Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/rHitfWrgoFm4VxR4-fW0BvTbcRU.roa
File: rHitfWrgoFm4VxR4-fW0BvTbcRU.roa (raw, json)
Hash identifier: KSzvsLUyQPAjwBnBetAoukAnDmzoPAq++M1xRTjiDjU=
Subject key identifier: AC:78:AD:7D:6A:E0:A0:59:B8:57:14:78:F9:F5:B4:06:F4:DB:71:15
Certificate issuer: /CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Certificate serial: 0188C572562E1099BEE093857009FBD1BE42
Authority key identifier: DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/rHitfWrgoFm4VxR4-fW0BvTbcRU.roa
Signing time: Fri 16 Jun 2023 18:23:04 +0000
ROA not before: Fri 16 Jun 2023 18:23:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272825
IP address blocks: 88.135.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c5:72:56:2e:10:99:be:e0:93:85:70:09:fb:d1:be:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbb396dfa951ec4157f211e5ed740ed97e1b0f3f
Validity
Not Before: Jun 16 18:23:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac78ad7d6ae0a059b8571478f9f5b406f4db7115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8e:7d:30:bb:d0:a1:18:fe:bd:28:6a:96:15:
71:11:b1:6d:65:7d:fc:02:09:5b:3d:76:44:74:f0:
32:e1:59:cf:43:26:fb:7e:54:9b:6d:76:9a:15:d6:
b9:35:56:27:67:17:77:ff:92:06:d1:8c:77:c2:ee:
d3:3a:f2:53:7f:05:24:f1:36:1e:2c:75:74:de:f3:
c6:be:53:ad:cb:34:08:71:40:e1:6b:43:75:40:e5:
73:71:f0:84:99:c5:83:21:6e:cd:78:20:eb:34:cf:
04:5d:dd:5f:f5:6b:33:15:65:a0:22:6a:f7:5f:28:
41:ec:46:c3:05:2c:c5:50:72:84:9f:1e:1b:0f:fd:
49:7f:96:5a:2f:b3:0b:6a:f4:78:09:4e:8f:d4:f0:
2e:66:f3:34:9b:98:7f:00:be:1b:23:75:cf:b6:6b:
6c:90:dd:0f:a8:aa:39:b9:ec:86:99:cc:1e:31:a3:
ef:0e:95:14:e9:4b:e5:fd:9c:8b:62:11:3e:4a:33:
10:4d:ff:6b:ae:77:32:8b:82:64:4c:bf:50:12:61:
94:70:d8:12:82:88:e6:a2:7a:1c:ee:ec:ac:a6:ab:
58:c6:7d:d6:e4:9e:e9:83:dd:eb:a1:a6:6e:e7:37:
05:19:81:4b:16:38:29:62:7c:90:78:77:d2:0d:39:
d7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:78:AD:7D:6A:E0:A0:59:B8:57:14:78:F9:F5:B4:06:F4:DB:71:15
X509v3 Authority Key Identifier:
keyid:DB:B3:96:DF:A9:51:EC:41:57:F2:11:E5:ED:74:0E:D9:7E:1B:0F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27OW36lR7EFX8hHl7XQO2X4bDz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/rHitfWrgoFm4VxR4-fW0BvTbcRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b3987a-4504-4749-9d73-df572fe9672a/1/27OW36lR7EFX8hHl7XQO2X4bDz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.69.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:c1:43:b0:c0:02:37:04:8d:93:2b:2e:3c:e6:83:15:ef:77:
0f:8e:3d:6c:7d:2c:b1:40:07:33:d2:59:96:ff:fb:2f:19:09:
30:36:d8:ae:a2:ed:c6:ac:02:7b:f1:b0:9e:3e:09:a3:d8:ac:
46:bd:f8:5c:a4:8b:67:7c:e3:69:a0:1b:89:4f:2d:8e:e3:48:
1b:cb:b8:54:b0:11:1b:3b:f9:fa:28:2e:dc:c1:f4:bb:8d:d7:
c6:63:af:e9:d9:f8:be:f6:8b:c5:64:aa:50:3a:dc:55:07:92:
b2:c6:90:2c:2d:f8:f5:04:38:4e:02:f6:35:6d:b7:c1:1c:3d:
73:d2:2f:60:b2:15:85:a3:70:75:2e:e6:a2:29:21:11:86:53:
ac:4d:7b:fd:97:b5:b6:1c:a7:11:c4:98:ea:1a:17:3a:83:92:
0a:39:7c:51:fa:43:b6:73:1b:c6:c5:b3:6f:69:bb:2d:15:87:
de:56:ba:d9:81:b4:67:82:1b:c3:72:b9:73:c8:51:7c:8a:3d:
96:2b:95:18:61:c1:a6:32:e6:d5:d8:70:4d:c7:df:fa:65:1b:
af:4a:66:0f:5c:1a:7e:e4:61:05:51:1d:c9:88:fb:dd:6c:bc:
cf:5c:1f:a1:9b:e6:12:33:57:4e:39:20:e7:8d:2f:98:9a:dc:
e3:46:61:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:29 2024 by rpki-client on console-ams.rpki-client.org