Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/AunK3Hxa0zfUtit4hO6f4N4MYDA.roa
File: AunK3Hxa0zfUtit4hO6f4N4MYDA.roa (raw, json)
Hash identifier: npR4sMlFQ7NyvkBlBwdJUTja+oX0IX0yAr6kaS5h0io=
Subject key identifier: 02:E9:CA:DC:7C:5A:D3:37:D4:B6:2B:78:84:EE:9F:E0:DE:0C:60:30
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01856F14F12B5CD08F2DA073109E4DBAD57E
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/AunK3Hxa0zfUtit4hO6f4N4MYDA.roa
Signing time: Sun 01 Jan 2023 20:45:21 +0000
ROA not before: Sun 01 Jan 2023 20:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201549
IP address blocks: 88.199.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f1:2b:5c:d0:8f:2d:a0:73:10:9e:4d:ba:d5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 20:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02e9cadc7c5ad337d4b62b7884ee9fe0de0c6030
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:70:80:a8:90:2b:a5:de:a0:25:8b:df:39:44:
dd:c1:51:14:3c:38:02:cb:ca:53:60:b3:bb:b8:97:
2b:d7:e4:56:6f:42:04:7f:ea:41:b7:c9:fa:fd:75:
d4:5b:79:b3:eb:fb:54:9f:b1:aa:e7:5b:87:8c:90:
97:38:82:df:41:c3:2e:d4:d5:26:f9:86:9f:b3:bd:
73:fa:ad:d5:54:1c:78:d1:3a:af:1a:f1:76:57:ba:
e7:6e:f0:0f:39:46:48:11:ed:93:5b:f6:9f:4c:c1:
60:81:a1:e1:22:d1:b0:24:9c:02:48:6d:50:4e:4d:
9b:75:0b:65:ba:a8:2a:56:1f:29:a4:f6:01:e1:f9:
55:5d:55:98:96:ae:c7:d2:8b:de:88:1c:e2:62:ec:
36:b6:10:1e:17:9f:6e:d5:ec:4c:90:f3:90:c1:66:
de:bc:56:b7:aa:c2:2a:c9:9c:0f:e2:8b:d3:dc:41:
fa:1d:cd:42:a4:1b:ba:cd:dc:a2:84:c9:01:36:7c:
9f:bb:53:9c:2d:56:52:f7:a0:56:a0:aa:c8:00:55:
13:d4:69:6a:4d:33:c4:7a:3a:9f:c3:25:a2:1b:41:
62:fb:74:f3:76:ad:39:55:3c:f4:24:b3:f9:74:1d:
dc:43:dc:1c:2a:33:b4:52:8c:91:d7:27:d6:3d:52:
4d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E9:CA:DC:7C:5A:D3:37:D4:B6:2B:78:84:EE:9F:E0:DE:0C:60:30
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/AunK3Hxa0zfUtit4hO6f4N4MYDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.97.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:2f:0c:cd:7c:ba:0b:6c:26:e1:31:b9:72:46:74:74:1b:aa:
78:fc:b1:7c:4f:dd:c2:29:6d:b3:79:7f:c0:28:31:2a:c1:1f:
45:bb:18:c9:c6:f9:46:1e:26:c9:6c:f4:1f:0d:f4:df:91:e4:
dd:c4:44:26:56:d5:a3:7c:36:23:af:49:b2:62:20:0e:f2:6c:
dc:f9:f7:e3:ba:cc:cb:5e:03:c4:ca:80:87:99:89:c3:ac:54:
fa:e5:e0:87:26:b2:4c:1a:60:a6:be:f9:eb:2a:fd:cd:7c:23:
e9:99:8a:66:18:34:03:d6:38:74:a2:e5:14:f8:a7:89:cb:d1:
5d:7f:26:c2:94:21:5e:33:0e:57:e3:9f:3b:89:e8:88:63:79:
34:5e:53:90:ca:7b:03:4f:c7:8f:b4:10:14:3f:17:01:d4:dd:
ed:b4:24:34:50:f5:58:8a:fc:fd:52:8a:ef:dc:72:c9:d5:57:
d4:50:3c:e7:ef:74:75:93:b1:e7:0d:14:bf:ce:7f:27:62:36:
ee:e0:53:c0:64:67:57:3a:99:70:15:87:31:58:c4:9c:e5:00:
c4:11:0e:fd:ea:0d:c6:9f:8a:bf:1b:97:5b:2a:e7:20:21:81:
fa:49:c6:d3:2e:09:a7:0f:e6:28:3f:ee:e5:a8:27:03:c8:8f:
4a:2b:ba:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:21 2024 by rpki-client on console-fra.rpki-client.org