Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Hg6tJWS88TYZplgafeYy5yDSojo.roa
File: Hg6tJWS88TYZplgafeYy5yDSojo.roa (raw, json)
Hash identifier: +D/je3lPuheDOwUkt4GPjtSn8aYMfMOKNLZtAqO9ykU=
Subject key identifier: 1E:0E:AD:25:64:BC:F1:36:19:A6:58:1A:7D:E6:32:E7:20:D2:A2:3A
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018CF31220CD2A9580C19610536F183D19C9
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Hg6tJWS88TYZplgafeYy5yDSojo.roa
Signing time: Wed 10 Jan 2024 11:11:40 +0000
ROA not before: Wed 10 Jan 2024 11:11:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
88.218.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 06:45:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:12:20:cd:2a:95:80:c1:96:10:53:6f:18:3d:19:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 10 11:11:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e0ead2564bcf13619a6581a7de632e720d2a23a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:07:83:91:3a:4e:5e:ac:64:f0:1c:52:80:89:
41:8b:b1:ac:17:59:c0:80:64:2d:cb:98:aa:68:b9:
19:47:be:56:cf:19:99:70:50:ea:37:6e:db:04:09:
92:9e:0f:24:fc:33:54:ad:48:a9:01:dd:32:7e:d7:
6e:02:c1:d9:71:f1:6e:b6:9c:78:8a:ce:1f:5a:aa:
45:ef:f4:54:4d:8a:ca:6e:c3:dc:af:6c:4a:7d:e1:
06:f7:50:c3:0c:ef:5b:03:58:41:22:15:97:3a:ab:
3e:0a:76:8f:ac:eb:8e:8b:77:7f:f7:69:a5:d6:7e:
bc:b3:7c:66:ef:70:13:2f:8f:13:fa:e1:00:90:2e:
9f:c6:27:c2:13:db:a6:df:fe:eb:43:40:6b:3e:5f:
2f:bc:62:b2:28:5b:84:c5:12:d3:b3:89:13:f1:cf:
33:63:22:ed:4e:16:60:85:0e:fe:4d:22:de:8c:e2:
46:98:4d:07:48:d1:a0:3f:51:16:64:fc:eb:ed:eb:
74:8e:d8:86:f9:0b:bc:2d:c6:08:2b:9f:c0:e5:e8:
e3:14:a2:d9:56:ba:c5:64:37:af:6d:fa:ba:a0:86:
f3:54:46:21:2d:10:0b:00:79:92:47:63:e1:92:8a:
08:89:4b:77:79:10:de:30:37:a0:0e:7a:20:a8:c3:
b1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:0E:AD:25:64:BC:F1:36:19:A6:58:1A:7D:E6:32:E7:20:D2:A2:3A
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Hg6tJWS88TYZplgafeYy5yDSojo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/23
Signature Algorithm: sha256WithRSAEncryption
76:b8:cd:4b:3f:b0:1f:55:70:47:53:cc:4c:c8:66:6b:25:63:
df:8a:29:8e:93:52:26:43:29:ac:23:22:b2:f3:a0:b4:9b:c7:
b2:82:c6:21:4d:41:93:fd:25:78:1b:8c:64:a9:4f:fc:dc:be:
a1:e8:c0:8c:23:b2:a3:51:1f:d0:4b:26:35:66:19:dc:e6:91:
49:f9:be:18:6e:12:3c:14:69:f8:38:1c:27:e3:93:67:09:31:
74:56:a5:b5:6e:eb:bd:30:20:d4:cb:a4:3a:63:35:b0:ba:23:
78:8f:7c:cc:99:47:56:9a:b8:15:cd:a6:56:99:69:af:21:53:
d3:87:c9:c3:48:f7:16:03:84:94:d8:12:2b:4b:6f:86:df:cf:
8f:ba:8a:dd:2d:23:88:b4:20:70:b8:46:c7:c5:fa:ad:fb:34:
c2:11:2a:0c:f1:2d:45:37:a3:09:2d:ca:2b:99:e4:99:9a:f7:
1f:6e:68:c9:af:bf:de:c2:04:6a:f5:60:66:73:bd:ec:cc:d5:
ac:4d:4a:3b:56:fe:bc:53:ac:51:34:86:f2:8c:49:b1:87:32:
80:cc:d5:72:83:dc:b9:0c:e3:1b:4c:50:2a:ed:b8:59:ab:d5:
28:27:0b:bb:5f:80:7e:1b:c3:bc:c8:18:d8:d3:5d:b8:a7:5b:
9b:39:16:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org