Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/lHbo4zZfo--RX3XcLVROBql2a5c.roa
File: lHbo4zZfo--RX3XcLVROBql2a5c.roa (raw, json)
Hash identifier: FOMo60zzj2ASD5PZ/9QrWUaieHmpJoacrR6w907/2H8=
Subject key identifier: 94:76:E8:E3:36:5F:A3:EF:91:5F:75:DC:2D:54:4E:06:A9:76:6B:97
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0188A04A1F0B595B3B9CC3E77C7D21A58AEA
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/lHbo4zZfo--RX3XcLVROBql2a5c.roa
Signing time: Fri 09 Jun 2023 13:13:12 +0000
ROA not before: Fri 09 Jun 2023 13:13:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 103.75.69.0/24 maxlen: 24
88.218.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 11:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:4a:1f:0b:59:5b:3b:9c:c3:e7:7c:7d:21:a5:8a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jun 9 13:13:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9476e8e3365fa3ef915f75dc2d544e06a9766b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a4:4d:15:b8:2d:a5:b6:8c:e5:de:18:d1:1e:
9c:31:41:fd:3f:eb:53:db:ff:29:0d:8d:e0:45:10:
98:03:d6:2c:87:32:8d:cb:2e:ec:57:0d:c3:40:22:
e5:47:b9:49:7b:a0:8b:be:2d:7c:66:f6:1f:fd:25:
04:1b:64:4d:72:19:15:72:10:b4:51:ca:5f:93:c8:
d9:49:b5:ce:cd:bc:d2:df:95:6c:f1:51:0d:b8:0c:
07:21:05:5d:09:3a:bc:5a:4a:09:6f:cc:4d:ad:eb:
9b:20:3b:e6:90:e4:eb:20:83:db:06:2f:f0:eb:85:
b3:74:e3:be:e1:a7:01:4d:62:a8:d9:e7:57:95:8c:
06:4b:c8:ae:aa:57:a3:62:ae:26:6a:03:34:6e:84:
5e:2a:98:c7:2b:30:80:d4:a3:04:01:79:c0:74:11:
8a:80:d8:39:90:ca:87:6c:ae:cd:dd:e0:9d:c5:96:
8d:6d:73:3f:2a:97:3c:bc:2d:86:6a:5a:a6:8f:44:
e3:e4:4f:de:56:93:ec:29:f3:ce:7d:c3:d3:55:44:
47:59:9d:2b:fe:42:13:e3:3f:e2:31:fd:de:96:18:
8a:d2:37:fa:9b:2c:59:5f:79:c8:fe:59:45:0a:b8:
3d:95:b4:ff:2d:84:4d:da:20:82:ae:64:4d:36:1b:
67:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:76:E8:E3:36:5F:A3:EF:91:5F:75:DC:2D:54:4E:06:A9:76:6B:97
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/lHbo4zZfo--RX3XcLVROBql2a5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.42.0/24
103.75.69.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6b:7b:ae:0c:9a:d3:cc:e2:85:2d:d1:bd:21:5f:57:a3:da:
6b:62:f2:3a:8e:a5:c1:4d:da:d2:fa:a9:72:e2:5c:e9:ab:f4:
ff:c3:2c:ab:00:ce:b6:5a:c1:18:81:7d:53:8d:65:12:25:12:
e0:c4:ef:ce:58:fa:81:30:6a:05:f8:49:b1:97:43:a5:1a:12:
3c:c7:e8:60:b7:7b:bb:b6:d7:32:bb:f5:7d:4e:dc:4a:33:7f:
db:a5:d1:89:6f:ae:d7:39:26:ae:16:8b:7e:27:97:fb:fb:cd:
4f:9b:3d:dd:77:93:1b:c9:39:d5:9e:2d:99:d4:39:85:02:b6:
fd:e6:df:39:5a:2f:d7:68:6b:d1:d1:8b:08:27:e8:d1:f9:25:
98:a4:8f:a8:f1:6a:aa:0a:10:40:41:dc:6b:88:b7:47:e0:2a:
01:a6:a5:82:90:5d:8b:35:11:b2:5e:a3:cb:f4:7d:fe:96:27:
82:ee:fe:d1:0f:b8:5c:4e:b1:78:b7:2e:b7:97:07:bd:6b:c5:
c6:cf:30:00:88:ae:b7:24:2b:e8:ce:fc:74:a5:75:e5:ce:76:
d6:5c:90:d0:95:b2:84:d1:33:b3:1e:ee:3f:c5:ba:63:48:cd:
ce:36:ea:9f:c2:f0:20:12:f7:47:e3:df:22:fa:06:33:ea:d4:
b3:16:76:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:37 2024 by rpki-client on console-ams.rpki-client.org