Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/gghM2S9n0G0GGwxtHbC0sX1uGtY.roa
File: gghM2S9n0G0GGwxtHbC0sX1uGtY.roa (raw, json)
Hash identifier: hdU313ldlniGkDXLgeVdJW6/eJHAIQIZ/LoolPDfcwM=
Subject key identifier: 82:08:4C:D9:2F:67:D0:6D:06:1B:0C:6D:1D:B0:B4:B1:7D:6E:1A:D6
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 018D162AB5F74704CB375E59F682187DF54D
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/gghM2S9n0G0GGwxtHbC0sX1uGtY.roa
Signing time: Wed 17 Jan 2024 06:45:14 +0000
ROA not before: Wed 17 Jan 2024 06:45:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 07:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:2a:b5:f7:47:04:cb:37:5e:59:f6:82:18:7d:f5:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 17 06:45:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82084cd92f67d06d061b0c6d1db0b4b17d6e1ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c6:b5:8e:46:72:b2:6b:f6:55:26:3a:72:a7:
2c:5e:cb:c6:de:b6:26:11:4a:00:08:20:b1:16:f6:
c8:a6:e8:19:37:58:81:c0:dd:89:a8:6f:07:24:f9:
e8:2d:34:df:e6:3d:95:67:a1:5a:10:13:a8:36:a7:
ec:f8:57:cb:1c:f5:95:77:a9:ab:9e:82:df:82:00:
a2:60:3b:df:f5:85:9b:49:d6:de:87:cb:cb:ab:58:
4a:29:da:68:08:4c:cb:be:14:bb:8e:6b:4a:5a:61:
f6:4c:c1:a1:e4:b6:33:67:7c:33:b1:39:94:40:f3:
b0:3e:84:59:59:92:cd:53:63:62:3f:22:6b:8a:4b:
47:89:30:97:be:08:34:e3:1e:83:1a:80:a6:f0:86:
38:98:2c:c7:0e:85:92:1a:d6:8c:02:74:0a:52:56:
16:a2:0b:e7:fd:73:b4:be:7b:80:56:fa:f0:67:f4:
81:c9:f2:a4:43:a5:0f:f1:25:b5:dd:37:86:1e:21:
fc:6d:24:8c:b9:3f:d2:1c:66:b5:65:0d:e5:c5:24:
20:7f:78:21:47:d8:9d:d6:3a:39:eb:fc:87:4e:8b:
cf:a6:6f:97:b4:99:87:0a:92:4b:98:dd:b3:7a:1e:
63:55:e7:3d:bf:d1:f8:49:45:2d:ec:80:47:8b:54:
ca:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:08:4C:D9:2F:67:D0:6D:06:1B:0C:6D:1D:B0:B4:B1:7D:6E:1A:D6
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/gghM2S9n0G0GGwxtHbC0sX1uGtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:51:89:87:95:bb:2c:f2:1c:f9:57:e8:8d:64:90:55:36:1b:
2e:68:87:47:d1:a1:ec:0b:90:32:48:71:c5:b4:af:2e:1c:2b:
ff:53:83:f5:b0:8a:f8:6b:89:a3:f5:7d:de:a1:0c:ba:44:00:
63:58:d4:f1:f4:b8:ea:db:3d:19:d8:8b:3a:87:fb:a2:4b:9d:
99:d7:75:06:dd:d8:24:c5:27:56:5b:77:ea:ef:1b:ae:43:ed:
40:56:a3:4e:95:5a:71:5e:62:2f:74:13:ee:0f:5d:fe:f4:d1:
79:7c:f3:f0:52:c7:2a:6c:df:7f:1b:ea:c9:d4:d2:88:f7:15:
c3:81:5a:53:a5:60:14:10:77:bc:58:5e:3b:80:50:77:7a:ac:
22:9a:0e:34:c7:71:99:a6:04:62:01:fc:25:4c:b3:2b:e2:ce:
e7:dc:da:97:33:d0:19:c0:1e:57:20:b8:49:dd:69:ae:7f:13:
a0:0c:9b:18:fd:50:0f:1f:eb:8b:15:b6:4f:fe:9b:c7:a6:7d:
80:38:8b:1d:55:79:75:23:4e:5f:d6:01:9f:c7:f4:ee:d6:e7:
e2:cb:f9:b3:7c:38:75:38:03:7e:d8:ba:56:2f:8d:fb:d8:92:
2e:9f:61:fd:05:c6:52:4b:25:b6:79:90:1f:98:61:71:63:5d:
0c:8b:f5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 16 12:45:18 2024 by rpki-client on console-ams.rpki-client.org