Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/_OQbwPl-IyUyhEj-7D1kwkf03lQ.roa
File: _OQbwPl-IyUyhEj-7D1kwkf03lQ.roa (raw, json)
Hash identifier: FjcKNai1I4Zyqbkwhdoj3K4kwkBFr3bYj7t7pSUhthk=
Subject key identifier: FC:E4:1B:C0:F9:7E:23:25:32:84:48:FE:EC:3D:64:C2:47:F4:DE:54
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 018A4AE1A1B59C199753EB0A91577F309452
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/_OQbwPl-IyUyhEj-7D1kwkf03lQ.roa
Signing time: Thu 31 Aug 2023 09:16:55 +0000
ROA not before: Thu 31 Aug 2023 09:16:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58273
IP address blocks: 88.97.112.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:e1:a1:b5:9c:19:97:53:eb:0a:91:57:7f:30:94:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Aug 31 09:16:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fce41bc0f97e2325328448feec3d64c247f4de54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b2:62:47:47:a6:f8:ca:a6:96:dc:14:8e:10:
42:c9:74:b1:48:91:e2:61:09:95:f3:b5:10:6a:25:
65:86:43:4a:84:ce:55:5b:02:7a:0d:f4:4c:81:fc:
af:64:ec:2c:03:34:04:32:d8:c2:bb:78:85:2a:ed:
f1:5a:b4:2c:58:06:da:df:90:9d:4f:88:ab:89:7a:
71:49:9b:33:12:03:25:98:b0:65:d7:02:f8:79:8b:
90:21:f7:37:c5:63:73:3d:56:39:3b:07:2c:4d:26:
68:64:b6:ec:53:e9:22:57:fc:b1:07:36:14:4f:a9:
e1:11:db:48:df:28:9c:fd:51:c4:4c:97:a2:44:aa:
38:98:1c:f4:23:77:f3:3a:81:8b:14:7c:6b:89:75:
63:99:29:d9:c3:0a:a0:eb:e7:de:7d:0b:b7:19:65:
b9:e2:e8:2c:4f:bf:c2:63:56:13:35:50:eb:c1:47:
c7:63:f0:cd:7e:1c:6f:0b:fe:ac:68:9f:c8:f7:7a:
e5:26:d9:4e:05:8e:d0:b5:84:6a:6d:c1:8f:1d:1a:
51:68:09:0c:a4:64:cc:1c:99:9b:42:99:e6:0d:49:
0c:44:a8:08:6f:40:c6:b0:f6:64:13:2a:90:0e:5b:
35:d3:6a:db:83:55:26:7a:28:4a:0a:76:3f:a4:06:
9d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E4:1B:C0:F9:7E:23:25:32:84:48:FE:EC:3D:64:C2:47:F4:DE:54
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/_OQbwPl-IyUyhEj-7D1kwkf03lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.97.112.0/20
Signature Algorithm: sha256WithRSAEncryption
77:15:1c:3c:97:8c:93:38:3b:b1:6b:fe:42:f0:69:87:2c:1b:
98:8d:0a:b1:f7:e1:4b:48:fd:5f:91:a2:0a:0a:7f:98:61:f8:
7b:b3:ed:bd:50:38:03:c6:46:3b:fa:73:af:46:47:c8:b1:29:
26:c4:56:f3:c0:96:51:88:a6:73:40:5d:37:aa:81:d5:dd:7d:
76:2d:25:c6:ba:25:34:d3:36:bd:ca:6d:9f:89:68:d2:e8:11:
c8:d6:4e:95:95:08:bf:8b:e6:26:84:0f:8b:5d:02:b9:cb:fb:
89:15:ce:67:61:e6:22:02:06:4d:dd:05:dd:9b:97:6f:6b:ac:
c5:13:44:b8:1e:2c:e8:a3:24:8b:18:9f:f0:ec:87:d2:8d:15:
9a:93:76:84:58:4f:07:e8:cf:73:8f:e9:cc:4e:c6:ac:f8:8a:
f6:ee:84:0b:ed:ba:07:96:ae:91:02:da:5d:b5:c1:2a:f1:a5:
f5:5b:52:43:b2:4c:78:69:82:ff:82:d2:36:0b:2b:17:ae:30:
79:5e:03:79:6f:5a:19:c4:b3:df:5f:7b:9a:82:49:70:11:98:
e2:d4:af:73:7a:c5:38:70:43:26:83:7c:bc:8c:1e:81:93:5b:
dc:3b:62:47:da:77:0f:67:0f:d2:4a:63:08:c7:22:31:12:3a:
55:89:3f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:53 2024 by rpki-client on console-ams.rpki-client.org