Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/AdbKNMBP9WbAlAvLWtrvie7tanI.roa
File: AdbKNMBP9WbAlAvLWtrvie7tanI.roa (raw, json)
Hash identifier: 4p6VZLRvNcM8KNB9RA/8rt51vOkn+4rHhWU35s/9jBU=
Subject key identifier: 01:D6:CA:34:C0:4F:F5:66:C0:94:0B:CB:5A:DA:EF:89:EE:ED:6A:72
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0C567365604BFAA892A663E71EA59
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/AdbKNMBP9WbAlAvLWtrvie7tanI.roa
Signing time: Mon 02 Jan 2023 05:25:05 +0000
ROA not before: Mon 02 Jan 2023 05:25:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206411
IP address blocks: 88.220.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:c5:67:36:56:04:bf:aa:89:2a:66:3e:71:ea:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01d6ca34c04ff566c0940bcb5adaef89eeed6a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:cf:61:29:34:79:8d:96:d2:be:28:6f:15:
7a:8b:88:85:d1:39:aa:8f:ee:b0:04:ab:eb:6a:85:
7a:13:53:c9:c5:2a:5a:69:2a:64:aa:b2:ae:63:42:
76:9a:55:e5:68:d9:7e:f8:3d:1b:33:67:b4:03:c1:
b9:32:b5:e8:df:4f:69:a3:ff:53:e1:95:58:75:4b:
05:f2:9c:01:65:c3:b1:84:0c:b9:06:08:6f:a5:18:
f8:a4:bf:de:23:b3:22:fc:cb:59:0e:52:a7:2a:6e:
06:0a:5f:6d:d8:38:6d:eb:87:4a:7e:ac:3b:ab:e3:
e7:cb:5b:85:0c:0d:02:c1:82:11:36:cf:91:0e:b0:
2d:4e:70:7a:3d:f1:98:8d:6e:e7:27:46:25:ce:08:
5c:31:86:48:55:48:35:64:39:47:9f:40:c7:14:65:
bb:94:e0:38:c0:aa:3b:da:14:52:0c:1a:01:27:e9:
ca:74:ca:46:40:40:59:9f:b7:d0:81:32:75:2e:7d:
ca:aa:b3:e0:f5:a2:43:bc:e8:80:de:57:e5:93:5a:
c2:b5:80:99:c7:e4:20:40:7d:f9:56:83:f8:d2:40:
a1:a2:d0:7f:5d:df:8d:6f:0e:99:75:dd:ae:51:3c:
05:a9:8e:90:5f:63:de:5f:15:a8:26:e6:71:91:8b:
0f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D6:CA:34:C0:4F:F5:66:C0:94:0B:CB:5A:DA:EF:89:EE:ED:6A:72
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/AdbKNMBP9WbAlAvLWtrvie7tanI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.54.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:a2:40:be:af:4f:bb:19:ad:ee:af:da:53:ae:69:92:a0:b3:
d1:88:63:29:4b:d4:d0:10:37:7a:8e:7e:68:69:e3:93:89:8e:
d8:68:77:f9:18:7e:05:fe:c3:2a:be:b8:1f:21:a4:41:08:c6:
82:5d:30:42:00:b0:2f:86:5f:07:f4:63:54:af:08:fa:42:f4:
62:b1:c2:e1:21:76:62:49:9e:31:9d:d9:9a:ca:86:d6:9f:26:
4b:76:25:22:79:9f:06:6f:8f:b5:9e:0d:6f:ac:76:1e:da:45:
c1:dd:22:12:a7:0e:62:89:97:95:3d:83:de:21:9c:06:d8:72:
ca:55:62:93:9f:19:ae:0e:b3:c7:b3:50:d0:f2:a5:fd:6a:3e:
cc:49:f1:50:ad:d5:d2:7d:dc:d6:50:2e:aa:35:9f:ed:c4:62:
21:a2:e4:56:e5:97:3c:e5:50:2c:a4:f7:21:19:5c:14:03:6c:
f4:99:78:1e:67:49:7d:85:85:27:03:d6:6b:6e:48:3d:f8:70:
1d:78:c1:83:2c:63:56:34:b7:e2:b2:3e:48:6f:60:d0:4c:55:
20:79:ba:61:23:fb:33:1c:36:00:ff:59:cc:10:b0:78:8c:f6:
8f:1d:09:73:d5:07:01:38:d0:b3:f2:2a:0a:f1:61:62:1c:ad:
c9:ce:dd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:36 2024 by rpki-client on console-fra.rpki-client.org