Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Uq6mTYwkwPGsAjy2dQ-979rd3Dg.roa
File: Uq6mTYwkwPGsAjy2dQ-979rd3Dg.roa (raw, json)
Hash identifier: 96meNBZcnQjr2+ei0Z99vDDXzV8tu86qyyMQgI47y8Q=
Subject key identifier: 52:AE:A6:4D:8C:24:C0:F1:AC:02:3C:B6:75:0F:BD:EF:DA:DD:DC:38
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018CC8018ABF7C670F7BE136AF5F2C3C52FB
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Uq6mTYwkwPGsAjy2dQ-979rd3Dg.roa
Signing time: Tue 02 Jan 2024 02:29:53 +0000
ROA not before: Tue 02 Jan 2024 02:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 10:54:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:8a:bf:7c:67:0f:7b:e1:36:af:5f:2c:3c:52:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 2 02:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52aea64d8c24c0f1ac023cb6750fbdefdadddc38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0f:ce:14:25:37:e5:1a:ee:80:e4:73:71:9f:
67:71:16:51:5b:99:76:63:1b:95:15:46:e4:ad:7b:
11:be:2a:15:86:7e:f5:66:26:17:90:d3:63:97:b6:
91:2c:0e:5e:e8:e9:39:ae:f4:c8:68:41:2b:00:cf:
5d:23:63:39:66:dc:4b:3a:49:6f:66:c7:4c:c4:05:
b8:a4:c2:03:1b:fc:d3:44:dc:8d:88:4c:a6:81:18:
b9:b2:90:f3:73:b1:48:d1:09:c9:39:55:09:f7:eb:
dd:0d:34:0e:c5:d9:96:8a:42:32:58:59:b1:3c:07:
a1:e3:46:78:4a:1c:e5:7d:78:8d:7d:53:95:ca:3a:
00:c6:d1:78:a1:80:fe:54:4b:95:8f:92:a9:49:11:
38:86:24:18:19:ab:67:20:bb:dc:8d:87:51:04:fd:
20:86:14:20:62:bf:70:46:67:13:a0:4d:58:3c:23:
71:7f:8e:29:90:a3:d2:81:b1:f5:16:82:ab:54:50:
2a:68:c7:10:ec:62:46:c8:49:72:14:13:69:54:04:
bb:1c:ec:8e:04:08:ec:89:9e:4e:4b:d1:e0:86:3f:
0f:ff:ac:b1:a8:52:d1:ec:8e:f8:c4:82:26:ef:52:
98:d1:22:7b:3d:96:77:4c:20:81:17:9c:d1:ef:18:
30:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AE:A6:4D:8C:24:C0:F1:AC:02:3C:B6:75:0F:BD:EF:DA:DD:DC:38
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Uq6mTYwkwPGsAjy2dQ-979rd3Dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f4:de:25:e9:6d:c2:12:71:4c:00:d4:fe:1e:a5:8a:d9:6d:
09:0a:f4:af:1c:60:23:92:a3:9f:5f:83:13:67:5f:c2:4a:3b:
d7:cc:84:37:26:74:2a:d9:d5:32:ea:59:07:ad:0b:c1:58:f4:
51:46:94:29:fb:97:4f:31:5b:6d:ee:94:66:b7:ec:6b:c4:c1:
f1:41:fd:18:39:bc:d7:3c:25:0f:e7:b4:23:eb:40:61:32:0b:
cd:52:28:a3:fc:7d:de:63:fd:b1:2e:bb:d9:56:5e:80:0e:2d:
22:0c:8d:e2:52:79:f4:c5:60:88:1d:04:66:e1:a0:90:bc:fc:
91:bf:c1:3b:60:ff:2f:e2:8f:a8:97:6c:bf:1d:41:bd:d8:72:
2b:ad:b2:36:a1:b6:8b:f4:3c:0f:23:3f:ad:b5:ae:77:9a:29:
7b:67:a9:99:ce:35:d3:58:bb:82:73:88:c6:ed:12:63:6e:45:
5d:bb:94:73:b7:28:26:e5:be:92:cb:d3:da:31:e7:6f:8f:9f:
d3:8f:23:72:48:23:4e:4a:7f:39:4c:62:ce:89:d4:0c:ad:91:
85:9f:3b:6f:ba:aa:06:86:04:e1:1a:48:70:1d:77:18:16:65:
a5:d2:29:11:78:25:f8:46:5b:1a:cd:0c:1d:fc:1a:61:8d:c3:
96:16:c1:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 14:38:32 2024 by rpki-client on console-ams.rpki-client.org