Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/0fKhxpp0YajbRL-339hCxLRLzA4.roa
File: 0fKhxpp0YajbRL-339hCxLRLzA4.roa (raw, json)
Hash identifier: v6otbRH5te5uyfuPN4+2HL8Eo19AQy41rWB/2iE4+g0=
Subject key identifier: D1:F2:A1:C6:9A:74:61:A8:DB:44:BF:B7:DF:D8:42:C4:B4:4B:CC:0E
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 01857079827FB074BFBA5D8972375D7AB578
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/0fKhxpp0YajbRL-339hCxLRLzA4.roa
Signing time: Mon 02 Jan 2023 03:14:49 +0000
ROA not before: Mon 02 Jan 2023 03:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60240
IP address blocks: 88.218.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Feb 2023 01:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:82:7f:b0:74:bf:ba:5d:89:72:37:5d:7a:b5:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Jan 2 03:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1f2a1c69a7461a8db44bfb7dfd842c4b44bcc0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3f:ed:29:4d:df:7f:f2:63:77:0a:c5:60:5a:
fe:1c:af:14:78:2c:d7:50:68:2f:1f:0e:32:d1:8a:
4e:5b:0b:51:39:d0:75:f7:8c:39:5f:fb:b7:cd:08:
c4:94:d0:07:87:5a:1f:ae:f5:87:77:37:78:ca:12:
22:72:85:10:ab:52:4f:8b:00:65:76:d1:7c:e5:df:
6b:3d:e5:cd:46:d4:1f:e5:15:7d:85:9d:de:85:2d:
81:45:1e:2b:97:c7:98:cd:01:24:78:6b:89:46:ba:
ae:ae:5d:c3:19:47:62:fc:43:66:64:9b:e9:0c:6c:
08:e3:40:e8:0a:f9:10:87:cf:ae:3d:61:ac:ce:da:
3c:67:e7:96:ab:ca:15:e6:99:4d:30:0c:cf:c3:4a:
a4:e7:91:ea:01:22:16:8b:bf:68:12:60:ff:7a:ce:
63:9c:5f:84:1b:07:34:ae:16:35:ad:92:e6:d9:37:
c3:1f:c8:2b:cd:94:95:79:d6:68:19:3b:d8:b2:5f:
2b:24:73:89:b0:a3:10:2b:f1:49:24:61:b8:ec:cc:
00:8f:2b:96:6a:1e:54:f4:99:9b:81:a3:de:bf:7c:
b2:99:8a:ba:f7:8b:cf:98:57:6a:a4:b6:4f:a4:31:
75:9d:71:57:8b:87:bc:53:bc:2e:71:d6:f3:36:5e:
a8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F2:A1:C6:9A:74:61:A8:DB:44:BF:B7:DF:D8:42:C4:B4:4B:CC:0E
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/0fKhxpp0YajbRL-339hCxLRLzA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.16.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e8:55:9f:3d:22:a8:c7:dd:19:fa:3f:74:ed:15:68:59:22:
4b:c3:c6:df:d8:4f:4e:30:cf:83:b6:73:ef:e5:7c:4f:f0:de:
b1:f1:86:2a:27:24:16:72:6e:ea:41:98:71:3a:63:4b:f3:86:
83:48:84:67:66:6c:8a:f7:4a:85:e7:b5:1f:fc:8a:c4:56:c5:
73:66:aa:07:b0:73:aa:89:55:b1:f6:ff:1d:50:a4:f1:ef:03:
95:fb:00:65:79:25:d4:d4:2c:03:0a:1b:b5:d0:84:ff:3a:ea:
00:d7:03:3b:f9:c8:8d:b8:be:5c:90:9b:59:99:42:e5:b6:7d:
6e:65:7b:5f:3b:3e:b4:c6:02:6e:9e:91:73:98:84:3e:5f:fa:
24:87:88:4d:9d:ba:9e:7a:90:6a:d6:a3:b6:36:23:17:67:77:
7e:88:c8:8f:fe:4e:b7:3c:06:e9:e4:5a:cc:61:85:35:27:ba:
cf:3c:72:d9:63:5c:2e:86:09:8d:ce:91:6f:7c:9a:99:99:86:
aa:6d:b6:9e:41:5f:38:c6:99:62:ef:1c:df:70:75:cf:dc:b4:
f2:3e:6f:7e:f4:d0:e2:fc:19:6d:22:ed:84:07:3b:f7:e2:e2:
af:35:1e:e1:54:c1:b5:e1:0a:be:b6:eb:d1:b2:97:aa:cc:72:
a0:f7:66:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVweYJ/sHS/ul2JcjdderV4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlZTA1M2NiOWNiNGY0MWMxZTQ3NzNlN2YxNmU4NGJiNTc1
MjIwMzMwHhcNMjMwMTAyMDMxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMWYyYTFjNjlhNzQ2MWE4ZGI0NGJmYjdkZmQ4NDJjNGI0NGJjYzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz/tKU3ff/JjdwrFYFr+HK8UeCzX
UGgvHw4y0YpOWwtROdB194w5X/u3zQjElNAHh1ofrvWHdzd4yhIicoUQq1JPiwBl
dtF85d9rPeXNRtQf5RV9hZ3ehS2BRR4rl8eYzQEkeGuJRrqurl3DGUdi/ENmZJvp
DGwI40DoCvkQh8+uPWGszto8Z+eWq8oV5plNMAzPw0qk55HqASIWi79oEmD/es5j
nF+EGwc0rhY1rZLm2TfDH8grzZSVedZoGTvYsl8rJHOJsKMQK/FJJGG47MwAjyuW
ah5U9JmbgaPev3yymYq694vPmFdqpLZPpDF1nXFXi4e8U7wucdbzNl6oYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNHyocaadGGo20S/t9/YQsS0S8wOMB8GA1UdIwQY
MBaAFH7gU8uctPQcHkdz5/FuhLtXUiAzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYt
MThlODZmMGIxZDgxLzEvMGZLaHhwcDBZYWpiUkwtMzM5aEN4TFJMekE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS8wNjAwYTQtMTQ2NC00YTdjLWFmNTYtMThlODZmMGIxZDgx
LzEvZnVCVHk1eTA5QndlUjNQbjhXNkV1MWRTSURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNoQMA0G
CSqGSIb3DQEBCwUAA4IBAQBm6FWfPSKox90Z+j907RVoWSJLw8bf2E9OMM+DtnPv
5XxP8N6x8YYqJyQWcm7qQZhxOmNL84aDSIRnZmyK90qF57Uf/IrEVsVzZqoHsHOq
iVWx9v8dUKTx7wOV+wBleSXU1CwDChu10IT/OuoA1wM7+ciNuL5ckJtZmULltn1u
ZXtfOz60xgJunpFzmIQ+X/okh4hNnbqeepBq1qO2NiMXZ3d+iMiP/k63PAbp5FrM
YYU1J7rPPHLZY1wuhgmNzpFvfJqZmYaqbbaeQV84xpli7xzfcHXP3LTyPm9+9NDi
/BltIu2EBzv34uKvNR7hVMG14Qq+tuvRspeqzHKg92aV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:02 2024 by rpki-client on console-ams.rpki-client.org