Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/Rq0p1ttIEHT3oUxMUl-e4LYBS8U.roa
File: Rq0p1ttIEHT3oUxMUl-e4LYBS8U.roa (raw, json)
Hash identifier: fmp4WahQAddtVWxZ6iveGFoZdy9SxxVM6i312egThqk=
Subject key identifier: 46:AD:29:D6:DB:48:10:74:F7:A1:4C:4C:52:5F:9E:E0:B6:01:4B:C5
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01856F14F2ECAE85F0F36B55B8574B052FD0
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/Rq0p1ttIEHT3oUxMUl-e4LYBS8U.roa
Signing time: Sun 01 Jan 2023 20:45:21 +0000
ROA not before: Sun 01 Jan 2023 20:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203685
IP address blocks: 88.199.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f2:ec:ae:85:f0:f3:6b:55:b8:57:4b:05:2f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 20:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46ad29d6db481074f7a14c4c525f9ee0b6014bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6e:09:2e:71:36:30:7f:ca:9c:70:2e:06:e9:
66:9e:af:93:9b:81:b9:b8:17:02:6f:ff:8d:8c:67:
d8:d1:3a:23:e5:72:2c:e5:a1:8f:41:ae:2d:f2:27:
cc:42:7a:94:da:a4:d7:5f:6a:6e:1d:f9:08:be:5d:
5f:5f:04:1a:ae:68:72:d4:e7:b9:85:75:0a:5e:0b:
1b:60:25:a8:c1:92:3a:2e:de:64:07:c8:5a:f3:42:
5f:d3:ac:59:58:6c:bd:4d:3c:63:ab:bb:79:20:a0:
73:12:1f:64:b6:9e:bd:7a:36:b2:76:72:af:b1:22:
85:95:05:82:7b:d6:9e:c6:7f:10:1c:e0:70:6f:f4:
6f:38:8c:ff:e7:f0:bc:7b:ca:d0:05:76:0b:39:bd:
8f:7e:8d:35:9e:dc:03:b0:11:09:f2:fa:f0:53:0b:
f5:56:89:18:d5:38:b1:4b:35:e3:fc:46:5d:2f:77:
72:1a:d6:3a:16:79:e5:43:f8:ca:00:c6:7b:d4:66:
62:b4:8b:cd:c8:a8:28:73:1e:41:59:58:2c:78:49:
1e:06:bf:f7:c9:e5:d6:2a:a1:7c:dd:e9:aa:69:42:
be:b2:13:6c:15:6f:25:2b:35:7f:b3:5b:36:81:0c:
ce:6a:06:f4:3c:ca:09:60:33:92:0d:76:fd:9c:ed:
b2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AD:29:D6:DB:48:10:74:F7:A1:4C:4C:52:5F:9E:E0:B6:01:4B:C5
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/Rq0p1ttIEHT3oUxMUl-e4LYBS8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.37.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:03:c5:6a:1f:30:25:30:cc:6e:e7:50:72:fd:cc:8e:cc:35:
cc:3e:7d:b7:5c:40:59:01:d2:2f:e5:fe:84:cc:3a:a0:97:ec:
d5:2c:c0:1b:6c:b1:f4:5e:f0:29:9b:bd:31:c3:69:eb:c9:39:
6b:35:8b:64:13:31:12:bb:12:be:1a:12:d7:33:72:b3:9a:bc:
b3:ab:6b:2e:82:a1:33:bd:f1:1b:50:11:d3:1b:31:7a:bf:71:
2b:6e:61:ca:49:f0:72:ce:db:11:f2:77:4e:59:30:f2:6b:cd:
1f:ef:9b:a2:92:ba:79:34:5a:fd:e6:1a:e9:81:a5:f6:3c:e0:
10:5c:6a:9f:46:46:09:6b:c8:e5:7b:84:32:20:ce:c9:2e:38:
a6:1b:32:ea:6a:7a:ad:13:c4:17:2e:dd:bf:47:85:cc:a5:74:
ab:6e:5d:d0:7c:f5:cc:2f:f5:4a:4e:42:bd:59:88:8c:21:e5:
4c:a7:e9:df:13:59:3f:03:8a:40:99:30:ea:8b:9c:7d:5e:9d:
64:ec:ad:9d:89:dd:d4:87:d8:27:b9:0c:9b:6c:87:a1:76:f8:
5d:9e:e8:68:a7:28:1c:78:fd:1d:9c:f7:d7:bc:f8:ab:28:f5:
07:59:41:85:15:de:e2:ab:e2:bb:62:f1:32:d1:1a:90:85:29:
b7:e4:5f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:21 2024 by rpki-client on console-fra.rpki-client.org