Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/F580Oc_wqKX2YnBsgmCUGFGNnb4.roa
File: F580Oc_wqKX2YnBsgmCUGFGNnb4.roa (raw, json)
Hash identifier: JiDQ0VT9s1jZ3VX1B6yKRTYcrOILlwp6umBS2WKGePM=
Subject key identifier: 17:9F:34:39:CF:F0:A8:A5:F6:62:70:6C:82:60:94:18:51:8D:9D:BE
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 01881D7558D7750E76C8DFC3B8A7E09CDA52
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/F580Oc_wqKX2YnBsgmCUGFGNnb4.roa
Signing time: Mon 15 May 2023 03:30:09 +0000
ROA not before: Mon 15 May 2023 03:30:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.218.18.0/24 maxlen: 24
193.228.168.0/24 maxlen: 24
193.228.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 04:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1d:75:58:d7:75:0e:76:c8:df:c3:b8:a7:e0:9c:da:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: May 15 03:30:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=179f3439cff0a8a5f662706c82609418518d9dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a1:51:39:6a:93:29:dd:40:13:aa:f2:bf:b3:
1a:94:4d:4c:9a:e5:26:76:35:01:11:b3:cd:9a:8d:
5e:0c:8b:8a:32:3c:dc:ef:d7:d5:66:f1:52:88:73:
97:2c:64:9a:20:0c:db:7d:02:c6:ff:d4:60:42:07:
11:e2:80:04:e5:13:da:d0:9b:ec:90:07:2c:ed:b5:
bf:22:4d:34:27:fa:1b:26:ce:50:37:fa:a1:d5:3d:
ed:fa:21:e7:18:18:14:39:a7:68:4c:ea:1e:d8:bd:
86:2b:42:8c:42:9b:cf:bc:f1:d0:e2:ed:b9:08:04:
d5:0c:9c:43:39:f7:c3:aa:fe:08:df:c2:af:79:21:
4d:95:2a:97:38:00:02:df:e0:5b:20:ce:ca:7a:c6:
da:46:2c:36:7f:86:37:de:55:2b:5a:a9:35:bd:de:
85:08:52:e1:ec:05:2e:3b:c3:97:1b:0c:94:d1:cd:
b7:3e:52:79:f7:d5:46:69:46:d7:c8:08:f4:d0:04:
5d:96:9a:b1:e9:a5:d6:b7:12:99:ae:6c:4d:19:00:
02:bd:0f:a2:09:f7:29:52:b3:a1:88:a5:cf:dd:a4:
62:9b:58:cd:e6:cf:cc:89:e1:9f:f4:75:be:ee:53:
32:23:69:51:1a:91:9a:47:b6:84:26:5e:a7:d6:db:
92:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9F:34:39:CF:F0:A8:A5:F6:62:70:6C:82:60:94:18:51:8D:9D:BE
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/F580Oc_wqKX2YnBsgmCUGFGNnb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.18.0/24
193.228.168.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:1c:9d:16:f8:8a:9c:af:bf:6e:e9:57:d2:3b:70:24:ff:9b:
18:3b:89:cd:29:0c:98:b8:33:35:d2:b2:d8:43:c6:2b:a1:00:
91:a9:bd:36:9a:f7:b9:0f:ee:58:85:26:08:41:a8:22:cc:e0:
ac:85:03:47:a1:9b:a9:c8:bf:77:4f:66:0c:7e:66:5d:f8:b1:
94:2a:0f:87:ce:6e:1c:52:b7:0d:8f:a0:b8:09:af:fd:dd:e4:
56:a4:37:60:a3:e6:17:dd:2a:00:88:4b:53:75:d6:a7:ba:27:
79:e3:f7:26:21:3e:0e:63:35:64:7c:22:bc:b8:39:eb:fa:99:
7e:c3:b9:07:35:d4:a0:8f:f6:ec:92:33:cf:f6:8b:95:c3:cd:
4d:77:90:5d:f6:8c:74:05:d8:f8:85:eb:6c:59:94:77:c9:79:
ac:b2:82:66:8d:e7:18:4a:9b:ff:1a:19:a0:b9:1e:e9:f3:1d:
f4:45:54:f9:b2:fb:71:79:23:15:49:66:ab:51:21:49:91:0f:
96:98:0d:31:cd:8d:57:fc:3a:fa:2b:af:8b:b3:3f:7d:f7:a0:
ab:9e:4c:a2:76:86:74:9f:ef:9e:a6:d0:ae:a3:90:bb:5e:6c:
89:01:91:7c:7b:41:9a:b5:5a:50:22:22:11:a6:fa:50:7d:4b:
68:4d:0f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:02 2024 by rpki-client on console-fra.rpki-client.org