Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/b2r9vQhxvoA0ZoD2XV-WqM7wG94.roa
File: b2r9vQhxvoA0ZoD2XV-WqM7wG94.roa (raw, json)
Hash identifier: Lp7xQI5HlvfO8xKpP74hqv22T69M3tixtpaIrQqFu4A=
Subject key identifier: 6F:6A:FD:BD:08:71:BE:80:34:66:80:F6:5D:5F:96:A8:CE:F0:1B:DE
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018B097A7C0BABB98836E68FCE45AB0C0701
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/b2r9vQhxvoA0ZoD2XV-WqM7wG94.roa
Signing time: Sat 07 Oct 2023 09:31:43 +0000
ROA not before: Sat 07 Oct 2023 09:31:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:7a:7c:0b:ab:b9:88:36:e6:8f:ce:45:ab:0c:07:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Oct 7 09:31:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f6afdbd0871be80346680f65d5f96a8cef01bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8d:1c:08:ec:6c:ca:44:f4:1d:ce:4e:4f:2b:
03:83:70:ba:20:26:e7:bf:d7:71:bd:b3:03:d0:72:
f1:46:a2:98:08:bb:05:e3:00:b3:80:cb:b6:7b:0f:
61:fb:a1:17:68:c4:73:58:77:40:e1:eb:8b:86:d4:
cd:af:5a:0b:ce:fd:0b:b4:7e:a3:a5:3b:39:2c:99:
4e:de:8d:36:6e:86:cd:69:3e:8d:63:70:ad:f2:52:
98:0c:e0:4f:ca:a8:0e:09:1b:8d:5d:36:0e:98:0f:
e7:c5:0b:da:ab:1e:80:a5:fd:9f:e0:dc:f6:60:2c:
ac:7d:be:c4:ba:70:74:96:96:bf:d6:4c:1f:f3:a5:
07:19:65:2e:9d:7f:15:29:c8:4f:a7:64:34:49:2d:
36:4d:25:cb:f1:b5:a1:67:31:4f:32:fd:91:74:4a:
85:a5:8e:39:39:24:c3:5d:3c:01:c5:28:18:10:3e:
89:a3:1b:d1:c3:55:62:83:3d:70:f6:d8:64:73:97:
51:f2:00:d0:2d:84:2a:3e:12:08:0e:87:1c:32:eb:
b1:fc:4d:5a:49:60:fb:01:cf:d5:45:c5:18:30:a6:
6a:d2:c9:42:f1:cd:c3:2c:0d:90:c6:d1:ea:da:a7:
d5:2f:5d:f2:1e:b9:6b:f9:e5:33:97:08:f5:f3:70:
bf:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:6A:FD:BD:08:71:BE:80:34:66:80:F6:5D:5F:96:A8:CE:F0:1B:DE
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/b2r9vQhxvoA0ZoD2XV-WqM7wG94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
80:85:92:83:9c:b8:49:34:d5:b1:2e:81:01:3a:ff:e5:ce:27:
8c:a5:e2:64:ca:dd:fd:50:f8:1b:e1:06:40:e4:bc:84:02:b9:
41:7a:ca:86:a0:fe:fd:c2:58:cc:f5:f8:7f:5f:4c:cf:fa:be:
69:59:17:9e:fc:26:85:75:c5:78:84:4b:b6:5e:d3:32:f0:03:
b7:ea:e7:ee:35:8d:39:5b:c3:89:8f:ac:e6:cc:2a:23:f7:0a:
7c:1b:de:2f:17:d3:4c:c1:53:16:b8:ce:57:9f:ec:d6:0c:53:
d5:db:f3:e9:57:e4:61:7c:46:1f:17:a9:f2:8c:27:4f:42:6d:
4c:b1:1d:f0:0f:bc:16:f6:7d:02:1a:0a:b0:c4:73:71:67:16:
22:7a:7a:a3:01:e1:81:1c:7d:89:90:1d:09:1e:d8:5e:36:a1:
84:27:54:f1:b3:aa:bb:6a:3e:bb:43:53:82:8b:53:29:c1:f8:
fd:d1:98:a5:30:d3:5b:9e:e7:26:cd:ae:32:34:88:d2:a2:9d:
41:66:33:82:d9:02:ab:bb:47:da:9b:c2:cc:e8:0d:14:95:76:
e4:9c:cd:d7:3d:08:21:53:56:e0:4c:73:8b:ee:e8:b6:79:cb:
ef:c9:3b:5c:e9:19:de:db:6b:0a:c9:ec:58:45:27:cf:aa:0b:
39:67:24:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:24 2024 by rpki-client on console-ams.rpki-client.org