Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/398IYAX0KkikJuFTm2gMwn60-w8.roa
File: 398IYAX0KkikJuFTm2gMwn60-w8.roa (raw, json)
Hash identifier: v10StSPRGBjMuYwQ8sw5m6ljSmkn7LgOMO3Lur2YDXk=
Subject key identifier: DF:DF:08:60:05:F4:2A:48:A4:26:E1:53:9B:68:0C:C2:7E:B4:FB:0F
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01878F6D07AA8D0F87CBD412001F9CCF07E8
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/398IYAX0KkikJuFTm2gMwn60-w8.roa
Signing time: Mon 17 Apr 2023 13:34:59 +0000
ROA not before: Mon 17 Apr 2023 13:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 45.88.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 11:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:6d:07:aa:8d:0f:87:cb:d4:12:00:1f:9c:cf:07:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 17 13:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfdf086005f42a48a426e1539b680cc27eb4fb0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b8:95:6b:1a:79:24:b4:68:f7:02:cc:ea:7b:
8e:e2:74:97:74:cc:5d:fc:f0:52:e5:db:37:bf:41:
c6:1a:ca:29:2e:7a:9c:14:b3:79:3e:81:a0:17:c1:
60:3a:1a:9c:2b:fa:b3:3f:c3:1d:4e:23:ee:af:89:
cf:19:62:ba:cc:8f:0e:e7:0a:19:39:4c:95:4a:32:
74:d8:3e:2c:8d:db:f8:84:b9:ff:c2:85:82:72:66:
be:a8:9d:da:fc:a8:66:87:f6:51:97:cc:86:66:ce:
f6:da:96:f1:52:f0:60:a6:0c:b7:7b:ed:15:53:76:
12:da:26:ad:23:76:5c:6f:41:89:9f:fd:46:72:ea:
c9:7a:0d:ad:64:58:57:f2:a0:11:b1:9a:ab:96:3b:
c0:c6:8d:95:69:82:7b:26:82:ba:ce:63:d3:4c:19:
01:9e:cf:b7:3f:10:c4:8d:01:8b:37:6f:3a:80:f7:
3e:8b:a1:de:2f:7c:2c:d0:fc:13:3c:1c:83:46:cf:
1b:ea:90:0d:f0:d4:ca:83:1f:ea:82:39:99:b7:be:
c8:36:98:09:41:d8:3b:2d:fd:f7:10:36:87:78:5e:
f1:da:6f:29:53:f0:56:5a:ee:69:9d:5d:08:64:4f:
fb:5f:6a:08:cd:d0:5a:27:34:29:31:f4:7e:02:37:
26:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DF:08:60:05:F4:2A:48:A4:26:E1:53:9B:68:0C:C2:7E:B4:FB:0F
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/398IYAX0KkikJuFTm2gMwn60-w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6a:1a:f7:de:7e:0a:b1:85:ef:bc:52:a7:97:c4:ff:5e:44:
4c:24:8d:a4:ae:c7:3a:ee:c3:f9:e4:88:8a:55:ea:f6:97:95:
60:89:67:28:39:5d:58:cc:c9:a5:f6:19:90:85:b8:57:dc:b6:
b5:e6:16:67:61:ce:0c:42:43:4c:f6:99:00:1d:9b:a1:82:8a:
b7:f2:2f:43:f4:22:e9:79:e5:a1:fd:a1:2a:84:99:82:08:f8:
c8:7d:8e:3c:c1:23:28:9f:6d:8f:75:cb:e9:cc:5d:4f:ca:9d:
cf:47:8a:bd:51:58:dd:92:94:e7:72:e1:e1:5b:c2:51:da:36:
cb:fc:b7:d8:79:bb:d8:5d:d3:da:a7:fb:64:63:ab:16:c8:a8:
9e:f4:02:b2:2c:2d:35:04:55:fe:73:80:cc:a5:7e:d3:68:8c:
39:78:cc:c4:3d:81:a8:23:23:d5:80:99:cf:6c:90:26:d3:f2:
a2:38:21:70:54:48:16:dc:38:3c:dd:ac:ec:ac:2b:69:58:9d:
f2:0d:82:a9:b5:d3:c0:a5:1d:05:74:cd:5b:41:12:ff:3f:4d:
66:c7:a3:22:14:f2:7c:95:ad:44:73:27:24:3a:c6:d8:4b:7f:
36:96:f7:2a:85:87:bc:b6:73:70:35:e9:03:a8:0c:bf:fb:28:
8f:71:94:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:11 2024 by rpki-client on console-ams.rpki-client.org