Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/hjE_ZTy6tpAqhu59peUm-uqEs50.roa
File: hjE_ZTy6tpAqhu59peUm-uqEs50.roa (raw, json)
Hash identifier: LS/DdXUOgc+W8gyfoW+gItGU1Gg3YOuAVWwj4+XhN68=
Subject key identifier: 86:31:3F:65:3C:BA:B6:90:2A:86:EE:7D:A5:E5:26:FA:EA:84:B3:9D
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0187FA4DA54CD83E41E2118ADC73FC0F2619
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/hjE_ZTy6tpAqhu59peUm-uqEs50.roa
Signing time: Mon 08 May 2023 07:40:05 +0000
ROA not before: Mon 08 May 2023 07:40:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 88.218.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fa:4d:a5:4c:d8:3e:41:e2:11:8a:dc:73:fc:0f:26:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: May 8 07:40:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86313f653cbab6902a86ee7da5e526faea84b39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ab:ce:06:b5:c4:cd:0b:6f:da:12:df:ee:09:
fd:ac:1a:9a:1b:94:df:54:60:24:3e:23:94:66:b0:
e1:5a:38:c2:d8:8f:3a:92:f1:e9:1c:a7:fb:40:8b:
12:8d:67:02:f7:15:fc:68:ea:0d:3e:5b:45:4c:c4:
0c:17:6e:9b:f9:c5:b3:d9:43:03:36:c5:35:ce:1e:
9f:a0:30:1e:1e:c9:6d:2f:5c:64:87:5e:a8:a1:a4:
88:4b:4a:2b:aa:f6:a9:06:12:48:48:70:e5:91:50:
b4:e2:ed:41:8e:fc:56:66:7e:15:94:4c:c4:5e:0e:
e3:8f:b7:56:3e:28:1f:34:92:57:23:2e:46:e3:97:
1c:34:03:90:4c:02:e7:5c:8c:0b:0f:c7:59:c1:0f:
bf:da:54:8d:f1:46:a6:25:90:d3:82:ab:f8:43:6f:
6d:e7:ae:10:27:11:36:b1:5a:3a:63:f4:cd:91:79:
82:ec:3b:42:16:ae:cf:2a:05:85:91:96:fd:41:36:
27:c9:6f:f0:fe:b5:61:94:9a:82:e8:50:8b:9d:3e:
19:13:a0:59:22:89:cd:30:75:df:63:87:ae:33:9e:
6c:10:8a:47:2b:64:22:12:c4:1b:dd:e5:c0:55:fa:
5e:b5:22:d2:23:0c:db:16:57:91:70:7f:a9:25:79:
0a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:31:3F:65:3C:BA:B6:90:2A:86:EE:7D:A5:E5:26:FA:EA:84:B3:9D
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/hjE_ZTy6tpAqhu59peUm-uqEs50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.40.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c4:71:6c:da:0c:97:bc:dc:6c:41:a2:4b:21:86:0d:3e:95:
8e:28:cf:e8:6f:38:3e:1b:e1:5a:27:ad:57:e5:b2:c6:91:56:
5c:bb:5c:81:9d:f8:ac:18:7a:3a:d3:f2:12:db:16:16:02:60:
76:c9:05:94:d3:80:3f:24:5f:ea:33:93:4a:92:ed:48:52:61:
3c:da:08:5a:b8:12:bb:eb:38:0a:af:6d:20:2b:35:16:25:0d:
d2:ed:85:c3:d6:0c:1b:5b:f1:cb:20:e7:66:1b:3a:25:8b:e7:
a5:fa:b8:24:2e:7b:f3:45:51:df:5c:cf:fd:0d:d7:39:44:8e:
63:a6:9f:9b:24:8f:b4:0b:65:d3:6d:0c:d9:c0:b9:16:d4:00:
e1:5d:4b:97:e8:98:e0:23:ac:37:1f:30:2b:9a:5d:36:f9:60:
ce:f3:48:f3:62:dc:db:61:95:35:e2:18:6e:5d:76:a5:f5:d7:
b7:3f:26:fc:eb:75:10:5c:e8:95:51:11:1b:74:08:2d:13:9e:
5d:5e:65:d4:7f:24:9f:88:21:bc:c9:82:c5:ed:1a:03:61:07:
58:04:01:47:35:f3:2e:60:ba:b8:1e:ee:85:8b:d0:8e:3a:5e:
6b:ed:be:96:a3:f7:d9:aa:83:60:64:e3:c4:55:39:9f:bd:8f:
11:95:b4:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf6TaVM2D5B4hGK3HP8DyYZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjODkyYWVkMzgzM2U2MTAwZjVlMGNmMTIyNzFmZDgwYjc1
NWMzNjEwHhcNMjMwNTA4MDc0MDA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjMxM2Y2NTNjYmFiNjkwMmE4NmVlN2RhNWU1MjZmYWVhODRiMzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqvOBrXEzQtv2hLf7gn9rBqaG5Tf
VGAkPiOUZrDhWjjC2I86kvHpHKf7QIsSjWcC9xX8aOoNPltFTMQMF26b+cWz2UMD
NsU1zh6foDAeHsltL1xkh16ooaSIS0orqvapBhJISHDlkVC04u1BjvxWZn4VlEzE
Xg7jj7dWPigfNJJXIy5G45ccNAOQTALnXIwLD8dZwQ+/2lSN8UamJZDTgqv4Q29t
564QJxE2sVo6Y/TNkXmC7DtCFq7PKgWFkZb9QTYnyW/w/rVhlJqC6FCLnT4ZE6BZ
IonNMHXfY4euM55sEIpHK2QiEsQb3eXAVfpetSLSIwzbFleRcH+pJXkKXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIYxP2U8uraQKobufaXlJvrqhLOdMB8GA1UdIwQY
MBaAFFyJKu04M+YQD14M8SJx/YC3VcNhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2Ut
M2FhN2RhYTlkM2VjLzEvaGpFX1pUeTZ0cEFxaHU1OXBlVW0tdXFFczUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2UtM2FhN2RhYTlkM2Vj
LzEvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNooMA0G
CSqGSIb3DQEBCwUAA4IBAQAzxHFs2gyXvNxsQaJLIYYNPpWOKM/obzg+G+FaJ61X
5bLGkVZcu1yBnfisGHo60/IS2xYWAmB2yQWU04A/JF/qM5NKku1IUmE82ghauBK7
6zgKr20gKzUWJQ3S7YXD1gwbW/HLIOdmGzoli+el+rgkLnvzRVHfXM/9Ddc5RI5j
pp+bJI+0C2XTbQzZwLkW1ADhXUuX6JjgI6w3HzArml02+WDO80jzYtzbYZU14hhu
XXal9de3Pyb863UQXOiVUREbdAgtE55dXmXUfySfiCG8yYLF7RoDYQdYBAFHNfMu
YLq4Hu6Fi9COOl5r7b6Wo/fZqoNgZOPEVTmfvY8RlbTi
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org