Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/MVdS5JxSFX_L2LqcQdtMilKv880.roa
File: MVdS5JxSFX_L2LqcQdtMilKv880.roa (raw, json)
Hash identifier: tYDeYtS2N3D9PdyhxEfp/UvehoieMw4SA0QXb49mKjM=
Subject key identifier: 31:57:52:E4:9C:52:15:7F:CB:D8:BA:9C:41:DB:4C:8A:52:AF:F3:CD
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018B8FE9A77C3F8FDE039E0398524A3EC69F
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/MVdS5JxSFX_L2LqcQdtMilKv880.roa
Signing time: Thu 02 Nov 2023 12:02:16 +0000
ROA not before: Thu 02 Nov 2023 12:02:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 88.151.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Dec 2023 10:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:e9:a7:7c:3f:8f:de:03:9e:03:98:52:4a:3e:c6:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Nov 2 12:02:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=315752e49c52157fcbd8ba9c41db4c8a52aff3cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f9:89:9f:3f:cf:12:ef:80:3b:65:e6:b4:99:
bc:2f:bc:ae:86:90:84:92:14:1d:9c:6a:2b:2b:1b:
42:de:8e:cd:18:fc:36:bd:46:22:5e:93:fd:5b:3a:
cd:34:e4:e3:3b:0a:8a:f1:38:28:8c:56:06:51:54:
c5:53:23:8d:21:31:b5:0c:7b:39:47:19:92:27:18:
96:4f:ef:1a:fc:a5:a2:c1:79:dd:c5:f2:cb:e5:d7:
7b:87:8c:cf:e1:aa:75:23:78:26:e2:ad:44:4a:7d:
02:e2:42:20:bc:12:66:ed:00:82:de:e5:03:c3:fb:
1c:d3:41:94:8b:2c:85:cb:78:81:b8:0b:13:a3:97:
3d:fe:4b:b0:6d:24:78:b0:30:06:5a:a9:9d:60:4e:
e4:f4:2e:61:4a:ce:d4:00:45:91:c0:d3:c0:5a:30:
53:d1:2d:bb:84:8c:81:24:c6:86:86:43:46:fc:e4:
54:3d:b8:c8:81:b7:a8:21:af:5c:04:bc:c9:40:28:
e3:ac:8a:4b:81:ca:74:aa:aa:8e:ce:3c:66:9c:d4:
70:3b:a0:94:b2:5f:25:83:67:8c:f3:cf:56:d6:43:
18:ef:ca:45:e2:ad:3d:e6:90:57:57:09:e2:ec:51:
4b:a0:97:cb:a2:8c:91:0d:94:49:5d:f4:b8:d9:97:
65:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:57:52:E4:9C:52:15:7F:CB:D8:BA:9C:41:DB:4C:8A:52:AF:F3:CD
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/MVdS5JxSFX_L2LqcQdtMilKv880.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.62.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:0a:c1:26:d1:e7:7c:bc:49:81:4c:13:b2:1c:a1:1f:5a:29:
8c:22:3c:de:7b:fe:50:4d:be:ac:fe:0a:49:76:20:3e:83:c4:
9c:46:89:28:6c:5e:9e:d3:6b:fd:50:5a:2d:82:dc:b5:a7:72:
04:7e:23:e9:95:b4:75:36:00:93:f3:fb:0c:ed:fe:ad:99:66:
97:78:2a:cd:60:dd:98:c2:b4:b8:14:ff:53:6c:5c:7f:ba:e1:
77:77:51:00:d5:52:ce:66:00:2d:5b:23:70:34:f2:83:2b:9b:
c5:8f:5b:2e:b6:44:8f:fc:68:53:a4:af:76:68:2e:5f:ec:d9:
e3:05:5e:8a:40:d7:c4:1f:8e:07:b7:f3:28:22:d7:b5:6c:99:
6b:82:da:b1:89:18:c4:83:40:d2:d5:d0:a8:5c:7e:7c:32:f2:
8e:d6:ce:6a:3c:a8:1e:95:e0:da:d9:99:43:f6:37:81:32:ec:
26:36:4b:53:a3:f8:93:8a:9a:35:b9:2f:ac:a0:0a:f2:b5:fc:
ee:83:50:71:bf:d3:3e:b0:79:e2:93:db:06:d3:7e:64:15:10:
c4:4a:66:38:2e:b8:e8:f1:f4:d3:cc:72:f0:50:92:d5:76:29:
1e:e8:92:9f:df:8a:8d:1e:f6:ec:b2:1b:fb:f1:f9:7c:e2:1c:
5d:6c:d2:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org