Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b58d94-b564-4d49-a8fd-5c096a87bb07/1/zdull8WxRoBh77-tOlVd5yb9Ejw.roa
File: zdull8WxRoBh77-tOlVd5yb9Ejw.roa (raw, json)
Hash identifier: IWs1duzA0ZuZqycGeGb5Mio5R+qyXFefsfG/t6Ha//k=
Subject key identifier: CD:DB:A5:97:C5:B1:46:80:61:EF:BF:AD:3A:55:5D:E7:26:FD:12:3C
Certificate issuer: /CN=3b5c2467546f4b078a0224da1ccac5c287e93453
Certificate serial: 01856D13D3F3FD75A3F3BF4208A5CC8DF963
Authority key identifier: 3B:5C:24:67:54:6F:4B:07:8A:02:24:DA:1C:CA:C5:C2:87:E9:34:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O1wkZ1RvSweKAiTaHMrFwofpNFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b58d94-b564-4d49-a8fd-5c096a87bb07/1/zdull8WxRoBh77-tOlVd5yb9Ejw.roa
Signing time: Sun 01 Jan 2023 11:24:54 +0000
ROA not before: Sun 01 Jan 2023 11:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50177
IP address blocks: 88.135.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:d3:f3:fd:75:a3:f3:bf:42:08:a5:cc:8d:f9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b5c2467546f4b078a0224da1ccac5c287e93453
Validity
Not Before: Jan 1 11:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cddba597c5b1468061efbfad3a555de726fd123c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d8:57:c0:14:34:25:b2:df:a1:df:62:45:f3:
5b:64:2b:b3:a0:39:52:5b:46:30:25:1b:6a:f9:75:
1e:fd:0a:31:16:2b:a4:60:a4:54:01:33:4f:65:4f:
91:60:ab:d8:aa:7b:85:72:fc:c4:c7:05:95:40:3c:
78:fe:fb:68:de:30:77:6f:2c:3a:df:b5:07:c7:6d:
fd:e7:1f:8d:1f:49:44:9e:1f:5c:31:3f:4a:55:9f:
f7:d2:08:7e:3a:b0:91:d7:65:22:fa:a0:6d:37:e4:
a8:0a:0c:f7:77:e0:ad:13:7f:e8:b1:16:74:f0:90:
3d:50:21:fb:7a:a5:bc:30:db:77:56:44:91:6a:df:
ae:c0:45:81:2f:a1:df:99:f3:f8:ab:3e:b4:af:17:
26:18:11:d3:2e:ef:5e:d9:25:e6:ab:b9:ec:b1:15:
14:fe:d4:63:86:20:f2:74:d3:6c:94:58:8f:52:b4:
d6:eb:91:da:8e:17:4e:f5:9a:f4:1e:5e:9f:21:58:
c6:bc:9c:71:46:2b:e7:29:04:42:b9:0d:91:14:6d:
ad:2e:60:c2:ae:71:8a:6b:ab:2b:7e:47:68:38:e6:
57:94:0b:16:40:94:37:7c:f9:41:1d:cb:50:80:e9:
8f:9e:3e:5c:48:ca:9c:39:47:9b:b9:5b:f1:dc:24:
f0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DB:A5:97:C5:B1:46:80:61:EF:BF:AD:3A:55:5D:E7:26:FD:12:3C
X509v3 Authority Key Identifier:
keyid:3B:5C:24:67:54:6F:4B:07:8A:02:24:DA:1C:CA:C5:C2:87:E9:34:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O1wkZ1RvSweKAiTaHMrFwofpNFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b58d94-b564-4d49-a8fd-5c096a87bb07/1/zdull8WxRoBh77-tOlVd5yb9Ejw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b58d94-b564-4d49-a8fd-5c096a87bb07/1/O1wkZ1RvSweKAiTaHMrFwofpNFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.32.0/24
Signature Algorithm: sha256WithRSAEncryption
20:59:37:d9:b0:ef:f4:bc:70:26:f8:0e:d0:1c:b4:79:68:99:
33:9c:72:a5:45:b1:da:f2:7e:db:ee:7a:95:9e:33:be:b8:41:
23:ad:24:5c:51:45:4a:3b:ca:e6:f7:49:84:c5:3b:44:01:42:
18:e9:50:fb:2c:ee:db:9e:9d:aa:bd:9b:e5:86:00:07:75:c1:
8d:ff:a2:a3:f2:30:d5:a2:a2:46:43:96:8d:a2:6f:9d:15:41:
8e:95:42:06:fb:11:98:24:b5:d4:0d:07:7f:43:41:44:58:e8:
9f:af:0d:58:6f:44:ec:23:8f:c3:10:f4:31:a1:17:fc:ba:9b:
ca:cb:a5:00:b8:57:3b:21:b3:e0:65:e9:a3:5d:74:c7:4c:e6:
5c:ef:93:2c:88:81:f1:a0:5d:5c:c1:89:fa:bd:dd:73:92:3f:
e1:8a:53:ba:96:3b:ee:63:5f:18:f8:ee:c5:9b:d7:da:96:93:
fc:d3:37:93:d0:7c:f4:e5:d0:3f:fb:da:99:d7:8e:fe:50:72:
9c:e4:03:8c:d1:ad:f5:43:7d:a4:05:1f:d9:2d:24:2a:9f:c1:
54:14:78:d7:c7:88:0e:2a:6b:c2:e6:33:24:d7:98:ab:05:d9:
42:6f:52:1b:d7:3e:87:e2:32:40:51:f5:4f:aa:5d:33:fb:65:
fc:9d:90:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org