Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/1OgQLDAZUK_8fAhs3Zhf2rUmr8U.roa
File: 1OgQLDAZUK_8fAhs3Zhf2rUmr8U.roa (raw, json)
Hash identifier: hAvW3LXwvLvsvpIAj3ELkQkBWQo+vGSpbT7occtoGgE=
Subject key identifier: D4:E8:10:2C:30:19:50:AF:FC:7C:08:6C:DD:98:5F:DA:B5:26:AF:C5
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188330EE85ACB3D07725442B1689B95E69A
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/1OgQLDAZUK_8fAhs3Zhf2rUmr8U.roa
Signing time: Fri 19 May 2023 08:09:54 +0000
ROA not before: Fri 19 May 2023 08:09:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 88.209.244.0/24 maxlen: 24
88.209.192.0/24 maxlen: 24
88.209.194.0/24 maxlen: 24
88.151.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 May 2023 13:11:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:0e:e8:5a:cb:3d:07:72:54:42:b1:68:9b:95:e6:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: May 19 08:09:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4e8102c301950affc7c086cdd985fdab526afc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:18:83:2f:c1:51:9a:cd:e0:46:a9:a9:ff:14:
bf:0a:27:4e:ba:7c:6c:c2:7a:f8:87:42:4f:0c:8e:
61:34:a8:09:ad:48:ee:6f:c6:76:18:d5:e4:58:19:
63:58:3e:6a:40:c8:e8:d2:19:da:68:0b:c2:ce:20:
2b:3d:d7:26:be:aa:88:d5:49:8d:68:94:af:b6:51:
4b:63:99:9e:91:37:34:5c:4a:fe:0f:95:b0:9e:65:
ee:00:a3:d3:7d:6a:c4:9c:5f:da:be:3e:d4:4a:85:
bb:5c:3f:1d:da:b4:0e:d7:61:82:1e:19:92:e0:33:
ee:46:01:1e:a4:b9:d2:20:40:0a:8a:db:11:fc:61:
80:06:c9:74:e9:ce:06:61:10:1c:62:3f:cf:39:01:
89:6c:5c:28:b0:ea:0a:ef:96:f6:d5:c9:4c:61:be:
6b:50:0c:6e:15:2f:09:f8:71:14:7d:d5:1c:4f:5d:
6f:9d:8d:80:22:7b:da:fb:29:93:03:a1:6d:48:fc:
e2:5b:6b:98:98:bd:64:5d:a2:aa:06:ab:f7:79:a8:
47:4e:48:af:4b:7e:7b:82:92:c9:dd:ec:40:a9:3b:
00:18:d9:53:fa:47:15:50:8e:45:8a:f1:10:d4:da:
6f:9b:fe:d5:64:21:39:4e:31:52:02:6a:6e:bc:e3:
f8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E8:10:2C:30:19:50:AF:FC:7C:08:6C:DD:98:5F:DA:B5:26:AF:C5
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/1OgQLDAZUK_8fAhs3Zhf2rUmr8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.59.0/24
88.209.192.0/24
88.209.194.0/24
88.209.244.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:ad:c2:8c:47:d6:ed:83:22:9d:24:3d:88:14:c8:b0:d2:e6:
03:d0:c4:81:99:da:74:87:af:3d:fe:04:8c:20:c2:e9:99:e5:
90:dc:32:ee:50:dd:e8:23:0c:87:75:a7:9d:ad:63:86:c3:7e:
de:4e:d7:b3:4a:d9:c3:12:24:d5:99:41:2d:60:91:19:77:ef:
37:ec:d1:2a:8a:71:5c:d8:a4:75:fb:01:b5:a5:b9:a1:c6:ef:
1d:fb:5d:ac:d9:05:67:10:b5:93:27:a6:7c:67:97:a4:90:ca:
ff:7d:db:73:bd:0d:d0:b0:77:0e:ac:51:02:b2:9c:9c:a9:6e:
c3:bc:23:94:24:01:2d:18:04:e4:4e:8d:41:75:be:0c:cf:79:
37:27:dc:44:74:f1:16:90:ea:fe:42:47:2e:e2:64:e2:bb:ee:
02:86:b6:c4:a2:5c:b7:b9:68:c7:a6:79:e8:89:ac:3f:01:20:
92:88:62:a9:aa:0d:88:a1:1a:69:06:69:fa:b4:fa:43:1f:51:
88:bd:c5:45:42:7e:3c:e9:75:b0:ba:a5:97:7b:c6:1c:b1:94:
8e:27:df:a2:99:ec:71:7f:b6:71:20:4d:af:7e:d0:00:4e:b0:
1e:48:c9:81:9e:45:05:1c:cb:a5:6b:cc:d8:d7:47:9b:1e:93:
73:b0:40:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:54 2024 by rpki-client on console-ams.rpki-client.org