Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/agE0_ev6OzYUkSKGqRKm-DwI4m4.roa
File: agE0_ev6OzYUkSKGqRKm-DwI4m4.roa (raw, json)
Hash identifier: L9yCgwiQ/Pu1WrQTGzTrJyEdJ7Rqi9jULQKSxa9Qdmc=
Subject key identifier: 6A:01:34:FD:EB:FA:3B:36:14:91:22:86:A9:12:A6:F8:3C:08:E2:6E
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018AA9383F003C6740E133ED407C366A1A1F
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/agE0_ev6OzYUkSKGqRKm-DwI4m4.roa
Signing time: Mon 18 Sep 2023 16:55:50 +0000
ROA not before: Mon 18 Sep 2023 16:55:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 88.214.54.0/24 maxlen: 24
88.214.55.0/24 maxlen: 24
88.214.52.0/24 maxlen: 24
88.214.53.0/24 maxlen: 24
45.67.203.0/24 maxlen: 24
45.67.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 13:11:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a9:38:3f:00:3c:67:40:e1:33:ed:40:7c:36:6a:1a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Sep 18 16:55:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a0134fdebfa3b3614912286a912a6f83c08e26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:43:28:0f:2a:19:ed:57:2c:1b:9b:0d:ca:4b:
fb:7a:69:a5:43:5b:43:ee:55:a9:3b:4f:b0:75:be:
0d:ce:68:b5:08:65:59:d4:f5:67:ad:6b:7f:a5:a8:
2f:62:2e:ce:7b:f3:62:9d:08:c6:40:8a:32:31:0b:
9a:8a:a6:06:1a:13:a1:35:18:5f:b4:7c:14:ea:38:
7a:17:46:11:a1:e6:53:f7:aa:bf:e4:ec:c7:29:16:
ed:78:53:bd:3b:aa:df:ad:dd:08:b9:3b:88:b7:55:
81:e5:9c:59:49:cd:1d:c3:4d:05:bb:56:2d:10:f0:
61:41:f4:1f:e3:27:c4:4f:23:f8:7e:83:03:37:85:
6c:53:ac:de:f0:56:15:5c:ec:b5:60:28:7b:a6:23:
32:0c:4b:6d:db:7f:af:6a:ee:dc:f8:7a:40:0b:b0:
ee:4b:23:05:a0:7a:69:3c:05:1e:65:3a:5c:98:e8:
a4:d5:01:62:3d:dc:49:cb:e9:59:e5:14:12:56:b0:
e7:27:a1:12:17:15:fb:2f:45:4d:dc:07:36:3a:6c:
23:0c:e8:64:7a:dc:7a:59:be:63:0d:13:a0:32:24:
0c:91:6d:c7:4f:c6:c0:0b:16:5d:b7:6e:ec:38:35:
ef:bb:8a:b2:2d:2e:ff:8b:91:81:d5:04:9c:6e:47:
46:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:01:34:FD:EB:FA:3B:36:14:91:22:86:A9:12:A6:F8:3C:08:E2:6E
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/agE0_ev6OzYUkSKGqRKm-DwI4m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.202.0/23
88.214.52.0/22
Signature Algorithm: sha256WithRSAEncryption
69:04:1f:0b:43:68:3e:7b:14:7f:16:67:96:27:6e:a1:37:c9:
3b:72:1f:d7:8c:06:41:3f:1c:32:5a:89:c4:bf:06:93:42:6c:
7c:da:e0:58:31:c0:f4:0f:c6:78:cb:5f:66:b4:a2:a1:9c:25:
be:3c:84:86:d0:b3:30:82:36:dc:5f:c1:5c:3f:62:49:25:81:
cd:e3:2e:b2:6c:72:03:15:a1:35:af:1f:bb:e9:8a:de:1c:9b:
36:fa:22:33:d7:09:c8:9a:64:f6:3c:b8:15:c8:1d:72:15:15:
01:a8:d2:c8:2a:79:b4:ab:ed:32:80:16:20:74:ba:0a:3f:e5:
18:a0:aa:b9:cd:88:43:2e:8b:f4:a5:a6:c3:02:02:12:d8:1c:
fa:ae:8a:b1:fc:8e:02:4e:f9:0a:75:46:88:55:d2:99:e6:38:
30:bc:33:33:fe:61:22:af:f0:88:8b:5a:74:ed:8f:7a:28:d1:
4d:d1:bb:92:95:62:a9:b2:80:ee:4c:1e:af:a2:81:90:b1:ab:
00:2a:f8:c4:01:84:94:57:ba:84:26:89:49:2c:ae:82:1e:e8:
50:ba:5e:a9:c8:db:e2:76:16:a9:6f:e9:da:d3:4c:52:8f:bd:
c9:86:c4:9b:96:1f:73:31:20:bb:34:f3:60:27:7a:da:e7:e2:
04:46:a7:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org