Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/We23XbISKMwe7kU9xpUQJIpRS3E.roa
File: We23XbISKMwe7kU9xpUQJIpRS3E.roa (raw, json)
Hash identifier: LbzNHbdohBJUG/qDGvj3MzcZNQNndbrE3aYyr0HRpDE=
Subject key identifier: 59:ED:B7:5D:B2:12:28:CC:1E:EE:45:3D:C6:95:10:24:8A:51:4B:71
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018BE6BA27CD4D8EEDD482A520D210AE89F5
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/We23XbISKMwe7kU9xpUQJIpRS3E.roa
Signing time: Sun 19 Nov 2023 08:37:21 +0000
ROA not before: Sun 19 Nov 2023 08:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 88.80.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e6:ba:27:cd:4d:8e:ed:d4:82:a5:20:d2:10:ae:89:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Nov 19 08:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59edb75db21228cc1eee453dc69510248a514b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:cb:d3:eb:0e:78:0d:e0:bd:00:4c:4f:aa:1f:
b2:36:85:f2:a6:e9:60:4f:14:f3:d7:08:a7:52:a9:
8c:ed:8a:7c:07:19:f8:66:f6:85:2b:17:7d:98:d6:
10:b0:73:9a:d9:ab:db:33:69:7f:0f:da:a4:65:b4:
38:6f:ef:f3:2e:3d:35:77:e0:37:6e:f4:be:25:30:
38:38:56:20:c7:ec:13:be:db:80:bb:a8:01:5f:00:
f5:26:fe:36:c6:1d:74:92:a4:fe:40:b8:83:bb:7f:
73:38:37:7f:67:b1:bb:bb:e8:60:2f:6c:31:b4:89:
b2:fa:4e:2a:68:0b:a6:d2:2d:e1:46:f6:61:10:fd:
5c:48:4d:a3:9e:37:00:13:1c:d7:b2:bb:a3:50:5d:
85:d0:3e:2d:a9:fa:b5:7d:96:5f:b8:88:8d:cd:07:
aa:ff:06:99:90:6e:5f:76:07:af:6f:29:a9:c2:27:
3a:d8:4c:df:2e:f7:0b:05:cf:ac:1d:fd:84:af:a2:
66:04:bc:f4:d0:df:47:dc:43:be:1e:b1:97:54:a7:
fd:ed:2f:88:32:33:53:42:1a:78:3f:40:f1:7d:c5:
16:e1:81:71:f4:5a:52:31:8e:a3:82:c8:26:48:fc:
a2:1f:20:e3:44:ed:b4:21:7c:9d:02:f1:9b:73:8b:
ef:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:ED:B7:5D:B2:12:28:CC:1E:EE:45:3D:C6:95:10:24:8A:51:4B:71
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/We23XbISKMwe7kU9xpUQJIpRS3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.140.0/22
Signature Algorithm: sha256WithRSAEncryption
68:94:2d:f6:54:00:ba:3a:a0:e9:bd:fa:c4:33:ad:80:ec:8a:
6e:70:db:80:a1:61:38:3e:27:46:97:22:1c:c2:d6:21:a2:56:
71:e9:ca:c7:cf:6b:c0:19:c7:9b:20:9a:7c:c5:03:db:44:c1:
f2:ea:5b:fa:84:b5:e5:79:5f:78:b3:9e:52:be:60:13:33:df:
c2:d7:78:7f:17:03:36:5a:d0:5e:de:b0:66:6f:f4:d2:d2:63:
06:f4:f3:25:fc:b3:23:9a:8b:2b:1f:a0:68:a6:84:90:20:4c:
76:66:93:fa:3b:23:6c:c8:1b:b3:b1:d2:49:b7:82:da:fa:95:
40:ba:1b:1c:a8:34:f4:ca:84:8e:d7:2e:c9:82:21:e1:e5:f4:
05:63:ea:56:76:2e:90:5f:5c:ed:fa:73:cc:5c:51:94:ad:a8:
21:fb:6d:51:7e:c1:1c:4e:bf:a9:12:f1:23:78:c2:e3:13:5d:
4b:91:d9:45:66:07:44:27:6f:79:5c:da:ca:58:28:3f:fa:d1:
cf:73:63:25:15:5d:b6:a9:47:12:ee:fc:33:cf:3d:39:08:b4:
dd:2e:2c:1a:b7:33:6d:73:71:f4:93:8e:7b:fc:59:ea:db:42:
d9:1a:c0:76:12:3c:08:38:3d:c6:95:e8:51:1d:0e:fb:82:31:
05:06:10:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org