Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KvWtOL1aKnDUji-tgBydKkwupcc.roa
File: KvWtOL1aKnDUji-tgBydKkwupcc.roa (raw, json)
Hash identifier: wl0vHhl6FHq5W7tI/ZbqWx6mm2G52rAYwYG1WVhhejk=
Subject key identifier: 2A:F5:AD:38:BD:5A:2A:70:D4:8E:2F:AD:80:1C:9D:2A:4C:2E:A5:C7
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019088278B4271BC98FC2F319846380E3AA6
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KvWtOL1aKnDUji-tgBydKkwupcc.roa
Signing time: Sat 06 Jul 2024 13:06:51 +0000
ROA not before: Sat 06 Jul 2024 13:06:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25198
IP address blocks: 88.80.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Sep 2024 12:36:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:88:27:8b:42:71:bc:98:fc:2f:31:98:46:38:0e:3a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jul 6 13:06:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2af5ad38bd5a2a70d48e2fad801c9d2a4c2ea5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:48:c2:02:76:76:35:ff:14:8e:55:e5:b9:96:
ba:3e:54:fd:04:87:1a:51:09:7b:02:bf:f8:7b:57:
12:e6:d9:f9:70:f1:ca:4a:e4:1e:c0:5c:fa:b7:e4:
48:aa:89:e2:29:16:8f:d9:7f:f1:9e:14:69:80:df:
40:5f:e5:bf:9f:5d:35:02:73:e3:45:e5:27:ea:d3:
21:7e:bf:65:ba:28:31:27:77:f2:5a:10:25:19:56:
6f:ff:c8:20:19:23:1b:dd:e1:59:ab:cb:f9:cc:8e:
58:8b:50:18:0b:cf:dd:fb:06:f9:91:42:0c:0e:69:
d7:17:de:3e:4a:60:32:21:5c:7e:b3:6b:2d:88:d8:
3c:21:fa:b7:c7:12:4d:1e:28:f5:38:78:e0:dd:d1:
34:d3:20:10:35:96:29:b5:ba:70:cf:68:d0:00:dc:
2e:d7:f4:47:1a:d6:77:22:4c:d6:e4:a4:5e:e2:17:
d9:f4:f5:d5:78:48:a0:ad:fd:72:6e:5d:3f:6b:08:
7e:f5:92:42:f1:db:99:f4:11:2c:c6:b1:89:2e:e8:
94:cb:60:69:b8:b3:31:20:60:65:27:42:00:02:8e:
1d:d6:a2:96:2b:a6:57:d1:1a:84:32:93:0c:5e:9c:
a7:cd:74:d6:24:d5:98:92:16:c6:29:fb:21:a7:05:
32:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F5:AD:38:BD:5A:2A:70:D4:8E:2F:AD:80:1C:9D:2A:4C:2E:A5:C7
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KvWtOL1aKnDUji-tgBydKkwupcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.139.0/24
Signature Algorithm: sha256WithRSAEncryption
65:4d:30:de:a5:27:b4:7b:32:97:ac:66:ea:50:34:c6:08:13:
c5:4a:ca:11:f4:5b:c2:4a:43:89:5d:ef:d8:6a:2e:95:8a:77:
23:42:ca:74:8d:b7:63:e2:4a:12:3d:42:a2:5d:f0:37:1b:87:
67:bc:97:67:f3:45:dc:31:2c:36:1e:b8:17:66:5d:8d:d3:13:
76:8b:53:a1:e8:19:aa:07:c8:7c:25:5a:fa:0a:0f:4c:8a:77:
ee:a9:ce:f2:35:1e:ba:59:6f:1f:1c:3b:b6:d0:c9:79:13:4d:
d5:65:04:69:2c:90:b3:61:96:08:16:7e:8a:8e:db:33:89:7d:
87:19:76:0d:18:f1:33:4c:31:b1:d5:45:eb:2c:ce:32:15:78:
5e:34:e6:c3:20:87:e6:58:fc:24:ce:76:22:89:71:31:2c:f2:
29:ba:41:68:7c:6f:33:60:3d:0b:99:52:67:a8:42:e5:a1:21:
a8:96:f8:a0:b0:49:68:d7:1a:23:1d:0c:33:87:81:c1:8a:8a:
b6:1d:9a:aa:5c:d1:c3:1b:3e:44:d4:95:6e:34:28:cd:ba:37:
43:f2:38:4f:bf:15:a4:46:d1:87:7c:e7:e6:d4:93:bd:ab:b9:
cd:5f:1f:46:d6:34:52:0c:7b:83:48:40:ec:a0:63:22:0c:36:
61:aa:7e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 26 16:48:09 2024 by rpki-client on console-ams.rpki-client.org