Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/B-rmksGGQ9zOPFb72awfeAr-gA8.roa
File: B-rmksGGQ9zOPFb72awfeAr-gA8.roa (raw, json)
Hash identifier: op+KDANC9lqpJIB8CAtPRhE064+BoEN1QryPnDt1C58=
Subject key identifier: 07:EA:E6:92:C1:86:43:DC:CE:3C:56:FB:D9:AC:1F:78:0A:FE:80:0F
Certificate issuer: /CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Certificate serial: 01857246B6C2BD4323433C477A74184E8496
Authority key identifier: 29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/B-rmksGGQ9zOPFb72awfeAr-gA8.roa
Signing time: Mon 02 Jan 2023 11:38:34 +0000
ROA not before: Mon 02 Jan 2023 11:38:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212296
IP address blocks: 88.135.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:b6:c2:bd:43:23:43:3c:47:7a:74:18:4e:84:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Validity
Not Before: Jan 2 11:38:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07eae692c18643dcce3c56fbd9ac1f780afe800f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:51:6c:f3:d3:b7:dc:aa:b0:97:8e:cd:1c:b2:
4d:85:56:f0:f2:32:e3:ec:a1:1e:7d:25:2a:67:4a:
21:2a:7f:8a:ed:5e:55:6d:02:37:c5:fe:05:1c:37:
e6:b1:da:7a:ad:38:b0:2c:40:84:e9:45:d2:f9:12:
2d:09:52:c5:ad:53:e6:1c:fb:ab:fa:f5:bf:72:13:
7d:4d:e3:82:4b:cc:41:a0:fb:45:6b:5f:5c:38:6a:
4f:52:44:c8:0b:ce:c0:4e:66:b8:43:b1:b2:5a:24:
46:6b:b0:20:02:e1:92:b9:97:0a:21:b7:45:a3:2c:
4f:db:7b:9f:00:2a:ac:20:d1:65:cf:e9:f3:0f:95:
dc:36:69:65:ab:f4:8d:dc:dc:04:df:b6:12:b5:63:
b7:49:58:8a:df:cd:28:17:06:2b:df:06:d3:6f:14:
e9:c6:c6:44:40:83:f8:43:83:da:d7:cb:af:3c:32:
40:ac:23:d0:b4:2b:b4:4c:ba:3b:7a:42:3d:7a:ca:
20:12:7b:4e:e7:fb:b2:a3:fe:f2:23:5c:c4:db:64:
c2:b2:10:20:3d:de:80:2d:be:5a:83:4d:b8:10:37:
cf:53:c3:50:17:56:fc:81:6b:ef:45:b8:40:db:e6:
c3:72:bd:2a:38:00:69:c3:75:14:57:33:2c:30:dd:
be:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EA:E6:92:C1:86:43:DC:CE:3C:56:FB:D9:AC:1F:78:0A:FE:80:0F
X509v3 Authority Key Identifier:
keyid:29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/B-rmksGGQ9zOPFb72awfeAr-gA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.68.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:5e:f9:09:b3:91:f3:a1:99:09:2c:ab:b4:97:24:50:24:9e:
4d:4b:c9:c9:73:67:a6:af:59:4f:39:68:72:27:24:ae:a9:27:
4f:49:19:80:91:b4:6f:c4:87:f0:4d:f5:11:89:b9:16:39:18:
2a:e6:92:9c:10:72:d5:95:4d:4d:96:57:04:80:07:2c:81:29:
6b:09:20:49:5e:2f:5b:99:60:4c:b1:bf:88:77:4d:81:f5:9e:
01:7f:57:6c:d4:54:b1:a7:09:92:03:3c:b7:d0:2d:e6:37:f2:
26:e3:cf:a0:44:a6:88:fc:77:a2:22:0c:96:c3:c4:69:0d:59:
89:69:6e:e3:fa:87:12:31:81:8f:1f:e1:b5:c8:9a:89:57:94:
f2:c0:d5:6d:2f:0c:6e:4d:f0:0e:a3:f5:87:0e:01:e9:a3:9e:
eb:c8:d6:f0:13:0a:66:e1:1a:dd:b1:e7:ef:19:04:df:fe:53:
e5:cc:bf:ce:ed:ff:10:03:1b:c1:ac:5a:99:fd:aa:7d:cf:6f:
11:6c:4f:9d:fe:0d:e7:77:76:68:79:9c:24:3c:80:33:06:33:
52:0d:3a:9e:68:4d:6c:50:cc:67:0c:8d:de:01:8f:c0:9f:11:
61:61:6c:7b:b5:70:f0:e2:b6:fa:13:f8:38:51:d2:be:a8:38:
ab:03:55:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:01 2024 by rpki-client on console-fra.rpki-client.org