Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/xTAmYWofhg4Sqlh1gnfuujtKEXQ.roa
File: xTAmYWofhg4Sqlh1gnfuujtKEXQ.roa (raw, json)
Hash identifier: tzPXWXe3eRtCr0h9FIW9tTkCI2Gt2tZ5Of0Po2+fGRY=
Subject key identifier: C5:30:26:61:6A:1F:86:0E:12:AA:58:75:82:77:EE:BA:3B:4A:11:74
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018CC8DF957250E76D2805DFADFDB78B6CA7
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/xTAmYWofhg4Sqlh1gnfuujtKEXQ.roa
Signing time: Tue 02 Jan 2024 06:32:25 +0000
ROA not before: Tue 02 Jan 2024 06:32:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 88.80.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 19 Feb 2024 08:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:95:72:50:e7:6d:28:05:df:ad:fd:b7:8b:6c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 2 06:32:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c53026616a1f860e12aa58758277eeba3b4a1174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ae:f4:1f:43:95:f7:0d:35:08:84:62:6f:71:
b0:8f:cd:a2:aa:6b:66:ff:31:03:b5:c3:41:ce:c3:
d5:e6:ad:bd:38:ed:8e:92:68:34:86:f2:1e:09:18:
0a:0e:68:c0:4a:f9:8a:17:ea:b8:19:24:f0:92:77:
6e:1b:71:f3:6a:ab:e7:50:6d:13:a1:8c:13:ca:7b:
71:b2:b3:31:cb:a2:a9:35:fa:df:02:40:7f:a2:dd:
cc:5a:86:6e:d0:8f:32:e9:7c:5d:3d:36:a7:53:ca:
57:28:9f:9f:61:1a:0e:a0:22:4c:9f:9d:7d:8d:27:
e2:39:00:cf:80:f0:0a:b4:70:97:ec:01:3f:84:70:
45:25:d5:51:e3:0a:b2:eb:5a:ff:f2:e0:1f:51:3e:
75:89:60:7c:61:00:cc:5c:93:2f:11:bd:47:c3:35:
8b:d0:5c:ac:e5:be:30:df:f3:8a:b5:f9:ad:5f:1f:
0d:c8:d0:08:62:67:fe:13:d2:48:80:1e:49:2e:54:
0a:e7:de:6a:c8:1e:6a:8c:b1:93:af:71:e5:91:54:
6f:43:bf:8e:3b:c5:9a:bc:3e:df:67:e7:6f:29:66:
45:0c:87:f6:07:d6:f4:3d:af:8b:31:70:bf:22:57:
e8:27:3f:7e:04:dd:58:64:87:cb:32:c8:2b:32:07:
41:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:30:26:61:6A:1F:86:0E:12:AA:58:75:82:77:EE:BA:3B:4A:11:74
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/xTAmYWofhg4Sqlh1gnfuujtKEXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.140.0/22
Signature Algorithm: sha256WithRSAEncryption
96:b1:a8:5c:b4:eb:25:8b:d0:74:88:0f:33:57:13:40:a6:64:
db:eb:65:7b:69:f3:e1:e2:c4:90:3c:de:35:f6:99:e0:3c:b4:
5f:86:72:df:5d:92:0b:d8:8e:f3:0c:60:45:aa:89:38:42:27:
6b:7e:04:3c:3e:31:42:a1:12:6b:0c:ec:49:f3:02:48:83:8c:
bb:9a:eb:ab:08:5e:29:d0:20:0d:05:1a:e2:6b:0b:ef:87:d9:
0c:46:c0:33:97:4c:b5:04:a8:86:c0:5c:6b:77:22:bf:35:97:
12:f4:a3:ec:b6:1f:15:82:dc:87:45:f1:43:a7:b3:82:7c:8c:
5a:60:f7:ec:eb:b3:2d:6f:2b:63:12:5a:6d:54:69:c6:d4:1c:
b9:8c:41:6c:db:a0:c3:bf:37:28:6f:4f:c8:2a:dd:e5:ed:b1:
10:15:cd:c4:18:d1:bc:ae:3d:8d:1f:95:58:1c:bd:7b:6e:1f:
2a:18:7a:61:1e:34:1f:17:3a:aa:b2:f8:54:63:ff:1a:5b:bd:
de:74:63:68:aa:c1:5b:8a:0b:d2:fa:f0:5e:94:81:db:0d:1c:
f1:30:94:59:49:2b:0b:e6:be:b1:89:fd:1d:bf:43:3e:03:f8:
e4:c7:02:ef:a9:a6:e5:d5:09:70:35:c8:00:bf:d1:a0:c8:ca:
b2:7c:c5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 12:41:47 2024 by rpki-client on console-fra.rpki-client.org