Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/359179-4ac2-431c-9531-0b7a33dd5b56/1/88xxKb6G0E4z76QKq_lyS7McUYw.roa
File: 88xxKb6G0E4z76QKq_lyS7McUYw.roa (raw, json)
Hash identifier: c55/xRMvIizaiNTeEJOyBSrQv03d9UXQtsoRXpc+VJk=
Subject key identifier: F3:CC:71:29:BE:86:D0:4E:33:EF:A4:0A:AB:F9:72:4B:B3:1C:51:8C
Certificate issuer: /CN=b45064c1ac8690e2c77a959a502546e98bcd3727
Certificate serial: 018883D9D8851A6F42C3AC7B109EA52F18BA
Authority key identifier: B4:50:64:C1:AC:86:90:E2:C7:7A:95:9A:50:25:46:E9:8B:CD:37:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFBkwayGkOLHepWaUCVG6YvNNyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/359179-4ac2-431c-9531-0b7a33dd5b56/1/88xxKb6G0E4z76QKq_lyS7McUYw.roa
Signing time: Sun 04 Jun 2023 00:41:12 +0000
ROA not before: Sun 04 Jun 2023 00:41:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204928
IP address blocks: 194.153.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:83:d9:d8:85:1a:6f:42:c3:ac:7b:10:9e:a5:2f:18:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b45064c1ac8690e2c77a959a502546e98bcd3727
Validity
Not Before: Jun 4 00:41:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3cc7129be86d04e33efa40aabf9724bb31c518c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:98:70:f5:54:02:b6:92:55:dd:ad:a2:01:55:
75:64:d6:88:74:ca:57:ba:95:be:d8:0a:e3:5e:3c:
40:77:b3:17:46:ad:d1:66:6c:4c:f2:23:13:e4:21:
00:3c:f3:8c:17:bc:49:00:43:a0:04:78:e9:73:7f:
92:71:fe:0b:df:8e:0d:90:6c:c1:b5:7b:da:f3:ac:
a6:c2:24:fa:65:84:4a:7d:17:dd:e2:fb:82:02:5b:
30:94:ba:ac:c2:91:70:eb:ad:d5:91:ab:e9:8a:32:
48:3d:15:de:01:e5:10:83:1d:9a:91:a6:c7:b8:32:
06:ea:61:46:15:db:21:77:82:20:e0:2e:38:81:d0:
08:31:7c:13:4e:86:7e:0c:44:63:61:b0:69:5b:d5:
c2:8c:26:b7:08:87:15:a1:af:fb:73:ed:37:ca:a5:
54:21:ed:98:37:4b:0b:43:70:e9:a3:89:1f:08:fe:
df:3a:75:db:a8:db:42:2a:a1:8e:33:59:eb:67:17:
af:53:12:39:39:72:34:a0:9c:1a:c9:af:63:f3:69:
9d:79:3a:26:cf:f6:a7:21:34:74:30:20:50:28:37:
7e:6b:ca:a9:8a:63:ff:f5:b9:40:b0:05:3d:f4:e9:
b8:c2:ff:b6:76:02:75:9b:9f:86:98:04:92:13:c4:
91:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CC:71:29:BE:86:D0:4E:33:EF:A4:0A:AB:F9:72:4B:B3:1C:51:8C
X509v3 Authority Key Identifier:
keyid:B4:50:64:C1:AC:86:90:E2:C7:7A:95:9A:50:25:46:E9:8B:CD:37:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFBkwayGkOLHepWaUCVG6YvNNyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/359179-4ac2-431c-9531-0b7a33dd5b56/1/88xxKb6G0E4z76QKq_lyS7McUYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/359179-4ac2-431c-9531-0b7a33dd5b56/1/tFBkwayGkOLHepWaUCVG6YvNNyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.216.0/24
Signature Algorithm: sha256WithRSAEncryption
14:23:18:8f:0b:b5:92:c4:ad:52:ca:f4:18:82:9d:b7:92:a5:
4e:0a:0f:65:4c:52:69:86:bf:06:d6:dd:4f:f0:29:86:05:81:
c0:70:7c:a9:04:43:8d:46:df:d3:6d:ea:c8:4c:20:c3:7d:e6:
3d:c3:f4:06:8c:0d:09:d5:f3:0d:bd:07:32:b6:cc:d4:e4:e0:
d9:58:8a:65:b7:09:46:fd:3b:35:b9:80:dc:a3:e5:9b:e2:09:
cb:ff:b1:a2:76:5e:9b:01:76:0d:64:b7:d1:da:90:e7:02:c2:
e9:58:d0:e9:fe:c6:76:d0:c2:9e:53:4c:19:41:4d:ac:53:15:
20:d6:e0:35:8b:93:52:38:ea:50:cb:71:06:a1:3c:8b:11:59:
14:18:53:94:57:cc:b8:be:bc:cf:f5:bc:c9:e5:98:49:6d:bb:
a0:12:4c:77:8e:5a:2e:da:79:0f:2a:5a:c8:f5:66:da:0e:3f:
3c:cc:e1:65:f7:e8:dc:d3:9c:96:61:85:01:c1:81:6e:82:f1:
db:30:f0:f6:98:93:08:cf:43:ce:42:83:21:0a:8f:bc:fe:02:
c4:43:d4:f3:1f:65:ba:a7:d3:ac:c8:fd:53:da:3f:66:f4:a3:
60:03:8d:4a:06:e9:b6:a0:b7:77:e2:aa:77:bd:c6:ae:fd:e1:
32:6e:99:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:29 2024 by rpki-client on console-ams.rpki-client.org