Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/A7sZUtMkV1zGnBOf6FufhgM05T8.roa
File: A7sZUtMkV1zGnBOf6FufhgM05T8.roa (raw, json)
Hash identifier: KVysRBTNKki/EO47YfxU/7gspQr5qlU/+RECMM2VQ2U=
Subject key identifier: 03:BB:19:52:D3:24:57:5C:C6:9C:13:9F:E8:5B:9F:86:03:34:E5:3F
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A9532352FC6EB9643B0086C9A6A6E5892
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/A7sZUtMkV1zGnBOf6FufhgM05T8.roa
Signing time: Thu 14 Sep 2023 19:36:50 +0000
ROA not before: Thu 14 Sep 2023 19:36:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199297
IP address blocks: 45.88.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:95:32:35:2f:c6:eb:96:43:b0:08:6c:9a:6a:6e:58:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 14 19:36:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03bb1952d324575cc69c139fe85b9f860334e53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4d:b0:ca:81:d8:ef:49:32:82:17:8b:db:51:
39:86:2a:a1:52:ec:77:4e:48:1e:94:18:8b:63:bc:
47:b9:64:0d:97:5c:af:8d:4f:95:fa:2e:87:41:94:
ee:65:e0:15:bd:77:29:71:34:5d:d4:3e:b3:6e:81:
33:58:17:b4:57:9f:47:46:1d:74:35:63:5e:b1:4b:
fe:34:b2:26:8d:70:7c:1c:7c:86:94:d5:a6:fc:d3:
bd:24:21:50:c6:28:e1:37:69:2d:a1:65:87:e5:4a:
79:0d:55:8a:13:9e:29:26:4e:bf:a9:2a:80:98:97:
92:f0:fd:25:39:c2:50:13:3e:5e:bc:63:22:44:7d:
f5:f4:1c:4d:39:2e:2a:39:bc:92:2c:15:52:d3:c4:
5d:f9:fb:e1:1c:ef:a9:3e:cf:0c:e6:89:63:cc:0d:
0d:49:ea:0c:d2:ef:ae:93:b8:3a:18:ba:3c:3f:98:
07:a2:00:32:b4:02:91:12:7d:25:3b:77:60:1b:dc:
18:d5:90:49:56:c6:7d:86:33:69:32:91:2c:5b:91:
b5:88:79:5b:45:ee:eb:6c:eb:14:38:42:1e:85:6f:
cc:ae:f5:c5:8e:56:e3:d7:6d:b3:1d:85:15:a3:b6:
32:8b:d8:1c:d9:07:ac:17:99:aa:2b:a5:24:34:67:
45:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BB:19:52:D3:24:57:5C:C6:9C:13:9F:E8:5B:9F:86:03:34:E5:3F
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/A7sZUtMkV1zGnBOf6FufhgM05T8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.180.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:2f:8f:00:de:aa:5a:9d:ea:60:7a:57:be:06:88:35:d5:0f:
6f:dc:41:ca:7a:b0:52:a3:41:94:4b:1c:8d:5f:5e:58:41:3a:
50:ca:65:84:4c:03:29:45:2a:03:c2:21:37:c2:af:19:28:c5:
46:8a:57:40:c8:90:76:f1:0c:ad:f0:cf:1d:12:c7:73:51:17:
d5:6a:8c:76:4d:39:1d:d8:ad:ec:e3:e7:10:1d:73:86:8e:77:
3e:c2:49:1d:43:1b:57:72:03:68:f6:3f:8c:f7:b0:52:d8:f3:
7b:29:12:a1:37:86:92:ca:7a:fa:0e:27:01:f5:8d:3b:0c:c8:
39:12:50:8b:32:ee:a3:8c:72:44:46:73:50:3f:80:47:0d:69:
98:81:58:d5:4b:05:93:2d:88:cd:c8:f0:9c:81:d4:db:34:eb:
71:aa:0a:9c:39:3f:08:89:e3:ce:0e:c1:ff:aa:fc:48:f2:7f:
ab:96:7a:d9:54:93:a8:4f:d0:da:a8:18:7a:2c:a9:d6:4c:44:
db:7f:04:0a:39:db:9a:c0:ee:be:7f:26:8d:ba:aa:64:84:2c:
d0:db:a0:85:dd:a8:0f:a2:56:0b:72:e2:27:bf:61:7e:99:c2:
29:a2:bc:8a:56:31:f0:75:58:11:66:b8:71:6e:cf:17:f8:92:
f8:6b:ca:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:17 2024 by rpki-client on console-fra.rpki-client.org