Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/C_BsZhXE1bo1ElPvvN6GegO1dkY.roa
File: C_BsZhXE1bo1ElPvvN6GegO1dkY.roa (raw, json)
Hash identifier: mV7rOgrpidtoiwIL39sei7nc3dDoSvECTLrGeIknDOQ=
Subject key identifier: 0B:F0:6C:66:15:C4:D5:BA:35:12:53:EF:BC:DE:86:7A:03:B5:76:46
Certificate issuer: /CN=7b1bdecba944f7ee10e90691311fc0f843436ba1
Certificate serial: 018A6FD217B64AC65B3A7A4A011934AFFA51
Authority key identifier: 7B:1B:DE:CB:A9:44:F7:EE:10:E9:06:91:31:1F:C0:F8:43:43:6B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/exvey6lE9-4Q6QaRMR_A-ENDa6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/C_BsZhXE1bo1ElPvvN6GegO1dkY.roa
Signing time: Thu 07 Sep 2023 13:25:54 +0000
ROA not before: Thu 07 Sep 2023 13:25:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.115.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Oct 2023 10:20:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:d2:17:b6:4a:c6:5b:3a:7a:4a:01:19:34:af:fa:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b1bdecba944f7ee10e90691311fc0f843436ba1
Validity
Not Before: Sep 7 13:25:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bf06c6615c4d5ba351253efbcde867a03b57646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:14:07:c9:36:b3:2c:3c:e9:2c:bd:a7:58:16:
38:bd:09:61:ab:ca:a4:0f:e4:21:03:36:ef:81:37:
a7:bb:d8:d7:e5:36:9d:f6:a1:2e:b7:c1:b3:54:4e:
67:eb:28:8c:1f:fc:54:8b:97:a0:5b:29:c6:6c:70:
f9:0f:34:f8:4a:ae:38:f2:61:50:37:17:f5:33:8b:
b7:6d:65:44:9f:43:53:62:a1:79:c5:76:36:01:5b:
a9:61:5d:bc:72:4e:21:ad:31:80:78:44:a8:80:3d:
db:06:29:cf:6a:ee:7d:4d:92:53:7a:dc:29:5e:a9:
dd:1b:ec:36:5d:61:30:0a:0d:51:a3:9a:17:73:5b:
86:ef:0e:d1:a5:90:5a:59:a2:c9:02:77:a2:49:cb:
fd:00:6f:81:c5:1d:bc:bf:3e:51:76:ae:dd:35:7c:
d7:3e:da:09:6f:41:a0:31:7f:35:ec:e3:61:ea:ec:
bb:12:2f:9a:00:73:94:ec:9d:7f:5a:bc:1a:4c:e6:
15:98:a4:03:f3:2c:79:55:c0:1a:53:82:94:d2:c7:
a6:7a:76:23:e0:2a:3a:c2:5a:08:51:c8:40:9b:05:
7e:92:d6:a8:20:74:f3:f4:11:ba:ce:3e:99:48:15:
b2:35:30:9d:e1:68:bf:d5:c7:87:d3:e2:40:66:bb:
da:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F0:6C:66:15:C4:D5:BA:35:12:53:EF:BC:DE:86:7A:03:B5:76:46
X509v3 Authority Key Identifier:
keyid:7B:1B:DE:CB:A9:44:F7:EE:10:E9:06:91:31:1F:C0:F8:43:43:6B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/exvey6lE9-4Q6QaRMR_A-ENDa6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/C_BsZhXE1bo1ElPvvN6GegO1dkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bd4de8-861c-45b6-84c1-579b3a878182/1/exvey6lE9-4Q6QaRMR_A-ENDa6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.88.0/24
Signature Algorithm: sha256WithRSAEncryption
67:6a:19:c5:d2:04:2e:9f:f4:a9:44:c7:de:a7:56:db:9d:bb:
08:f3:07:17:5d:4d:3a:32:61:de:d9:c2:55:ea:f1:cf:c2:9a:
9c:9d:27:89:ac:17:d1:f2:3b:de:a7:c9:3d:be:b2:fa:7d:ec:
07:dc:3e:59:ae:9d:5d:fb:44:18:28:28:39:47:5d:cd:1a:67:
32:3f:bc:1f:91:4c:1f:57:53:01:ff:0c:a8:98:d6:0e:e1:1a:
01:bb:ed:1a:9a:2d:b8:65:53:2c:a7:9b:7e:23:0e:a9:86:b7:
c2:a1:98:b8:69:48:f6:3c:f7:ac:26:6e:ea:02:87:7b:48:c7:
a3:cc:74:35:e0:0b:c2:b2:da:9f:0a:44:a1:ec:e7:95:23:67:
7f:a1:a9:a1:69:7d:7b:d8:eb:47:6b:66:cc:a5:88:ed:f7:c7:
1c:4c:a2:25:fc:ee:b3:48:f3:28:03:41:db:89:c1:ba:5f:89:
f8:2d:9a:96:76:7c:05:58:a1:92:6e:5c:84:95:ce:b8:70:d3:
73:0b:de:47:8a:c0:93:5d:3a:df:8b:95:07:3b:3b:71:d9:8a:
76:f0:b8:e5:16:b9:c2:fd:26:8b:c2:51:95:09:a0:25:0c:8d:
11:09:be:d5:1e:bb:51:cc:bc:60:41:26:46:d4:1c:84:10:a5:
44:55:ff:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:13 2024 by rpki-client on console-fra.rpki-client.org