Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/2NHQvJyia5bMfxjiXVm-kQ5B9Y4.roa
File: 2NHQvJyia5bMfxjiXVm-kQ5B9Y4.roa (raw, json)
Hash identifier: /1Bk9CPN38QdxeCIMQSNxmsqYh27bEToFZzm5ZttjlQ=
Subject key identifier: D8:D1:D0:BC:9C:A2:6B:96:CC:7F:18:E2:5D:59:BE:91:0E:41:F5:8E
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018770397FC3AD1BCCBD9C5DCD278B470E66
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/2NHQvJyia5bMfxjiXVm-kQ5B9Y4.roa
Signing time: Tue 11 Apr 2023 12:10:29 +0000
ROA not before: Tue 11 Apr 2023 12:10:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15723
IP address blocks: 88.151.194.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:70:39:7f:c3:ad:1b:cc:bd:9c:5d:cd:27:8b:47:0e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 11 12:10:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8d1d0bc9ca26b96cc7f18e25d59be910e41f58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c1:0d:1d:3e:e7:85:c7:78:67:ea:ce:88:0c:
68:1c:ef:4a:66:cf:24:a9:35:d2:aa:8e:31:90:9a:
9d:07:30:09:17:02:ff:1f:cf:e4:96:3c:30:33:6c:
d8:60:1c:19:33:49:c5:0d:9f:36:42:93:b7:03:19:
6e:71:76:2a:48:cc:d2:04:27:7a:2b:4c:58:b5:d2:
f8:21:a9:17:59:91:73:4d:39:57:56:3b:a5:33:43:
ec:c2:72:c8:e3:48:1f:c2:4c:0e:37:c2:f3:bb:f2:
2e:ff:05:ae:40:d5:1b:d7:cc:70:aa:87:4f:3e:b5:
e2:5c:8a:3d:cb:47:d7:1a:ac:6f:ad:e6:8e:86:cd:
80:3f:72:6d:61:61:34:e3:c7:f8:1f:96:25:1c:a0:
28:29:03:4b:61:87:ff:69:32:83:0e:1e:0e:09:5d:
c3:2b:49:81:9c:1b:d3:8c:8e:fc:8e:68:15:ac:a6:
72:2e:f9:d6:46:03:36:03:e6:1d:03:c9:b2:3b:bc:
f5:de:cc:b6:64:f5:f1:49:0c:a9:ef:7d:ec:d3:df:
61:71:78:8a:b9:54:dd:92:bb:cb:04:2c:ea:c6:81:
d2:c6:3c:37:cc:4e:7b:41:7d:a8:97:b5:2f:a8:f7:
3f:2a:d6:36:93:a3:cd:f2:10:73:8d:52:10:77:15:
d3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D1:D0:BC:9C:A2:6B:96:CC:7F:18:E2:5D:59:BE:91:0E:41:F5:8E
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/2NHQvJyia5bMfxjiXVm-kQ5B9Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.194.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:16:48:28:f3:16:af:55:08:e3:db:58:a7:db:97:00:ff:c8:
33:45:5f:ac:67:49:56:63:da:84:c2:1c:7a:e1:96:88:7c:c8:
31:1b:10:b5:44:d2:26:2e:43:41:f2:f5:4e:2b:d0:46:46:b1:
75:ff:40:16:e9:ad:c1:04:5a:b6:9a:d0:57:67:a5:09:63:a8:
f0:2c:68:3c:e3:0e:49:c7:79:66:a0:d1:a3:d7:c0:51:92:6d:
6b:b7:88:a5:dd:ea:0d:9e:1c:d1:c4:9f:e0:3f:e7:f2:0f:74:
8f:52:40:0d:90:96:73:be:52:af:50:96:74:cc:09:b9:12:eb:
9d:f3:c3:26:4e:ee:cb:2e:c5:e9:6c:b2:69:3b:cd:de:5b:83:
99:90:5c:a5:6c:8c:95:14:6f:70:f7:39:b9:87:59:c8:3f:ca:
0a:ca:93:46:6f:01:92:81:9e:49:17:c2:a6:da:de:f0:0b:ba:
e1:17:6e:ba:f3:d8:f1:93:1f:3c:74:fa:8c:3c:62:47:b5:2b:
a8:6a:67:f4:16:7e:5c:b2:c9:8f:25:9e:62:a9:a4:71:b5:f6:
ae:aa:08:a1:08:bd:4e:7c:aa:19:f0:1c:bf:2c:7e:b1:e0:6b:
8e:0c:f1:83:a6:ee:34:cf:b7:8b:32:ed:47:d1:59:9f:b4:bb:
74:77:16:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:50 2023 by rpki-client on console-ams.rpki-client.org