Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/MoIX5E-vzOFXbXEmXH0PygwOHdg.roa
File: MoIX5E-vzOFXbXEmXH0PygwOHdg.roa (raw, json)
Hash identifier: XZ9bF+3MW0lOTeWj06VBSPfbbO3cdVW3qNrS91vHq3k=
Subject key identifier: 32:82:17:E4:4F:AF:CC:E1:57:6D:71:26:5C:7D:0F:CA:0C:0E:1D:D8
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01856BDCA82016D2D75DAC514888E06BE40F
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/MoIX5E-vzOFXbXEmXH0PygwOHdg.roa
Signing time: Sun 01 Jan 2023 05:45:00 +0000
ROA not before: Sun 01 Jan 2023 05:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211696
IP address blocks: 88.218.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:a8:20:16:d2:d7:5d:ac:51:48:88:e0:6b:e4:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 1 05:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=328217e44fafcce1576d71265c7d0fca0c0e1dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6c:4f:39:58:2c:f1:ca:3e:b6:3f:c1:f4:27:
02:a0:a8:6e:4d:45:d2:73:11:92:bc:9f:1e:73:b1:
71:31:5b:ca:8d:ad:dc:7e:b2:2a:55:b6:34:63:61:
35:8b:3e:23:0b:7c:55:c6:1a:20:2e:eb:c4:2a:5f:
c6:b1:22:a9:26:4a:e0:d9:98:94:a7:17:cd:8f:10:
e2:ae:99:2d:12:bb:51:f4:26:fa:a5:cb:22:20:da:
be:3f:b9:49:c1:b8:25:73:98:24:4d:97:45:d7:ba:
13:ee:24:d0:d3:93:b7:57:a8:9c:a0:57:7a:52:b6:
4c:17:ea:60:1c:ca:33:36:d9:d4:d3:db:60:6b:d2:
12:78:2b:25:57:ba:86:4a:27:4c:34:98:c9:83:0d:
56:04:02:33:02:37:9c:fe:47:ed:93:37:4c:f8:54:
1c:93:b4:00:7c:52:88:47:6e:b2:a3:84:69:ad:55:
e6:88:21:48:5f:25:49:c0:a1:e0:6b:a1:cd:79:b5:
96:9a:c7:cd:29:df:18:f2:dd:14:28:4a:b0:12:da:
53:c1:80:3b:fe:53:bc:bd:12:c3:91:bc:96:51:48:
f3:d2:fc:2e:19:ed:fe:4b:a2:67:b4:93:86:03:19:
65:03:6d:1b:28:88:00:92:b9:d3:8f:e5:11:a7:cd:
36:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:82:17:E4:4F:AF:CC:E1:57:6D:71:26:5C:7D:0F:CA:0C:0E:1D:D8
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/MoIX5E-vzOFXbXEmXH0PygwOHdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.40.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:06:4b:bb:1b:26:e7:c6:89:b6:b6:8a:3f:d4:d9:71:5f:d5:
90:f7:6f:7f:1e:46:c3:a8:a3:0a:7d:b3:7f:78:ed:09:1a:50:
6d:61:d2:3a:fd:52:80:8e:e4:f3:5d:32:7e:72:d1:cf:ec:9e:
59:d4:13:6e:83:7e:5f:e6:3f:c2:d3:12:4c:bb:04:63:44:c3:
83:a8:c0:41:0a:b0:a9:a8:f9:2a:1a:29:17:e0:54:bf:ff:41:
51:a9:1e:7f:6a:4a:92:39:54:8a:45:00:b4:23:68:cb:c3:63:
d1:71:42:f3:b2:fd:f9:07:b7:3d:04:10:54:22:3f:22:06:c7:
54:6f:08:f0:ca:69:39:4c:b4:ca:06:6f:d2:d0:a5:c4:5a:88:
59:57:75:53:15:f6:7a:ab:db:2b:06:59:58:89:35:58:aa:4f:
97:55:e5:ad:56:38:88:ca:27:84:63:cb:c0:3c:79:92:84:77:
d2:6b:f0:42:ff:6f:c2:56:87:9a:46:c3:bc:43:88:26:48:5c:
0e:e8:d6:89:bd:c1:90:82:0d:49:d1:94:05:24:77:47:5c:a1:
bb:83:e6:3d:e3:fd:9d:f3:84:42:ed:a1:06:5d:be:3a:6d:0e:
d4:7a:88:42:c9:57:21:d5:2b:de:a0:0e:57:4b:82:a6:08:5f:
b4:ff:62:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org