Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Bl3eB0_m_hhNGPY1GFsU_mlnbVM.roa
File: Bl3eB0_m_hhNGPY1GFsU_mlnbVM.roa (raw, json)
Hash identifier: dqRmmslZo32hkUZpMfsJI1scbzEJRxs/n95HiKBfYuM=
Subject key identifier: 06:5D:DE:07:4F:E6:FE:18:4D:18:F6:35:18:5B:14:FE:69:67:6D:53
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01897859EDDC7623486EC82A9A8F8781526A
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Bl3eB0_m_hhNGPY1GFsU_mlnbVM.roa
Signing time: Fri 21 Jul 2023 12:08:26 +0000
ROA not before: Fri 21 Jul 2023 12:08:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208356
IP address blocks: 188.72.90.0/24 maxlen: 24
188.72.91.0/24 maxlen: 24
188.72.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:59:ed:dc:76:23:48:6e:c8:2a:9a:8f:87:81:52:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jul 21 12:08:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=065dde074fe6fe184d18f635185b14fe69676d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:00:cf:8d:1f:e8:14:15:eb:27:a9:54:89:fa:
ee:e6:e2:50:f8:6f:07:49:8e:6f:a2:2e:4d:2b:b2:
89:ab:8c:9f:26:08:f5:4a:b2:99:33:fc:75:fc:f7:
9a:66:53:3d:ac:6a:5c:f8:33:00:cd:dd:43:29:b3:
be:d2:40:78:f2:b1:ef:63:a3:91:9d:1d:17:ce:ce:
8f:5c:01:aa:d9:84:2d:01:6a:3c:01:ee:55:05:35:
c7:5e:81:bc:91:f0:c3:b8:f6:2a:4c:8a:c9:ca:34:
14:1b:e6:52:ed:a5:95:1f:f6:60:a4:01:59:26:f9:
8f:9f:a0:ba:5a:81:51:d6:41:79:1e:d9:50:c8:4b:
9e:c4:5c:1e:20:64:ee:44:d4:e7:13:e1:b0:11:33:
cf:5a:15:d2:56:6e:e4:13:5b:d3:f8:1b:a6:60:fe:
14:c7:10:29:94:7c:0a:6a:dd:fc:8d:31:dd:e1:8d:
91:89:99:91:f2:db:b2:39:52:85:13:71:4e:8f:76:
94:95:09:93:71:cb:4e:7a:36:53:d9:0b:83:b6:12:
58:b9:c4:eb:9d:c3:45:f7:ba:07:fc:f6:4b:2f:ea:
1d:e9:16:42:ec:97:d2:2f:2e:f6:b9:86:50:e2:03:
fa:3b:c9:e0:8a:f3:fe:ba:c6:1c:35:9b:e6:7d:3f:
3a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5D:DE:07:4F:E6:FE:18:4D:18:F6:35:18:5B:14:FE:69:67:6D:53
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/Bl3eB0_m_hhNGPY1GFsU_mlnbVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.88.0/24
188.72.90.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:a4:8f:e7:54:4e:56:33:c0:23:9a:97:21:3c:19:2d:ce:a1:
be:36:41:07:6f:94:59:1f:8f:36:25:86:05:ba:f8:a5:43:6f:
c3:b2:92:c4:4e:40:69:bb:a4:9e:8a:3e:c4:b4:4f:b1:47:39:
b7:54:33:54:61:be:23:0b:56:f3:7c:64:8b:9f:e8:a8:ea:ec:
fc:7d:15:d2:74:a0:9a:ca:79:b7:f8:48:dc:76:e3:23:5a:14:
e2:87:4c:47:5d:34:f3:e0:a9:f1:f2:36:3e:cc:51:f1:2e:3e:
54:91:08:40:31:47:49:d5:ee:6b:17:40:c0:1d:79:cc:4f:ff:
98:88:31:e9:4c:5f:d5:38:1d:21:c9:87:52:a9:fa:6c:63:a1:
29:15:48:29:fa:22:a1:78:a3:45:39:2b:dd:fe:39:08:30:8f:
a9:57:b9:9e:f9:60:83:3b:50:e7:40:6e:a0:7f:e8:b8:bf:44:
79:a3:7f:ab:68:a9:96:73:3b:85:48:11:34:49:db:a2:f1:e9:
71:55:9b:4b:5e:46:c3:ed:bf:c2:1a:10:ad:2e:11:2a:a9:9e:
44:67:1c:3b:65:d5:89:e7:bd:e7:b7:ff:af:41:d2:77:97:e7:
da:bf:e4:8a:53:dc:b2:24:0b:fe:cb:63:05:6a:8a:30:d4:10:
38:75:91:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:29 2024 by rpki-client on console-ams.rpki-client.org