Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7zDlo5cpp7RyFjGfyLrmRkEaTT0.roa
File: 7zDlo5cpp7RyFjGfyLrmRkEaTT0.roa (raw, json)
Hash identifier: g7dklOHBLCABMMdJHu+7il++IIe7VSckd8yy1d5b/vI=
Subject key identifier: EF:30:E5:A3:97:29:A7:B4:72:16:31:9F:C8:BA:E6:46:41:1A:4D:3D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0185726332983C1CBFBF0D0E3DA222A5F343
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7zDlo5cpp7RyFjGfyLrmRkEaTT0.roa
Signing time: Mon 02 Jan 2023 12:09:41 +0000
ROA not before: Mon 02 Jan 2023 12:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 45.88.14.0/24 maxlen: 24
188.214.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 05:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:63:32:98:3c:1c:bf:bf:0d:0e:3d:a2:22:a5:f3:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 2 12:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef30e5a39729a7b47216319fc8bae646411a4d3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:42:56:f6:c3:73:f1:c8:37:8f:0f:17:f6:8b:
b3:d9:82:b8:c2:ad:b1:46:8f:54:d9:77:4e:1f:1d:
e7:81:d9:65:eb:a1:e7:d6:37:1f:b6:fa:fb:8c:6b:
41:e9:bd:d5:44:7e:15:8a:e1:d5:52:b1:90:f9:b5:
53:7e:7a:43:91:87:2c:e3:e1:ce:59:44:92:ce:7d:
90:9e:f9:15:ce:ce:ad:59:30:1b:4a:68:15:3f:81:
db:ef:0e:ed:8f:bc:cf:b2:fc:c1:cd:0f:60:40:49:
db:7e:f6:3c:da:52:d5:3c:df:0a:be:59:2b:9c:b2:
05:30:70:a3:fd:67:f5:37:e7:22:85:6e:c3:43:13:
a2:64:e4:af:d1:9a:68:d2:e3:80:b2:a5:43:6d:9b:
cf:4a:c3:f3:57:cf:bd:05:41:ca:f6:0a:c4:ec:d5:
2b:fc:b6:e9:77:a9:c6:1d:26:44:a6:f6:b6:44:ed:
9e:c8:e3:3f:14:72:47:c7:ef:7a:bd:43:9a:ac:8f:
ec:d1:f2:44:c3:8a:36:ee:db:4b:4f:27:e4:65:e4:
27:f8:cd:55:12:00:1c:27:7f:ea:d6:37:f8:4e:5d:
81:3c:79:e5:78:35:0d:6d:d0:79:32:56:22:86:d3:
b0:b4:9d:3f:0e:cc:5f:c1:9e:bd:cf:f6:59:43:37:
7e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:30:E5:A3:97:29:A7:B4:72:16:31:9F:C8:BA:E6:46:41:1A:4D:3D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/7zDlo5cpp7RyFjGfyLrmRkEaTT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
188.214.107.0/24
Signature Algorithm: sha256WithRSAEncryption
22:6b:7e:30:19:a4:ce:7a:60:3e:32:02:91:d2:25:84:3a:ab:
83:f2:94:11:ea:b3:a8:99:d9:91:ee:8a:2a:9d:54:9b:08:75:
a9:30:b0:f1:cc:be:9a:b6:03:73:42:4f:be:e0:ee:7d:e9:da:
58:10:f5:16:a7:56:ff:58:2d:1c:ce:36:b9:bc:86:ef:96:c8:
55:75:3c:72:e7:9d:ab:d3:85:20:9e:1a:a7:01:8b:cd:29:d1:
bb:71:5a:a7:f0:35:18:85:53:02:d3:40:3e:4b:81:7c:8d:b5:
be:ea:c5:83:73:85:4f:6c:e2:1d:c9:ef:c0:58:a0:c0:7b:b0:
9a:21:60:83:c3:01:7c:dd:d0:41:fa:d8:c8:11:9d:e9:d5:95:
8e:c9:57:0e:0f:33:0b:b9:aa:ca:f0:0d:72:f9:a5:f8:02:a9:
20:46:c0:47:1d:dc:c1:d9:da:90:78:e0:4e:62:5a:d6:fc:e6:
bf:ad:42:86:55:b4:53:a0:24:59:5a:e0:23:f5:17:7e:fe:cc:
bf:a8:69:df:38:7c:5b:da:21:1b:44:9e:93:c9:32:1e:dc:22:
e3:68:6c:9e:88:f5:1c:ff:a7:ea:93:e2:03:38:c2:26:5f:8e:
0b:a7:fa:09:8f:92:69:ef:43:53:91:65:15:72:f3:a8:42:99:
34:3e:fa:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:12 2024 by rpki-client on console-ams.rpki-client.org