Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/SD8d39OcfUcaltZCmW7q565wU9A.roa
File: SD8d39OcfUcaltZCmW7q565wU9A.roa (raw, json)
Hash identifier: NjW44e9W/5Ao/hb7hHhBJzlhYRZ1Tw+SiJtRsk8MF5c=
Subject key identifier: 48:3F:1D:DF:D3:9C:7D:47:1A:96:D6:42:99:6E:EA:E7:AE:70:53:D0
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018CC5DC9B194A5657D930B850728740E55F
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/SD8d39OcfUcaltZCmW7q565wU9A.roa
Signing time: Mon 01 Jan 2024 16:30:18 +0000
ROA not before: Mon 01 Jan 2024 16:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50321
IP address blocks: 88.151.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 19:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:9b:19:4a:56:57:d9:30:b8:50:72:87:40:e5:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 16:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=483f1ddfd39c7d471a96d642996eeae7ae7053d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fb:e0:e9:6d:c8:ee:e7:12:c6:e8:9c:f9:b3:
1d:62:da:6e:f6:38:66:04:d2:88:c4:63:7b:f1:9f:
ff:b7:7a:b4:19:d2:d5:dd:df:8e:68:ba:33:d4:80:
81:bf:f9:3a:b5:18:c6:03:23:5f:24:48:54:54:0c:
35:57:4a:f5:40:0b:62:b5:7c:d6:92:6f:43:43:6d:
79:77:11:d9:22:f4:cf:8c:cf:f5:55:41:38:7d:1f:
da:22:ab:f7:76:05:f2:b1:82:36:11:4c:bc:cb:24:
af:07:56:26:fb:6c:a3:84:e2:ab:f3:b0:68:5f:17:
a9:ef:a1:d2:f1:e0:43:06:9b:36:a4:b8:41:b4:2d:
0d:82:5d:c0:5b:0c:e6:a1:f4:c2:0f:7c:d4:09:1d:
99:1d:c6:9c:13:64:66:9d:25:c8:6a:72:b0:e1:68:
bd:1e:92:a0:69:06:23:ed:48:9f:cd:28:4a:3c:cf:
ca:5a:e7:59:4e:39:0e:00:1e:e3:43:39:29:c5:8e:
84:a2:93:25:a7:26:45:7f:21:c8:cd:86:1f:ba:14:
ca:24:85:1d:64:8f:c9:12:0d:50:39:9d:0f:57:57:
8d:8e:55:d5:39:18:01:cd:d3:95:42:8b:b8:26:da:
51:aa:fe:ec:e4:36:83:56:b2:15:5a:6c:88:d2:97:
e6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3F:1D:DF:D3:9C:7D:47:1A:96:D6:42:99:6E:EA:E7:AE:70:53:D0
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/SD8d39OcfUcaltZCmW7q565wU9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.192.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:fc:c3:4a:b6:e9:0c:e6:f0:ef:7e:fd:83:e0:8e:4e:d0:06:
5c:29:56:f3:24:73:10:c3:cf:33:0d:72:c5:34:56:11:8c:45:
d1:e2:4c:cb:91:70:7f:ca:50:1d:4c:88:5e:b8:6f:c6:b9:e4:
4d:f6:d9:ab:f0:16:55:08:67:a3:37:a9:32:98:77:24:3f:37:
53:3a:e0:f3:8d:3f:f9:ed:91:47:18:45:f4:3a:01:8f:30:dc:
a1:04:16:83:c8:04:2f:81:40:9f:f7:4a:fc:5e:07:66:e5:0b:
36:24:c7:a6:86:87:24:cf:30:00:a0:4b:39:f5:6d:c2:77:ff:
0c:41:22:f6:05:e5:b0:78:ca:d3:96:82:1b:99:62:db:43:2a:
3e:a4:4d:3d:8d:29:9e:84:45:04:08:9d:7d:e2:bd:5e:84:91:
32:04:2d:a7:0d:b0:27:ba:88:d3:61:83:97:be:6e:48:f9:20:
99:33:30:45:3e:fb:13:30:84:7c:0d:d9:1a:03:8c:bc:8a:77:
5d:d5:c6:41:ad:ea:2c:cd:7c:09:4f:03:4c:33:d7:a0:7f:67:
82:c8:90:a6:d9:9a:a4:ca:08:29:ac:42:fd:65:c8:0c:dd:27:
b3:66:16:d1:98:84:1f:a5:74:64:6a:45:62:81:2a:41:a2:de:
21:88:b2:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 19 23:07:32 2024 by rpki-client on console-ams.rpki-client.org