Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/3IF1hiklZlwvz-Oc4OCIqrTAf1E.roa
File: 3IF1hiklZlwvz-Oc4OCIqrTAf1E.roa (raw, json)
Hash identifier: 43DLvL84fSiZkauwXKwM1sUVQkiHIizhDkDixALy1gU=
Subject key identifier: DC:81:75:86:29:25:66:5C:2F:CF:E3:9C:E0:E0:88:AA:B4:C0:7F:51
Certificate issuer: /CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Certificate serial: 018CC79548D9AA55860503A90B817160DA4B
Authority key identifier: 32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/3IF1hiklZlwvz-Oc4OCIqrTAf1E.roa
Signing time: Tue 02 Jan 2024 00:31:38 +0000
ROA not before: Tue 02 Jan 2024 00:31:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210025
IP address blocks: 88.218.204.0/24 maxlen: 24
88.218.207.0/24 maxlen: 24
2a09:b280:ffba::/48 maxlen: 48
2a09:b280:ffb0::/48 maxlen: 48
2a09:b280:1030::/48 maxlen: 48
2a09:b280:1010::/48 maxlen: 48
2a09:b280::/48 maxlen: 48
2a09:b280:ccc0::/48 maxlen: 48
2a09:b280:1020::/48 maxlen: 48
2a09:b280:1000::/48 maxlen: 48
2a09:b280:1100::/47 maxlen: 47
2a09:b280:ffbb::/48 maxlen: 48
2a09:b280:ffbe::/48 maxlen: 48
2a09:b280:ffb9::/48 maxlen: 48
2a09:b280:ffbf::/48 maxlen: 48
2a09:b280:ffb2::/48 maxlen: 48
2a09:b280:ffbd::/48 maxlen: 48
2a09:b280:ffb8::/48 maxlen: 48
2a09:b280:ccc1::/48 maxlen: 48
2a09:b280:ffb1::/48 maxlen: 48
2a09:b280:ffbc::/48 maxlen: 48
2a09:b280:cccc::/48 maxlen: 48
2a09:b280:ffb7::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 04 May 2024 23:21:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:48:d9:aa:55:86:05:03:a9:0b:81:71:60:da:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32508fb781ca6dbd8221f2c2f954a3a7446b2b42
Validity
Not Before: Jan 2 00:31:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc8175862925665c2fcfe39ce0e088aab4c07f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:49:48:f0:64:89:68:16:06:7b:41:9a:12:65:
e7:b2:48:ba:3c:11:c7:be:87:71:54:18:4e:06:4d:
cf:34:e0:eb:53:a2:11:21:eb:dc:34:c8:c8:96:4c:
6f:5d:b3:d4:9f:fd:ce:03:fd:7b:9e:87:f9:d7:fd:
d3:32:82:3a:a3:fa:10:fa:9a:be:ca:9f:a9:37:7c:
60:9b:fa:39:bc:93:11:96:25:19:0b:26:c5:2c:fd:
16:14:20:05:ce:6b:f6:21:85:8d:a4:cb:a3:77:c2:
4a:e9:25:de:be:71:96:e3:9b:84:d3:f0:8c:de:98:
b6:09:fb:ed:d2:2a:60:56:6e:02:66:22:64:33:2a:
2f:48:ce:4f:d1:88:a3:12:3b:72:83:eb:01:0f:b8:
06:27:a4:12:89:fc:1c:d8:52:28:1a:4f:0e:70:cf:
14:ed:af:6e:2d:2a:30:35:13:cc:18:61:ce:4a:7f:
57:72:fc:46:07:29:b0:2f:44:57:0c:5a:3b:8f:b2:
8e:67:38:a8:cb:7b:f8:a9:7c:d2:89:80:13:77:d0:
d4:53:d8:5d:2c:80:a3:fa:57:61:38:90:2c:d4:13:
b5:d2:62:70:0c:1f:1d:8b:4f:5d:70:b8:86:4c:04:
89:ad:bf:4b:95:75:82:28:65:73:b9:3d:86:9f:2d:
23:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:81:75:86:29:25:66:5C:2F:CF:E3:9C:E0:E0:88:AA:B4:C0:7F:51
X509v3 Authority Key Identifier:
keyid:32:50:8F:B7:81:CA:6D:BD:82:21:F2:C2:F9:54:A3:A7:44:6B:2B:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlCPt4HKbb2CIfLC-VSjp0RrK0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/3IF1hiklZlwvz-Oc4OCIqrTAf1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6c203d-6221-460a-af49-c12218765154/1/MlCPt4HKbb2CIfLC-VSjp0RrK0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.204.0/24
88.218.207.0/24
IPv6:
2a09:b280::/48
2a09:b280:1000::/48
2a09:b280:1010::/48
2a09:b280:1020::/48
2a09:b280:1030::/48
2a09:b280:1100::/47
2a09:b280:ccc0::/47
2a09:b280:cccc::/48
2a09:b280:ffb0::-2a09:b280:ffb2:ffff:ffff:ffff:ffff:ffff
2a09:b280:ffb7::-2a09:b280:ffbf:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5d:02:97:3d:ad:17:d3:5d:9a:d4:f6:88:28:4a:2b:5e:3e:6c:
93:95:7a:97:8d:e5:d9:0c:8a:7a:1d:49:07:1a:49:7b:39:a3:
e2:49:6f:5d:b6:38:88:8c:f3:6b:60:f0:3d:e1:45:b6:75:f6:
fb:7b:7e:b0:54:ae:ac:8f:75:4b:63:ca:03:e5:92:22:6b:50:
6b:60:05:bd:39:ca:39:f3:d3:dc:04:b7:93:a2:71:97:36:4c:
bf:c1:04:b5:51:71:ad:79:3c:fd:6a:83:45:af:33:79:71:60:
4e:70:cd:79:b0:3c:c6:d6:27:9b:da:e5:e9:d5:80:7e:9d:af:
0e:9e:05:0f:bb:6c:d3:76:37:2c:5e:bd:5c:c9:6a:72:47:e4:
cc:0f:d3:55:d1:e2:64:be:30:5b:d0:ee:ab:9f:97:3a:ba:48:
c0:e4:2b:8f:62:f3:96:d1:b1:f1:4d:0f:86:cb:07:54:31:12:
52:e1:12:c8:b5:51:ce:c2:06:05:67:30:54:a7:1c:e5:5b:34:
ef:4c:8d:54:e7:d0:b1:2c:14:ec:e3:72:19:75:3a:25:41:04:
86:bc:f1:40:f8:9a:70:61:2e:f7:4a:7a:67:6b:56:54:bb:c7:
b5:f8:2a:e4:89:80:7f:d0:3c:9e:71:5d:9c:89:59:fc:b9:07:
99:75:a2:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:24 2024 by rpki-client on console-fra.rpki-client.org