Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/yAeOhhcwk-MNPcIa7BeA0nsj9Ro.roa
File: yAeOhhcwk-MNPcIa7BeA0nsj9Ro.roa (raw, json)
Hash identifier: KHoL9vnbZgSsS8EB62K8kMdHF6VXaeb6NXoYaT3oB+Y=
Subject key identifier: C8:07:8E:86:17:30:93:E3:0D:3D:C2:1A:EC:17:80:D2:7B:23:F5:1A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0186D07A7AD905B09059AF2C06FA88ABC835
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/yAeOhhcwk-MNPcIa7BeA0nsj9Ro.roa
Signing time: Sat 11 Mar 2023 11:42:13 +0000
ROA not before: Sat 11 Mar 2023 11:42:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 88.151.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 06:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:7a:7a:d9:05:b0:90:59:af:2c:06:fa:88:ab:c8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 11 11:42:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8078e86173093e30d3dc21aec1780d27b23f51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:99:d0:49:5f:ba:fb:7e:f2:fd:8d:a9:3b:a7:
8f:70:51:28:91:c2:96:f0:ff:8b:31:84:5c:c1:3c:
76:e6:d0:c6:d0:25:de:03:14:3a:2a:d9:9e:b9:dd:
36:8c:6c:db:9c:66:91:63:3b:29:47:11:60:8c:bc:
58:25:f7:12:4d:8e:18:76:be:b5:fb:f7:00:d6:93:
d8:ad:8e:bd:c1:82:e8:0d:13:7a:5c:56:98:cd:a6:
fe:02:73:a6:3d:08:ab:b2:b5:e6:25:91:66:d4:cb:
29:cb:75:6c:61:b9:39:0d:3a:d6:8f:ec:f6:4e:eb:
17:e7:af:a3:44:56:a9:a5:e0:df:d3:1c:b9:0b:22:
66:ed:f6:f9:a0:f0:23:f0:5a:9d:65:5f:4d:cd:50:
9f:42:ab:ec:e9:60:47:2a:ce:4b:d8:54:6b:01:0f:
35:2f:e5:2d:6c:af:53:f1:7e:a8:c1:75:af:08:28:
8a:0d:42:a8:18:31:23:f7:e3:65:3c:ab:8b:4c:66:
98:9e:c1:bf:0e:d2:7f:fa:58:b3:49:45:4c:21:e2:
d4:d9:c5:2c:de:50:84:4c:8f:f3:e6:81:ac:cc:17:
db:ba:75:f1:90:1b:f8:03:ed:5d:32:bc:4c:80:fb:
96:ec:f9:2a:b5:e3:ab:39:2a:d9:40:87:5b:5e:61:
0d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:07:8E:86:17:30:93:E3:0D:3D:C2:1A:EC:17:80:D2:7B:23:F5:1A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/yAeOhhcwk-MNPcIa7BeA0nsj9Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.56.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:d2:d1:a6:9b:dd:f9:65:00:20:09:55:4b:72:99:fd:c4:4b:
74:fc:a5:d4:92:6d:8f:2f:ff:6c:f0:f1:65:8e:26:f2:b9:c7:
84:13:e5:17:6f:5c:3e:f5:a1:51:5c:15:57:ca:f4:e3:b6:f6:
2a:eb:ab:94:a9:b4:31:22:3b:cd:f8:b2:09:87:3b:ca:ed:dc:
6b:59:d4:1f:d3:08:57:3a:17:01:75:d2:a7:16:51:bf:f3:e4:
eb:93:87:3a:61:67:21:29:13:fe:2e:5b:2b:06:06:7e:69:e9:
d1:07:53:97:9e:eb:2b:d2:a2:87:b3:1e:41:5f:4b:76:5e:f8:
cb:3b:af:41:ae:c2:cb:52:5b:52:73:a6:89:00:3d:44:73:2f:
4a:9f:32:db:27:0c:6c:2c:f1:89:aa:a7:ed:3b:8d:79:11:fa:
7f:1c:df:7b:08:29:7b:73:28:89:9a:e5:16:b1:f9:e8:d8:ba:
83:14:bd:71:67:2f:05:70:48:88:61:5b:50:df:f3:1f:3c:91:
b9:96:7c:f5:ab:90:7b:74:4d:bc:c4:ed:90:4d:7b:0e:d9:52:
47:08:ba:ea:03:f6:9d:62:83:a0:69:d0:a8:7c:5c:ba:50:58:
ee:9f:ed:be:0e:99:98:6e:96:30:52:55:78:ec:07:7a:92:e5:
e9:ec:30:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org