Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/C1MJTytSCdvQDvyOUSsPrVg9jNE.roa
File: C1MJTytSCdvQDvyOUSsPrVg9jNE.roa (raw, json)
Hash identifier: xHAfzjjj9FYHOzJwVZh0znaAueWU3UyNZocX44NdyzA=
Subject key identifier: 0B:53:09:4F:2B:52:09:DB:D0:0E:FC:8E:51:2B:0F:AD:58:3D:8C:D1
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0B0EB769D353C58F7B1257316E00F
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/C1MJTytSCdvQDvyOUSsPrVg9jNE.roa
Signing time: Mon 02 Jan 2023 05:25:00 +0000
ROA not before: Mon 02 Jan 2023 05:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62147
IP address blocks: 88.220.250.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b0:eb:76:9d:35:3c:58:f7:b1:25:73:16:e0:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b53094f2b5209dbd00efc8e512b0fad583d8cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:45:5a:47:ee:37:4f:f6:b8:8c:9c:76:88:32:
e7:e7:b8:82:b4:c9:88:97:88:d9:77:85:3a:d1:15:
6e:5f:6b:33:ba:0f:66:01:8b:ef:46:ab:f2:95:8d:
f5:99:3c:f9:27:e9:55:4e:0a:5f:f8:b5:7c:a9:02:
84:5a:f2:ec:1d:9c:f0:e9:2b:47:a7:49:f1:e3:bc:
78:3f:7a:d1:59:8d:a5:b4:70:a3:8b:d4:c2:a2:2a:
c8:4a:22:09:a9:61:bc:be:09:e7:74:6e:44:aa:0e:
01:b2:55:78:42:cb:4f:a5:34:c5:ed:c9:3e:74:4d:
c0:1e:60:f6:f3:b2:90:39:e0:8f:20:80:ed:04:47:
4c:c6:14:a2:81:89:13:ec:d9:86:8b:83:03:c8:5c:
5b:61:ad:27:b4:1d:42:3c:f1:3d:1a:2a:df:54:ff:
5c:39:91:1d:11:18:6f:f5:77:bc:2a:14:6f:c0:6d:
d0:ee:b0:80:f4:84:2b:5b:b8:a4:c2:4a:d0:d2:41:
33:5b:f7:50:9d:0b:28:d8:75:79:2d:3c:63:85:73:
87:88:e5:dd:74:25:c4:0d:fc:36:71:be:39:2b:02:
06:3a:3d:33:0b:26:6f:0a:0c:17:7c:66:36:01:b4:
e3:9e:4c:1a:3f:4c:fe:35:ee:75:09:84:66:30:6c:
59:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:53:09:4F:2B:52:09:DB:D0:0E:FC:8E:51:2B:0F:AD:58:3D:8C:D1
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/C1MJTytSCdvQDvyOUSsPrVg9jNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.220.250.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:c5:1b:d7:5a:f5:da:e2:82:33:d9:bd:3c:a7:12:02:fd:51:
32:78:4c:51:67:b6:cd:50:5c:33:18:9d:f5:76:82:d8:08:d8:
13:c2:0a:5e:62:b8:f0:fc:50:a2:c8:95:bb:cd:03:12:39:8d:
a2:6e:66:3b:f6:05:4d:2f:6d:a6:9a:7d:16:c5:b1:f6:0c:6e:
3e:13:c8:91:1d:59:ef:27:ca:8a:2a:60:68:86:52:f5:22:5f:
f1:be:e0:3e:2d:bd:53:b8:3e:45:71:b7:73:ef:dd:f9:5b:f9:
9d:b9:2a:f3:17:86:78:47:00:75:07:41:04:8b:db:18:73:c5:
13:b3:68:15:f9:66:49:ab:5d:6b:cc:ac:53:68:bb:f4:af:25:
bd:6b:a8:1e:eb:d5:b6:50:fc:9e:94:cc:13:73:70:38:d9:0d:
d4:e5:55:80:0e:a9:66:c4:22:ee:f9:d6:bf:04:29:e1:a9:f5:
cd:fe:d2:67:6a:fc:02:c8:4f:fe:46:01:b9:22:10:59:08:29:
4a:97:4d:4c:42:36:37:e0:fd:6c:c7:5f:0c:71:d8:d8:17:83:
5b:95:4f:ad:f9:34:3a:ec:93:3f:bc:df:6e:44:25:53:a0:1a:
df:eb:6a:b3:99:90:71:f1:4b:72:c0:73:b6:fc:d2:4b:74:8a:
12:a6:90:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:20 2024 by rpki-client on console-ams.rpki-client.org