Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/zdIWW2awls8dP47HkJByskdeMas.roa
File: zdIWW2awls8dP47HkJByskdeMas.roa (raw, json)
Hash identifier: W8xHRb2Jc8q3foLiUpW1NK5R5zBS1F9FJr3sF/MfaYI=
Subject key identifier: CD:D2:16:5B:66:B0:96:CF:1D:3F:8E:C7:90:90:72:B2:47:5E:31:AB
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 01856F94CA92F52837065161C232F0BF673F
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/zdIWW2awls8dP47HkJByskdeMas.roa
Signing time: Sun 01 Jan 2023 23:05:00 +0000
ROA not before: Sun 01 Jan 2023 23:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204834
IP address blocks: 188.75.108.0/22 maxlen: 24
188.75.111.0/24 maxlen: 24
188.75.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Mar 2023 14:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:ca:92:f5:28:37:06:51:61:c2:32:f0:bf:67:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 1 23:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdd2165b66b096cf1d3f8ec7909072b2475e31ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:60:2b:93:97:27:e3:13:bc:6e:3c:23:d7:0e:
32:e8:63:42:54:7a:e7:48:d2:52:71:bf:64:13:70:
a7:5f:ea:f0:73:e6:3a:aa:b3:a7:ef:ff:b9:75:65:
0d:4c:17:58:5a:84:82:63:9f:23:e4:5d:12:48:07:
23:42:97:de:5a:21:8e:c5:d2:a8:39:a8:4f:f1:29:
70:8a:a3:c9:ff:1b:5b:78:77:0f:b1:1c:c4:b0:80:
19:ea:49:6b:8d:0e:bf:81:dd:e0:af:17:3d:1f:f0:
d7:33:13:f0:e4:e9:ac:ea:41:7f:e7:39:03:34:1e:
64:ff:d9:77:32:82:d0:9f:79:a6:7f:22:a3:fd:99:
24:9a:ca:47:78:22:e5:7c:51:5a:e2:45:5f:13:70:
70:a9:10:e6:47:55:e9:21:b4:8e:21:d5:23:fa:7f:
7b:f1:fd:66:c6:cc:83:ee:4b:df:f5:b0:76:01:1f:
d5:7b:3a:35:e1:fb:7c:b8:8e:62:df:31:09:36:c6:
a6:de:3d:48:3e:4f:b6:04:c5:09:a6:9a:95:4b:d5:
24:94:ca:07:b1:7f:72:1b:c9:70:86:84:ed:97:27:
c9:f3:c7:64:75:76:32:0f:07:3f:02:da:c5:ee:7b:
df:af:73:fa:c0:2c:2e:80:6f:e4:cd:24:1e:66:85:
ca:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D2:16:5B:66:B0:96:CF:1D:3F:8E:C7:90:90:72:B2:47:5E:31:AB
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/zdIWW2awls8dP47HkJByskdeMas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.75.108.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:06:c7:bc:fc:bf:a7:92:5f:52:99:59:d0:f8:a2:8a:7f:67:
05:c3:58:50:0e:47:4a:cf:bf:8f:e9:d7:59:cf:d8:02:56:b3:
bb:2d:7a:a4:e4:73:79:68:14:f5:9f:b6:60:55:eb:62:14:48:
d9:ef:51:f0:ec:13:ce:de:95:af:15:80:ff:2e:41:f9:43:16:
3f:47:a5:12:17:83:07:6d:32:d1:bd:e0:26:9b:aa:52:ce:3a:
13:9d:43:dc:41:af:b4:59:2c:e9:c6:07:ef:50:cf:27:db:0b:
af:38:52:9d:13:c6:bb:05:c2:10:7a:ed:25:bf:b0:a9:5e:11:
77:d7:51:ef:38:fa:d4:93:36:59:95:17:70:dc:50:ca:df:16:
c2:7a:68:60:da:dc:06:fb:6d:03:b0:07:85:d1:37:75:84:28:
1c:5e:59:d8:d4:1b:7f:dd:87:33:a6:4f:be:65:73:b4:19:de:
e3:3b:5a:f3:8d:81:dd:4b:f0:47:3f:1c:1e:7b:f0:a1:c3:7a:
74:35:f0:42:c7:c0:64:a6:c7:b8:02:f4:38:b1:87:89:2a:b8:
1d:e6:02:bb:e5:a2:c4:35:13:e3:cd:4c:f6:0b:ea:2e:47:71:
c2:d9:06:45:9e:04:16:07:c6:c6:e5:00:a3:f5:cd:cb:42:bb:
79:e6:40:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:06 2024 by rpki-client on console-ams.rpki-client.org