Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/d3e23f-0e5a-4923-ab2f-a9ea2057042b/1/jUjr6i3Sl6hm2A_QtNrp9Owv3sI.roa
File: jUjr6i3Sl6hm2A_QtNrp9Owv3sI.roa (raw, json)
Hash identifier: aI+TZ0OHAjG8JDslWzyF4HNd+qzGoIow86I4g4GblA8=
Subject key identifier: 8D:48:EB:EA:2D:D2:97:A8:66:D8:0F:D0:B4:DA:E9:F4:EC:2F:DE:C2
Certificate issuer: /CN=a2e606c7e93fed36ef90d42ce4a97260bb8aa9c1
Certificate serial: 01856CE60A02943C1F14C7A129B06A5AAFED
Authority key identifier: A2:E6:06:C7:E9:3F:ED:36:EF:90:D4:2C:E4:A9:72:60:BB:8A:A9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouYGx-k_7TbvkNQs5KlyYLuKqcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/d3e23f-0e5a-4923-ab2f-a9ea2057042b/1/jUjr6i3Sl6hm2A_QtNrp9Owv3sI.roa
Signing time: Sun 01 Jan 2023 10:34:53 +0000
ROA not before: Sun 01 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13004
IP address blocks: 88.218.139.0/24 maxlen: 24
188.120.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0a:02:94:3c:1f:14:c7:a1:29:b0:6a:5a:af:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e606c7e93fed36ef90d42ce4a97260bb8aa9c1
Validity
Not Before: Jan 1 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d48ebea2dd297a866d80fd0b4dae9f4ec2fdec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4a:5b:4d:6a:fa:6d:58:0e:07:6a:78:b2:cc:
8c:f2:04:6d:f9:34:ae:4d:8e:5a:4e:07:e0:af:ed:
57:a5:c2:58:9d:88:1a:52:23:c1:a2:46:29:d4:5f:
c0:41:06:b5:25:4f:dc:d0:78:f9:af:da:2e:23:52:
60:bd:ac:9e:e0:91:95:c9:d8:db:a9:fe:4f:c1:b2:
72:e2:f8:35:9f:69:ea:a0:17:ac:7d:1d:bc:fd:50:
7d:06:7f:b8:ca:0b:4e:d7:c8:ba:7e:dd:8a:51:2f:
90:a2:d7:b5:d6:ff:81:e2:5d:3f:39:a9:e1:7b:cc:
92:8e:76:a1:a9:23:5c:a8:4a:cc:a8:00:40:52:cd:
56:e2:e5:5a:c9:bc:f4:c8:a1:94:58:3c:ef:31:fd:
35:73:be:a5:13:57:88:2b:de:38:86:4f:ac:39:18:
9a:c8:e7:62:96:36:10:39:50:d2:37:e6:67:ff:de:
77:cb:33:53:b0:49:ae:ca:59:80:dc:d5:b3:62:8e:
ae:7d:82:32:f8:ef:82:c7:cd:7c:47:d1:03:20:fa:
70:8d:20:89:08:57:d4:f3:c2:0a:49:14:96:f5:bd:
fe:59:0b:c9:7c:08:1b:0c:b2:de:87:94:6a:b1:34:
62:cc:8a:6c:bf:2d:28:07:12:d2:90:99:e5:4f:47:
ba:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:48:EB:EA:2D:D2:97:A8:66:D8:0F:D0:B4:DA:E9:F4:EC:2F:DE:C2
X509v3 Authority Key Identifier:
keyid:A2:E6:06:C7:E9:3F:ED:36:EF:90:D4:2C:E4:A9:72:60:BB:8A:A9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouYGx-k_7TbvkNQs5KlyYLuKqcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/d3e23f-0e5a-4923-ab2f-a9ea2057042b/1/jUjr6i3Sl6hm2A_QtNrp9Owv3sI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/d3e23f-0e5a-4923-ab2f-a9ea2057042b/1/ouYGx-k_7TbvkNQs5KlyYLuKqcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.139.0/24
188.120.127.0/24
Signature Algorithm: sha256WithRSAEncryption
06:8d:1d:c3:a0:57:9f:81:87:c8:6f:10:39:e9:7d:14:14:81:
ba:2a:46:da:9e:ce:b3:37:22:b7:0b:cf:c6:44:56:24:a1:05:
d0:5b:62:b1:30:17:07:e3:e8:52:4d:91:0a:ed:ba:1d:36:f1:
ac:e3:48:9f:b0:fc:39:15:a9:4b:1e:d4:08:e0:4a:b2:04:9c:
10:4e:61:99:7d:ba:ec:45:43:c2:39:15:ed:7e:f7:56:fe:6e:
91:ec:45:cb:b6:44:5a:e8:f4:bd:8f:f2:9a:2f:cb:11:d5:41:
17:52:6e:7e:b0:64:84:8a:a5:54:9b:30:19:c5:36:e7:ff:78:
84:aa:07:29:23:f3:33:97:b3:de:f3:85:48:9c:fa:d3:37:eb:
70:94:0b:02:66:7e:65:04:fb:04:72:c2:cf:2a:33:01:2e:4d:
d4:77:ac:8a:54:3d:00:36:af:0b:64:95:97:3b:48:ca:29:8f:
96:28:de:b7:b1:22:bf:f7:bb:cd:e6:98:88:ed:1d:0c:4a:09:
0b:cf:73:05:0e:9b:aa:2f:d1:4a:63:8f:b6:b9:ea:6d:f9:41:
dd:2f:64:c2:2c:48:de:2d:50:f1:d1:24:81:c4:fc:b0:16:c7:
09:00:ff:4b:56:a1:c1:b6:fe:cf:50:a4:34:81:40:bd:9d:64:
e8:10:43:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:10 2024 by rpki-client on console-ams.rpki-client.org