Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/eNiSt5HmH7M9XDowFkKYeeswKXY.roa
File: eNiSt5HmH7M9XDowFkKYeeswKXY.roa (raw, json)
Hash identifier: xapE8rzNUecIYMnlPvx6pBs024cjIoBIkvSw7PbGmPo=
Subject key identifier: 78:D8:92:B7:91:E6:1F:B3:3D:5C:3A:30:16:42:98:79:EB:30:29:76
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01856F14F0A8316A7653053154EA970CB6AC
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/eNiSt5HmH7M9XDowFkKYeeswKXY.roa
Signing time: Sun 01 Jan 2023 20:45:21 +0000
ROA not before: Sun 01 Jan 2023 20:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201122
IP address blocks: 88.199.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f0:a8:31:6a:76:53:05:31:54:ea:97:0c:b6:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 20:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78d892b791e61fb33d5c3a3016429879eb302976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:79:7c:50:4c:52:a7:1d:4a:fb:0f:59:e4:37:
69:c7:a7:e7:d6:06:88:d0:2c:82:67:5c:29:6d:c9:
a0:78:03:62:9e:4d:c7:df:a1:a0:73:a3:5c:0c:1a:
9f:e4:25:ae:13:dc:03:77:b8:32:66:fe:1f:87:0f:
1d:64:db:51:0a:c9:fa:e2:f2:3b:cc:4d:94:5b:ea:
51:36:5e:34:2e:04:fb:8c:5e:87:c7:dd:4e:ce:b9:
40:ba:55:6d:ee:4a:cd:84:c0:1a:d0:c3:ca:3a:b9:
24:be:81:de:08:3e:9d:45:fe:52:c6:52:85:55:b3:
e1:28:9a:a9:5f:b8:5f:fb:7d:5a:c2:95:5e:85:16:
6f:8b:a8:2b:b5:c7:be:16:f4:0a:aa:c2:bb:7f:35:
34:fe:4c:f3:8c:61:97:8e:d5:10:65:bb:1d:16:51:
e8:41:ec:76:ff:86:ad:3e:d6:a8:8e:0e:d7:1f:14:
46:a7:6b:2c:16:af:20:03:99:02:83:c4:a6:0e:26:
f0:89:28:9d:65:38:47:4e:ad:aa:30:e5:48:88:6c:
35:84:e0:d4:cb:e1:02:97:92:56:9f:a3:c8:4e:c9:
c5:73:c8:77:40:32:aa:c2:43:70:49:26:42:de:c1:
3e:e5:33:78:ab:bd:d7:b6:54:ed:17:06:6c:67:a2:
11:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D8:92:B7:91:E6:1F:B3:3D:5C:3A:30:16:42:98:79:EB:30:29:76
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/eNiSt5HmH7M9XDowFkKYeeswKXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.172.0/23
Signature Algorithm: sha256WithRSAEncryption
11:22:a4:22:f0:05:ea:ed:59:81:16:24:bb:44:4b:74:4c:72:
9e:c9:e3:02:1b:89:fe:20:27:ca:74:db:b3:a9:9a:a2:33:26:
49:89:52:4f:93:6f:fa:28:11:e1:58:96:e5:e9:c7:96:a7:9d:
12:a0:f1:d5:98:19:aa:68:ad:fb:f1:d3:27:95:73:63:dc:cb:
28:42:cc:21:ad:26:ca:29:b9:8d:a8:b8:23:04:4f:98:9c:da:
97:13:39:cd:41:56:f4:f0:e9:71:3a:b1:be:af:3e:ab:20:c7:
f5:a0:8f:bb:6a:93:77:88:f4:98:34:45:40:4c:59:23:79:55:
90:34:18:88:12:da:6f:b2:2e:4f:7c:7e:f9:cb:d0:53:55:95:
44:0e:15:5a:c6:1c:4b:81:e9:58:8f:37:07:f8:02:22:5b:7f:
9c:f6:f3:1c:cf:0d:d4:74:b3:f5:91:0b:b8:16:d2:bd:55:36:
f3:bc:29:c3:90:d6:ec:41:8e:29:52:d2:95:69:24:1f:23:a9:
b6:8c:c7:48:41:23:95:fd:4c:ae:70:a7:7d:f2:1a:ed:53:17:
0e:f7:5c:ce:9d:3e:ae:a8:b3:0d:ea:b9:1c:79:77:8a:72:81:
c3:d8:0e:8b:84:00:22:ab:5e:b1:40:2b:b4:2a:e7:37:47:16:
16:98:6f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org