Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/I7l0vx4GFxbC691duWGY7JQT--E.roa
File: I7l0vx4GFxbC691duWGY7JQT--E.roa (raw, json)
Hash identifier: kRRDsTtVyUQ+unE02RP+IKD3dYkWNmc8wJSsuM4xqzs=
Subject key identifier: 23:B9:74:BF:1E:06:17:16:C2:EB:DD:5D:B9:61:98:EC:94:13:FB:E1
Certificate issuer: /CN=aca77c708af0ba1f81549c9f87089559390167a5
Certificate serial: 01856B934D34D2B7872AF8E8780EAFD4A874
Authority key identifier: AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/I7l0vx4GFxbC691duWGY7JQT--E.roa
Signing time: Sun 01 Jan 2023 04:24:53 +0000
ROA not before: Sun 01 Jan 2023 04:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24990
IP address blocks: 88.84.144.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:4d:34:d2:b7:87:2a:f8:e8:78:0e:af:d4:a8:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca77c708af0ba1f81549c9f87089559390167a5
Validity
Not Before: Jan 1 04:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23b974bf1e061716c2ebdd5db96198ec9413fbe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:36:1f:e8:2b:a7:10:a3:6a:32:65:1f:b2:d9:
a0:1f:b2:bd:03:58:94:25:76:92:e0:e3:44:b7:13:
e7:ba:db:bf:29:71:ab:9d:7b:04:ef:41:bd:cd:33:
e9:09:42:de:4a:7f:48:9d:8a:30:44:be:62:14:2d:
34:1f:84:98:57:c4:4f:d4:0c:03:d1:e1:89:05:e0:
80:ab:2c:72:c8:1c:3f:b5:c9:20:de:f0:0c:34:c6:
c6:71:83:cd:99:d3:cc:90:90:cd:41:d4:0b:6c:7c:
ca:e2:91:09:ea:f0:be:7d:40:44:29:ef:c3:f7:21:
15:a5:c7:f8:3b:f4:41:ad:87:6e:a7:a9:a1:5d:8d:
e6:9b:ec:61:1a:de:a4:82:81:76:be:bd:c5:4d:8e:
4c:fa:f4:ba:3a:44:90:70:b9:51:54:b6:a2:db:2a:
14:96:6c:6b:7a:11:01:8e:e5:82:84:bd:d7:70:a4:
09:72:f5:9c:9a:fb:22:6b:f8:a2:f4:60:45:58:e5:
a1:0c:06:59:4a:e7:5f:24:a7:0f:fe:cf:8e:6a:cb:
7b:cc:13:a8:9c:31:6e:f7:b7:f2:58:cb:95:a1:33:
a3:7b:5d:23:52:08:67:2a:1f:fa:6b:91:5c:99:a7:
b6:e3:54:4d:95:b8:57:b1:9d:85:3d:4b:46:0d:e2:
a7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B9:74:BF:1E:06:17:16:C2:EB:DD:5D:B9:61:98:EC:94:13:FB:E1
X509v3 Authority Key Identifier:
keyid:AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/I7l0vx4GFxbC691duWGY7JQT--E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.84.144.0/21
Signature Algorithm: sha256WithRSAEncryption
0f:a9:6a:ac:07:01:77:8f:b9:4d:47:dd:04:1e:75:4b:0b:7b:
69:9a:1c:d3:0c:26:0e:ed:2a:a4:ab:7a:f0:d8:cf:38:09:6d:
32:33:ee:ba:c8:17:89:3e:c8:b4:be:ff:47:3b:31:f1:de:e5:
58:15:fa:b4:0b:8a:07:83:59:da:80:23:db:1d:7d:b1:62:8e:
28:94:ff:9a:88:c9:8c:e2:eb:54:fd:2a:50:e9:f1:19:5f:f4:
2f:b5:1c:d5:95:ab:fb:9d:65:80:13:9d:7c:26:6e:45:2c:3b:
12:79:ce:57:ed:b2:e3:4f:27:ff:96:13:fa:fb:6e:c3:26:ba:
cd:54:a7:14:68:a7:ba:5f:c2:60:2b:ba:2e:f4:b3:8e:e9:7c:
8f:ae:0f:20:91:e1:5a:4e:b9:e9:7d:4d:fd:d0:56:ec:14:09:
2e:f0:f7:5c:6e:a4:a7:e5:4c:e0:e4:c9:71:80:25:38:d4:fa:
e8:90:51:99:5c:9c:ae:7c:0c:9e:2e:c3:3c:5e:de:ad:1b:9e:
dc:6e:a0:eb:2b:75:ae:8e:57:99:9d:8b:cd:c9:ff:3a:8f:7b:
9e:dc:08:88:4d:9b:95:16:a4:5e:e5:d8:ec:fa:92:36:48:0f:
6d:b7:24:9e:bd:51:72:1c:93:8a:c2:d7:91:34:a8:06:d2:ee:
cf:1c:98:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrk0000reHKvjoeA6v1Kh0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYTc3YzcwOGFmMGJhMWY4MTU0OWM5Zjg3MDg5NTU5Mzkw
MTY3YTUwHhcNMjMwMTAxMDQyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2I5NzRiZjFlMDYxNzE2YzJlYmRkNWRiOTYxOThlYzk0MTNmYmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzYf6CunEKNqMmUfstmgH7K9A1iU
JXaS4ONEtxPnutu/KXGrnXsE70G9zTPpCULeSn9InYowRL5iFC00H4SYV8RP1AwD
0eGJBeCAqyxyyBw/tckg3vAMNMbGcYPNmdPMkJDNQdQLbHzK4pEJ6vC+fUBEKe/D
9yEVpcf4O/RBrYdup6mhXY3mm+xhGt6kgoF2vr3FTY5M+vS6OkSQcLlRVLai2yoU
lmxrehEBjuWChL3XcKQJcvWcmvsia/ii9GBFWOWhDAZZSudfJKcP/s+Oast7zBOo
nDFu97fyWMuVoTOje10jUghnKh/6a5Fcmae241RNlbhXsZ2FPUtGDeKnOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCO5dL8eBhcWwuvdXblhmOyUE/vhMB8GA1UdIwQY
MBaAFKynfHCK8LofgVScn4cIlVk5AWelMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcktkOGNJcnd1aC1CVkp5Zmh3aVZXVGtCWjZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS84ZmU3ZDgtMDE3Yi00MWFhLWE5MWYt
MjhiMTllM2ZkNGE2LzEvSTdsMHZ4NEdGeGJDNjkxZHVXR1k3SlFULS1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS84ZmU3ZDgtMDE3Yi00MWFhLWE5MWYtMjhiMTllM2ZkNGE2
LzEvcktkOGNJcnd1aC1CVkp5Zmh3aVZXVGtCWjZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWFSQMA0G
CSqGSIb3DQEBCwUAA4IBAQAPqWqsBwF3j7lNR90EHnVLC3tpmhzTDCYO7Sqkq3rw
2M84CW0yM+66yBeJPsi0vv9HOzHx3uVYFfq0C4oHg1nagCPbHX2xYo4olP+aiMmM
4utU/SpQ6fEZX/QvtRzVlav7nWWAE518Jm5FLDsSec5X7bLjTyf/lhP6+27DJrrN
VKcUaKe6X8JgK7ou9LOO6XyPrg8gkeFaTrnpfU390FbsFAku8PdcbqSn5Uzg5Mlx
gCU41ProkFGZXJyufAyeLsM8Xt6tG57cbqDrK3WujleZnYvNyf86j3ue3AiITZuV
FqRe5djs+pI2SA9ttySevVFyHJOKwteRNKgG0u7PHJgv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:27 2024 by rpki-client on console-fra.rpki-client.org