Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aA6d7vRrg381w4qocRmMHYEE5RM.roa
File: aA6d7vRrg381w4qocRmMHYEE5RM.roa (raw, json)
Hash identifier: wv/XpInDEfVvkU+b8lxQC8E75HopY5OhTMiWFzDh/Mg=
Subject key identifier: 68:0E:9D:EE:F4:6B:83:7F:35:C3:8A:A8:71:19:8C:1D:81:04:E5:13
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01903A47AF0718F0F886CFC31E5D7101789B
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aA6d7vRrg381w4qocRmMHYEE5RM.roa
Signing time: Fri 21 Jun 2024 10:11:34 +0000
ROA not before: Fri 21 Jun 2024 10:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.80.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jun 2024 15:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3a:47:af:07:18:f0:f8:86:cf:c3:1e:5d:71:01:78:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jun 21 10:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=680e9deef46b837f35c38aa871198c1d8104e513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6b:09:42:5f:e8:39:91:2e:20:f9:19:2b:df:
bd:d1:6c:38:ee:d8:6e:13:36:ad:c6:6a:31:71:17:
68:5d:d1:2b:96:d3:10:bb:03:5e:56:98:3c:c5:51:
f3:01:68:36:cc:15:9b:5c:7b:b5:26:52:3a:cc:4a:
47:17:3a:ac:98:b0:20:91:ca:01:6b:a8:89:8c:33:
ca:c6:52:ae:e4:fb:79:f2:33:b8:59:39:8b:a4:bb:
8a:a3:a8:42:d5:12:8b:51:09:fe:99:89:20:b6:28:
43:8a:93:90:ad:74:ba:d5:0a:91:ad:3d:15:aa:35:
57:aa:12:b8:c6:c7:0d:43:53:e0:ba:64:4e:b2:59:
a9:35:68:be:cf:ef:d8:5a:18:c9:66:4c:a7:92:b1:
f3:51:b4:ef:f6:c5:39:25:86:00:a1:bf:fc:31:a4:
1d:99:25:a6:ea:95:55:08:88:c4:fe:2c:51:97:59:
c2:d1:22:38:5b:26:9a:e0:8c:66:b5:c1:b8:9d:26:
91:5e:64:80:1f:46:a8:2e:f3:bb:c8:77:81:cb:ba:
8b:e2:94:91:14:b9:2b:5b:9d:00:f8:8a:c6:97:08:
f0:0c:a4:b3:cc:41:f0:db:9d:84:1e:a7:b8:4a:c2:
fa:1c:14:ae:59:97:d6:d5:59:d3:93:82:6e:18:9b:
69:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0E:9D:EE:F4:6B:83:7F:35:C3:8A:A8:71:19:8C:1D:81:04:E5:13
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/aA6d7vRrg381w4qocRmMHYEE5RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.141.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:cd:8e:a1:85:c7:f6:c1:92:79:f9:2f:e6:99:71:7b:06:7b:
24:7b:9e:12:55:c9:a7:2f:cf:2d:5f:18:22:42:41:ae:0f:6e:
8d:e6:cb:e9:49:9f:12:83:b9:ec:d7:22:11:2b:4b:d5:88:6e:
6c:82:51:1b:62:4e:08:0d:d2:77:75:26:da:04:76:6d:0f:42:
de:10:df:67:2c:a9:d5:23:34:83:c9:00:95:4e:b6:eb:2f:8f:
f2:d2:04:8f:50:1e:d8:b7:57:5e:d6:88:aa:ec:62:e3:54:06:
ed:30:c0:99:2d:94:99:3b:64:a7:6e:3f:e9:81:1c:38:5d:6e:
55:08:a4:51:01:bc:17:a5:9b:b0:5f:b9:3e:00:f3:a3:ae:12:
8b:61:14:6c:6e:92:6d:7c:de:a8:ac:99:99:fd:4c:48:18:4e:
b1:5d:85:b9:c2:47:c6:8b:90:42:bd:fd:40:4d:2a:ce:24:83:
10:a6:2b:aa:d9:80:2e:29:a6:ee:80:6b:a7:a2:fc:82:c0:bf:
64:2a:a3:d3:3d:85:dd:32:b5:9e:fb:22:d8:9f:aa:6a:30:f1:
11:3b:d9:30:50:a1:ef:0d:87:95:1e:10:52:ab:b6:2e:d0:0e:
7d:84:bb:bf:97:07:24:bd:5c:a0:62:82:a9:1a:9f:34:f2:5d:
ca:2e:c5:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 18:06:50 2024 by rpki-client on console-fra.rpki-client.org