Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/jCi5tbUrHDqDusdsKGJhLPVJkfY.roa
File: jCi5tbUrHDqDusdsKGJhLPVJkfY.roa (raw, json)
Hash identifier: ayolqHmsPpatcx6TWSFRoCcQ6GXKE/VWFVM770nyfgw=
Subject key identifier: 8C:28:B9:B5:B5:2B:1C:3A:83:BA:C7:6C:28:62:61:2C:F5:49:91:F6
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188C34B2FBDA8485468434CF32C152C7694
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/jCi5tbUrHDqDusdsKGJhLPVJkfY.roa
Signing time: Fri 16 Jun 2023 08:21:04 +0000
ROA not before: Fri 16 Jun 2023 08:21:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 88.151.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 07:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:4b:2f:bd:a8:48:54:68:43:4c:f3:2c:15:2c:76:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 16 08:21:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c28b9b5b52b1c3a83bac76c2862612cf54991f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f4:89:24:f7:85:2d:42:e8:6e:38:12:ce:ba:
1e:08:2b:70:58:31:f7:81:54:6b:38:ff:93:49:0e:
33:dd:c2:d4:df:ff:17:f4:4c:c3:cb:a3:c7:e1:6a:
b2:41:bf:48:38:0f:08:43:6f:1b:9b:98:24:3f:2c:
2c:3f:fd:a6:7e:ac:ee:51:8f:80:d4:ff:d4:e7:97:
f2:3d:c3:13:f7:04:46:27:e8:56:86:33:8c:89:9b:
60:d6:69:7e:2b:78:1c:50:f7:3f:f5:77:dd:68:10:
8a:c4:1e:71:87:34:a0:aa:e0:f2:ea:90:c9:7e:34:
8a:35:31:a4:3f:63:d6:ce:15:5e:7a:6c:48:91:a9:
76:51:b5:98:03:18:10:b4:8c:97:74:fe:87:dc:c9:
d9:69:07:96:80:ea:80:cf:13:3d:4c:0e:4a:54:10:
7d:41:00:8e:5c:ee:8d:43:e7:97:66:ca:fc:81:c4:
66:18:d9:e7:8d:90:81:3f:72:fb:cd:55:bf:83:8f:
11:5c:a3:01:01:a8:e8:fd:5e:ab:97:fb:a8:82:a9:
f1:64:e5:9d:f7:54:82:55:d5:56:a5:ac:28:d2:65:
a2:2d:ad:d7:9e:11:f4:f7:5b:49:9e:36:5c:bd:09:
85:4e:2a:9e:54:a8:19:49:62:99:be:9e:2b:3f:4e:
89:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:28:B9:B5:B5:2B:1C:3A:83:BA:C7:6C:28:62:61:2C:F5:49:91:F6
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/jCi5tbUrHDqDusdsKGJhLPVJkfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.57.0/24
Signature Algorithm: sha256WithRSAEncryption
55:2c:73:ae:e0:90:00:43:9f:50:7f:8a:d5:32:a1:f7:f6:4c:
b6:81:ec:37:97:93:9c:20:f8:fc:d1:d6:41:56:5d:21:c6:ba:
67:2a:3b:b9:6f:fb:dd:c8:b2:70:d7:55:4e:74:18:9e:08:64:
5c:ae:a6:d2:be:ed:49:b0:5a:9b:a3:ae:3d:41:d5:8f:7e:d3:
94:d4:12:de:e1:e2:19:e4:04:88:2d:73:c2:fb:13:2f:a0:2d:
14:86:e1:91:92:b8:7e:66:59:ed:f1:2b:57:19:14:4c:40:31:
14:8d:ec:5d:70:da:11:dc:66:f2:25:1e:6f:fc:cc:ab:48:b3:
0d:e5:71:da:4f:e6:65:57:4a:ac:bd:78:d9:f8:cd:3c:da:37:
7a:d7:89:1a:84:6d:d6:d6:ca:29:8f:9a:a4:39:15:be:84:fe:
90:b3:4b:dc:b3:7d:e7:43:87:a6:77:10:7f:dc:e2:f4:8e:5f:
c0:78:d2:b4:75:0d:ea:f9:2f:e5:0c:61:c0:06:fd:29:54:1f:
42:0e:1f:bb:93:e5:14:34:4a:53:31:60:bb:ef:4e:ec:6a:9f:
45:99:39:78:b7:27:c4:29:15:54:70:94:43:c3:f7:12:97:3b:
9d:24:f7:a6:7b:6b:b2:9e:4f:0b:a4:78:32:c6:ce:9e:f1:f6:
f4:5d:c4:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org