Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/xcFwR3heJkmJDUNcvSicMF0BE9g.roa
File: xcFwR3heJkmJDUNcvSicMF0BE9g.roa (raw, json)
Hash identifier: TDshMxG9eMowpOea3nh/0WeGwb2eQQjIZ/fWFrg3djY=
Subject key identifier: C5:C1:70:47:78:5E:26:49:89:0D:43:5C:BD:28:9C:30:5D:01:13:D8
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0188DCF157A823D37FA6868EFE9AA0824DC9
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/xcFwR3heJkmJDUNcvSicMF0BE9g.roa
Signing time: Wed 21 Jun 2023 07:53:04 +0000
ROA not before: Wed 21 Jun 2023 07:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 88.218.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Sep 2023 20:55:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dc:f1:57:a8:23:d3:7f:a6:86:8e:fe:9a:a0:82:4d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jun 21 07:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5c17047785e2649890d435cbd289c305d0113d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:15:bc:b1:4d:75:bf:7d:37:9b:ce:0e:fe:d7:
9e:01:25:ae:d4:af:b0:6d:b7:00:5d:36:ad:78:ea:
c3:b0:eb:ec:a5:56:0c:12:8d:05:7b:6c:79:cc:1e:
ac:cd:90:74:2c:5f:a9:72:13:f4:40:c8:40:3d:f7:
4a:b4:70:52:de:f5:65:80:d0:4a:97:0c:a8:d0:0a:
44:01:0c:e5:84:cc:8c:d5:06:3c:d7:02:78:e5:52:
82:f5:47:ce:c0:83:d3:07:e0:c0:c2:d4:05:f6:e3:
a8:52:06:a7:9e:fe:b2:94:ba:02:fc:30:f8:a9:42:
ad:b0:8e:49:ee:4a:31:15:9f:44:81:1d:72:d3:fc:
96:6d:ab:da:15:ac:d5:2f:92:9c:90:8d:4b:b5:ad:
9d:2b:ca:e7:c6:36:1c:af:14:bf:56:47:a3:46:05:
a8:ab:2d:d1:a5:e4:44:7d:63:e8:b2:2c:76:43:18:
5e:1d:cd:fc:73:d7:f8:91:e3:96:d8:91:b7:f4:98:
47:73:ab:eb:91:ff:c8:77:48:9e:cb:c2:16:3e:62:
ae:f9:ac:08:82:cb:64:9f:f9:2a:59:8a:1d:52:64:
db:62:e8:93:14:63:c4:fc:53:6f:87:78:d9:01:07:
47:19:9b:23:44:c1:3e:b3:e7:03:9c:c5:d4:a1:55:
70:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C1:70:47:78:5E:26:49:89:0D:43:5C:BD:28:9C:30:5D:01:13:D8
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/xcFwR3heJkmJDUNcvSicMF0BE9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.40.0/24
Signature Algorithm: sha256WithRSAEncryption
87:b2:27:80:e4:f4:0f:dc:38:5f:17:79:31:d0:20:09:a4:4e:
1d:3d:e6:5b:29:bd:4d:f0:b5:85:1b:d7:0b:8f:38:91:2d:7b:
ab:b1:40:b4:40:f2:99:80:f1:d6:3a:25:11:af:dc:9b:c3:66:
2b:ed:de:7e:93:f1:ce:34:cf:67:51:9e:5b:4c:05:40:97:23:
84:f5:fe:1c:2e:70:d0:58:7a:74:61:cc:18:cb:fb:74:6d:e5:
24:87:ca:34:71:cb:76:de:e7:d8:fa:1c:d9:62:ff:b7:2c:d4:
c9:8b:07:05:9c:e8:ac:ae:73:e2:86:79:09:69:f6:77:f8:a6:
1a:68:88:91:a3:0b:ce:f9:be:8d:68:4a:bb:43:63:bd:b4:f1:
4a:de:0e:09:2f:57:68:21:87:37:1c:e7:11:07:24:a7:50:8b:
f9:0d:4c:49:f7:fb:84:c5:ad:6c:4f:75:b4:63:4c:2c:e6:b9:
16:3c:32:06:3c:93:b0:bb:d4:9b:72:e0:cc:18:7f:97:bd:e4:
8f:78:fb:a9:2c:9f:84:04:ce:6b:57:44:9e:69:ba:13:dd:ec:
39:a0:a2:65:85:29:09:df:e7:a6:fd:4a:3b:52:15:ef:9d:26:
ed:00:b8:99:83:6f:18:47:89:6a:00:66:01:50:de:d1:45:24:
f7:de:ff:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:37 2024 by rpki-client on console-ams.rpki-client.org