Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Tb0nDrPtWJToSz1K7GqYk3UwHJo.roa
File: Tb0nDrPtWJToSz1K7GqYk3UwHJo.roa (raw, json)
Hash identifier: XzseSRAai53dXb9m4BM9BtDllMcG3n/fVrMkN9qcYTo=
Subject key identifier: 4D:BD:27:0E:B3:ED:58:94:E8:4B:3D:4A:EC:6A:98:93:75:30:1C:9A
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0192293B0E5884190950685BB19AEA272C25
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Tb0nDrPtWJToSz1K7GqYk3UwHJo.roa
Signing time: Wed 25 Sep 2024 12:49:49 +0000
ROA not before: Wed 25 Sep 2024 12:49:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 10:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:29:3b:0e:58:84:19:09:50:68:5b:b1:9a:ea:27:2c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Sep 25 12:49:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4dbd270eb3ed5894e84b3d4aec6a989375301c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4e:33:04:42:89:1b:a2:d4:bf:27:54:fd:3c:
33:81:5e:32:30:54:8c:8c:bb:e1:80:e9:0a:88:34:
ec:27:e5:b7:29:ca:e8:96:5e:7c:5b:e9:0a:be:6d:
c3:85:39:3d:8b:77:ca:d6:8a:19:79:e2:c8:58:b8:
ac:4f:f7:b0:cb:00:d8:23:8a:fb:80:5f:bf:a5:0b:
cb:f4:d6:22:ef:8c:fd:d0:d8:ac:34:bf:6e:87:d1:
95:6b:d9:6c:05:67:dc:0b:21:d0:26:b0:a7:ca:99:
c7:30:b8:1f:77:a7:b9:52:62:04:42:bd:35:21:58:
2d:40:c2:02:03:a6:6d:47:86:52:b4:72:63:3c:3a:
0a:9a:1a:a9:6e:75:a5:8d:bb:0c:59:cb:3b:21:02:
9f:ae:5c:27:07:1f:fb:b7:0d:f9:02:4e:15:b4:58:
6e:d8:f0:4e:64:2a:c6:67:ad:3d:b6:70:dc:34:4e:
bf:9b:77:d5:c3:c4:5a:b7:38:0f:9f:28:60:f5:36:
c5:3f:53:8d:b9:bd:30:cb:31:2b:04:03:db:fc:0d:
b5:35:54:ae:87:ca:08:15:05:5f:6b:a0:d0:13:af:
e1:0e:a2:b9:1c:60:1f:1b:f7:82:36:c8:84:f6:b4:
3c:e4:40:4b:91:b0:31:a7:87:f4:84:40:dc:d3:c1:
df:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BD:27:0E:B3:ED:58:94:E8:4B:3D:4A:EC:6A:98:93:75:30:1C:9A
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Tb0nDrPtWJToSz1K7GqYk3UwHJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:1d:d7:8a:0d:61:dc:ec:c2:9c:9e:47:7a:43:79:01:17:88:
33:97:5c:7e:1f:d6:1e:e8:38:f7:42:8b:8e:c0:9a:75:01:1f:
a2:6f:78:75:34:d5:45:10:71:bc:85:27:2e:59:ce:40:66:45:
3a:4c:47:9e:58:bb:93:ee:4a:2d:8e:a5:fe:7b:5d:d0:c9:e8:
87:c2:aa:00:1d:ce:25:65:e7:2e:f6:e7:26:bb:3f:34:a7:b9:
9d:3d:50:90:5c:0c:ac:18:4e:be:eb:22:c8:e8:0d:b5:17:f6:
19:4c:19:9c:42:db:93:89:46:23:63:4e:d5:37:59:2c:1e:62:
b1:fa:c6:4a:f7:cb:b3:84:d4:57:f6:61:4f:1d:02:1b:1c:87:
79:96:ee:04:17:15:c5:bf:9b:31:ab:58:b7:72:5c:35:29:57:
2d:72:dd:4d:c1:14:74:7a:2d:17:5a:62:65:47:9d:4f:91:07:
f9:7e:44:6d:f4:9e:14:3b:af:4c:03:2f:8b:75:4d:dc:55:25:
b5:59:21:45:4d:de:df:69:8f:63:a9:3f:1e:86:cf:e3:91:9b:
9d:24:f2:f6:b3:20:f8:82:33:f6:5d:ea:ab:5f:e5:a7:b5:8b:
1e:49:36:f1:8d:44:f4:69:bf:f0:dc:09:71:0a:d4:7b:00:00:
8d:57:77:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 13:21:10 2024 by rpki-client on console-ams.rpki-client.org