Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/UAUQHplD0cCSq6nKebc8CD_IAV0.roa
File: UAUQHplD0cCSq6nKebc8CD_IAV0.roa (raw, json)
Hash identifier: Pa1upHC4tZtHAEz4EQqObBrd8nc+92g5kL5kiVCLZEE=
Subject key identifier: 50:05:10:1E:99:43:D1:C0:92:AB:A9:CA:79:B7:3C:08:3F:C8:01:5D
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018DC136AB3C4F29AC70C95DC5880E2A8F4F
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/UAUQHplD0cCSq6nKebc8CD_IAV0.roa
Signing time: Mon 19 Feb 2024 11:53:21 +0000
ROA not before: Mon 19 Feb 2024 11:53:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 13:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:36:ab:3c:4f:29:ac:70:c9:5d:c5:88:0e:2a:8f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Feb 19 11:53:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5005101e9943d1c092aba9ca79b73c083fc8015d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b2:f5:41:e4:89:7c:cd:ca:3e:bb:c1:46:32:
a5:83:aa:c8:ff:86:48:55:b1:17:9c:e9:4c:84:d4:
4d:ef:81:b2:82:09:89:d0:23:71:09:64:76:34:ce:
24:6a:a3:5b:b1:9c:31:ee:c7:54:5f:0a:47:a3:71:
37:db:f8:95:bc:e4:eb:f7:4a:36:52:b8:36:23:b5:
0d:f2:1c:ad:64:f4:ea:a2:82:5f:7d:ce:ec:da:71:
a5:52:43:d1:c5:ba:3d:02:aa:9b:ed:37:70:5e:8c:
05:5e:2a:c2:e3:ee:5a:6d:96:44:5a:53:02:e8:2a:
f1:34:2d:79:a1:31:35:e0:0b:63:6b:e8:55:cb:f3:
46:c8:6a:29:a4:0d:91:bb:8b:b4:7e:4e:aa:29:03:
36:4b:ee:20:00:ff:70:18:9e:a8:fc:01:30:5a:9a:
fa:bd:38:24:38:a6:06:6c:2b:3e:55:3c:4d:16:6f:
7f:38:27:9a:77:fb:2c:0a:74:7a:68:67:14:07:d2:
84:12:bd:e9:30:b6:b7:f1:74:27:ef:79:67:75:8b:
cd:f4:27:75:2f:d2:78:7f:33:d0:41:15:98:46:01:
4c:36:7b:88:ea:25:11:6f:0b:49:fe:d0:a3:b8:b5:
86:61:79:00:45:ba:34:a4:59:ac:28:52:ce:71:74:
c7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:05:10:1E:99:43:D1:C0:92:AB:A9:CA:79:B7:3C:08:3F:C8:01:5D
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/UAUQHplD0cCSq6nKebc8CD_IAV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
00:06:21:67:58:5a:f2:ff:89:5c:60:5e:18:2d:f2:f0:a3:d2:
22:f3:a5:97:e6:6f:cc:14:0c:e2:32:c7:a7:7f:7f:62:59:f9:
47:8b:4b:b4:27:5f:2a:eb:09:01:31:d5:ed:af:3b:c7:ff:8e:
56:9b:f3:43:cc:d2:ba:6a:46:0a:68:2d:d1:63:41:9f:d6:5c:
af:dd:9d:73:37:ff:31:3d:44:a6:25:62:74:9f:45:18:00:b4:
06:54:bd:5d:79:f5:fa:66:c3:bb:1d:02:73:9a:03:7d:36:4d:
3a:88:58:6a:a7:81:de:cc:28:88:c0:80:58:9f:90:96:7b:2d:
8e:6c:04:19:c4:f1:ee:3b:69:66:86:73:57:8f:88:cd:6c:3c:
43:11:fe:c0:f4:34:5a:d8:50:38:3c:02:86:17:15:75:69:8f:
50:05:05:0e:4c:97:fd:82:2e:c4:9b:62:7c:29:81:68:23:2b:
d7:c7:f5:74:ad:25:d4:73:38:7f:54:d3:b0:a0:e2:d8:cc:1a:
a7:d7:04:8d:8c:a6:14:01:f8:b8:e1:19:ae:28:af:c8:48:28:
b2:24:b6:1c:0c:9f:c7:ca:4f:a8:4d:87:4f:2c:4f:c6:75:e9:
da:20:ac:e9:8c:11:e0:27:e6:ae:a5:79:c9:4b:f7:40:7a:36:
43:9d:9e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 15:34:34 2024 by rpki-client on console-ams.rpki-client.org