Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/RzIhkIYYP5K0ZOQ8SmtVzfOZ1mE.roa
File: RzIhkIYYP5K0ZOQ8SmtVzfOZ1mE.roa (raw, json)
Hash identifier: elbeZXdoVfwjy0oFQU/GJswHsD2VcsFPKydkKxGad30=
Subject key identifier: 47:32:21:90:86:18:3F:92:B4:64:E4:3C:4A:6B:55:CD:F3:99:D6:61
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018B49C9FCAFDEB0028C4A53999808C1A089
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/RzIhkIYYP5K0ZOQ8SmtVzfOZ1mE.roa
Signing time: Thu 19 Oct 2023 21:14:15 +0000
ROA not before: Thu 19 Oct 2023 21:14:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60168
IP address blocks: 88.80.152.0/22 maxlen: 24
88.80.156.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:c9:fc:af:de:b0:02:8c:4a:53:99:98:08:c1:a0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Oct 19 21:14:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4732219086183f92b464e43c4a6b55cdf399d661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:39:83:f5:39:dd:96:30:de:23:5b:4f:0f:4e:
b8:7c:6b:28:e0:72:95:2c:b5:6c:ac:47:22:8e:15:
83:36:86:73:83:78:b3:17:35:62:be:c2:a5:4b:e6:
00:de:a8:d2:45:4a:a6:f6:57:7f:8f:8a:45:f5:fd:
65:cc:6e:b6:f8:b0:dc:ca:fd:c8:81:37:57:af:3e:
1c:4c:24:fd:3c:0b:8c:7c:20:ee:72:55:9a:1b:28:
47:fe:25:77:a5:e8:5d:cc:7c:6a:4e:d2:49:06:16:
2f:1f:1a:c2:01:fe:48:a3:0b:45:92:01:ac:46:f8:
33:7c:d4:61:e7:c7:c8:0f:fc:ce:b9:67:37:51:cb:
bb:64:ca:21:09:cb:a6:f9:39:61:60:ff:93:30:a1:
f0:4f:18:76:c3:6c:55:2b:b5:ff:7f:9f:fc:75:be:
0c:65:75:c7:0b:30:33:bf:79:dc:6d:b0:cf:ba:6c:
a1:64:09:55:2b:d6:cb:a8:c6:c3:74:79:a0:af:9a:
bb:8d:41:d2:64:3f:d8:a9:16:c4:b9:95:73:57:90:
f4:86:f3:58:54:dd:94:5f:60:9d:59:14:a7:4a:78:
d0:b5:70:93:b7:2e:34:ee:84:58:95:c8:5e:cb:d2:
89:cb:a3:ef:b8:d5:63:ed:92:7c:5c:d0:5a:d8:47:
d4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:32:21:90:86:18:3F:92:B4:64:E4:3C:4A:6B:55:CD:F3:99:D6:61
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/RzIhkIYYP5K0ZOQ8SmtVzfOZ1mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.152.0/21
Signature Algorithm: sha256WithRSAEncryption
63:53:05:e4:14:2a:06:02:2b:e0:81:df:fb:8d:79:38:50:0c:
0b:cc:77:84:ec:75:1e:36:7d:e1:ca:0b:34:5d:6f:c1:8d:36:
6f:18:1d:0d:89:e3:fe:02:20:16:d3:64:18:1e:e9:7d:75:3f:
42:19:2e:78:92:84:c3:0d:43:8b:02:ab:7f:02:32:6a:ea:1a:
b6:1c:76:e5:f0:11:13:2f:89:87:f3:73:3e:b5:b6:4e:2a:06:
b2:e1:21:0c:3c:a4:0f:9c:69:06:2b:51:88:35:40:fc:1c:42:
f8:5e:c2:94:b6:cc:d2:08:5f:83:d4:a5:d5:b4:a5:41:aa:4d:
dd:c6:c9:fc:07:b9:2d:b4:68:97:0e:38:43:c9:18:86:c0:4e:
d2:b3:18:04:61:8e:cc:92:3e:28:9d:48:3d:72:8c:de:f3:da:
31:4b:07:5a:05:d3:5d:e4:d2:da:3e:7e:31:73:86:6f:df:9e:
2c:3f:8f:e3:b7:60:d7:ea:46:77:69:a0:ce:b6:27:a9:6a:38:
d5:53:2b:78:6a:f3:05:b1:5c:4c:a6:5f:f3:5b:d6:a7:93:3c:
1b:53:67:cc:88:9e:c7:c9:a5:03:23:82:3f:bb:73:d3:9f:63:
c3:11:aa:3d:56:07:55:45:5d:b3:d1:84:c4:7c:11:08:65:e8:
af:26:a7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:46 2024 by rpki-client on console-ams.rpki-client.org