Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/0pZR1aLXK7iwygyEHbBuH3YVQ1g.roa
File: 0pZR1aLXK7iwygyEHbBuH3YVQ1g.roa (raw, json)
Hash identifier: EL6+nGm4zOz0Sk20y2kJZsy4dPhyDvCYM6TGrStWNw4=
Subject key identifier: D2:96:51:D5:A2:D7:2B:B8:B0:CA:0C:84:1D:B0:6E:1F:76:15:43:58
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018862A81DF4F2AC7298E2AF54A55E22B9BB
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/0pZR1aLXK7iwygyEHbBuH3YVQ1g.roa
Signing time: Sun 28 May 2023 13:59:24 +0000
ROA not before: Sun 28 May 2023 13:59:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 88.209.229.0/24 maxlen: 24
88.209.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 07:06:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:62:a8:1d:f4:f2:ac:72:98:e2:af:54:a5:5e:22:b9:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: May 28 13:59:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d29651d5a2d72bb8b0ca0c841db06e1f76154358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:04:0c:58:5c:76:6d:af:60:e6:b8:ea:43:a9:
48:23:84:40:b4:69:dc:72:19:1d:c9:a5:87:67:9e:
85:89:5c:8f:c7:86:a2:56:48:55:d6:75:e5:16:a0:
ad:8b:9e:a9:66:3c:bc:9d:65:07:d8:8a:a2:90:56:
91:ea:ee:db:45:a7:a3:5f:76:28:4e:2c:f7:47:23:
f5:ab:85:b8:fa:1c:20:46:c1:a0:7a:7f:24:02:52:
3c:64:76:aa:a2:fc:ef:99:91:b6:86:c5:73:1d:94:
cb:7b:a3:27:86:f9:96:5a:a3:0b:5f:89:0a:0f:6b:
51:ec:0e:81:8c:bc:24:7f:95:62:3a:5c:db:96:65:
61:2c:ba:1a:d5:75:a7:f4:46:5a:1e:4b:13:a2:3a:
90:d0:2d:54:25:41:d6:3f:76:b2:be:a1:25:d1:ab:
c9:ce:d2:ca:ef:2d:cf:a8:9e:39:80:7a:7f:14:1a:
4a:2a:94:44:c8:5e:4a:c9:e9:c6:b1:dd:6d:f9:35:
28:96:c7:6a:01:f3:b2:1c:62:d1:31:3c:a5:2a:db:
ab:41:84:2f:24:32:12:d4:f5:cf:2b:35:bb:83:42:
25:d0:cd:d3:37:56:08:3e:93:fd:0b:96:f5:7e:51:
a5:53:25:4a:d7:5e:fe:51:db:ad:86:a5:3a:7e:c1:
bb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:96:51:D5:A2:D7:2B:B8:B0:CA:0C:84:1D:B0:6E:1F:76:15:43:58
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/0pZR1aLXK7iwygyEHbBuH3YVQ1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.229.0/24
88.209.244.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:1c:54:44:d5:47:71:43:f9:d4:5e:09:be:ab:92:7d:7a:f8:
81:fb:73:75:51:6f:0e:8a:c6:57:1b:0b:30:de:60:51:68:63:
07:58:30:d1:e3:2e:bf:e0:fd:91:11:d3:3f:68:88:07:21:88:
aa:68:0c:b3:4c:36:5c:a2:66:a1:c4:ea:7b:32:7a:05:8b:b9:
41:99:1b:8a:51:b9:af:f2:cf:49:0d:ff:18:7a:c3:a5:50:5e:
74:a8:b6:25:6e:4e:84:5c:f7:76:bf:51:c6:40:5a:94:ca:1f:
34:fe:a4:97:c1:2f:02:8d:0e:0b:3e:95:01:08:9c:b2:46:75:
c7:a5:bd:e0:f5:3c:46:a1:f8:a1:5e:ec:ea:72:0f:45:48:7b:
68:be:a2:99:9a:ff:af:c4:a6:86:05:ac:17:47:27:1d:b2:b0:
82:5a:d8:79:57:cd:0f:2f:01:38:dc:71:ac:91:c2:32:5c:8e:
8a:37:64:21:d2:bc:9f:5d:43:6b:85:fe:32:25:8b:b2:a9:58:
cf:ce:55:3a:35:14:88:db:3d:14:9b:d1:7d:fd:cc:63:e3:2a:
44:97:4d:14:3f:0b:a2:a3:53:ad:a6:0f:0c:8e:d3:40:af:d6:
ba:40:27:3c:60:7c:a0:49:aa:ea:d7:a6:3f:e0:dc:a1:5e:cd:
5e:ea:85:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:26 2024 by rpki-client on console-fra.rpki-client.org