:b4:
fb:bd:56:cd:ce:46:7f:57:2e:0b:53:ee:24:35:47:29:1e:9c:
f2:3b:bb:24:96:0d:0f:c8:90:7f:48:c9:d1:95:b8:50:32:2c:
e2:cd:c8:15:a0:00:52:2d:90:e2:8e:2c:18:24:63:2c:b0:bc:
71:a9:d7:f0:f6:ba:21:72:c4:3c:35:6d:7e:04:36:19:74:4d:
c6:60:83:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 15:34:33 2024 by rpki-client on console-ams.rpki-client.org