Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/2JRSrBoO4MsWbkUIVCwR1ZpKf1Q.roa
File: 2JRSrBoO4MsWbkUIVCwR1ZpKf1Q.roa (raw, json)
Hash identifier: mCyA1RZHRA91Q/WYUBy3/A5l9YFL2cIh14KRbXgu+7M=
Subject key identifier: D8:94:52:AC:1A:0E:E0:CB:16:6E:45:08:54:2C:11:D5:9A:4A:7F:54
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018A89F59F07B74BE17251179F17C2CCCCF6
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/2JRSrBoO4MsWbkUIVCwR1ZpKf1Q.roa
Signing time: Tue 12 Sep 2023 15:14:50 +0000
ROA not before: Tue 12 Sep 2023 15:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 88.209.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:89:f5:9f:07:b7:4b:e1:72:51:17:9f:17:c2:cc:cc:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Sep 12 15:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d89452ac1a0ee0cb166e4508542c11d59a4a7f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:67:2b:e1:e0:5c:17:af:cb:55:d1:48:78:37:
47:a4:c0:c4:96:07:a4:8c:fd:67:35:67:90:ae:bd:
f9:6f:f1:51:ea:99:40:63:17:da:2f:35:19:35:0a:
6a:38:6f:2a:00:08:7a:37:99:87:fa:ab:44:82:de:
a7:4f:a6:6a:35:de:b2:de:7f:24:45:12:3b:f7:97:
09:a9:ed:04:32:7e:d0:0e:55:ab:71:51:e5:21:81:
e8:c8:21:a9:e4:74:88:2d:d5:0f:cc:aa:4b:0f:be:
c0:a8:0c:e2:f3:43:0d:18:1a:1d:4e:b2:e8:30:1e:
8b:0e:47:20:36:69:62:b8:e1:ba:d8:18:22:a8:ce:
df:83:24:9b:1e:17:cd:14:49:68:0c:2e:d2:79:f1:
e9:d3:6d:da:a2:46:18:cc:a4:6e:10:c4:50:fb:83:
43:5d:8f:bc:28:3d:a2:08:7f:37:1a:34:ed:58:f1:
37:87:ba:6f:a1:32:27:50:05:18:9d:25:90:cc:f2:
0b:97:22:29:ae:3a:95:83:50:4d:d9:e2:d4:ff:eb:
40:39:0e:02:91:5a:f8:de:c5:9b:8c:95:ea:df:5e:
a5:c4:ca:f2:05:5b:8a:8c:cd:8b:8a:4e:eb:83:f8:
87:ef:40:3d:6f:c3:b2:dd:57:f7:5a:f5:50:2e:9b:
d5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:94:52:AC:1A:0E:E0:CB:16:6E:45:08:54:2C:11:D5:9A:4A:7F:54
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/2JRSrBoO4MsWbkUIVCwR1ZpKf1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.249.0/24
Signature Algorithm: sha256WithRSAEncryption
66:5b:b0:f4:f9:b8:92:96:7e:bf:c3:9f:dd:d4:0c:b6:6d:bf:
f7:59:19:55:72:4e:dd:bb:e9:27:95:3c:c3:b9:0d:05:28:9e:
a1:e5:67:52:30:01:7f:53:89:39:cc:1d:6a:bd:b6:d2:be:76:
4c:12:18:5c:93:f6:ac:66:27:bc:95:d6:34:22:8f:35:c6:be:
5d:37:87:fd:af:fd:33:5c:06:d2:e0:c7:e6:cd:48:d1:36:fb:
c7:f4:e4:88:ce:b3:dd:da:c5:47:8b:02:38:43:c6:de:44:b8:
1e:cd:f9:c5:ae:bd:4b:68:03:2d:1d:6b:e6:92:e6:8b:1b:a9:
af:7b:41:6a:96:65:91:22:76:40:0d:d9:64:11:2d:57:b5:03:
bd:d6:3e:0f:8d:79:63:97:8e:ba:83:91:7d:03:0b:4a:f7:95:
49:23:1a:e8:0c:bb:08:e0:78:94:40:ca:00:8f:79:83:63:45:
f5:77:d6:c2:ed:cd:31:b3:d1:a3:39:95:0d:83:45:bf:61:a9:
ba:48:17:25:b6:1a:51:3c:b0:ba:ae:68:e2:69:15:cb:f4:9b:
9f:96:d3:14:fb:4b:42:ce:37:0c:a8:9a:38:84:d5:2f:55:f6:
b9:93:21:47:fc:82:48:fc:57:3f:57:b7:8d:9a:28:d9:e4:fd:
33:31:0b:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqJ9Z8Ht0vhclEXnxfCzMz2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwOTEyMTUxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODk0NTJhYzFhMGVlMGNiMTY2ZTQ1MDg1NDJjMTFkNTlhNGE3ZjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWcr4eBcF6/LVdFIeDdHpMDElgek
jP1nNWeQrr35b/FR6plAYxfaLzUZNQpqOG8qAAh6N5mH+qtEgt6nT6ZqNd6y3n8k
RRI795cJqe0EMn7QDlWrcVHlIYHoyCGp5HSILdUPzKpLD77AqAzi80MNGBodTrLo
MB6LDkcgNmliuOG62BgiqM7fgySbHhfNFEloDC7SefHp023aokYYzKRuEMRQ+4ND
XY+8KD2iCH83GjTtWPE3h7pvoTInUAUYnSWQzPILlyIprjqVg1BN2eLU/+tAOQ4C
kVr43sWbjJXq316lxMryBVuKjM2Lik7rg/iH70A9b8Oy3Vf3WvVQLpvVsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNiUUqwaDuDLFm5FCFQsEdWaSn9UMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvMkpSU3JCb080TXNXYmtVSVZDd1IxWnBLZjFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNH5MA0G
CSqGSIb3DQEBCwUAA4IBAQBmW7D0+biSln6/w5/d1Ay2bb/3WRlVck7du+knlTzD
uQ0FKJ6h5WdSMAF/U4k5zB1qvbbSvnZMEhhck/asZie8ldY0Io81xr5dN4f9r/0z
XAbS4MfmzUjRNvvH9OSIzrPd2sVHiwI4Q8beRLgezfnFrr1LaAMtHWvmkuaLG6mv
e0FqlmWRInZADdlkES1XtQO91j4PjXljl466g5F9AwtK95VJIxroDLsI4HiUQMoA
j3mDY0X1d9bC7c0xs9GjOZUNg0W/Yam6SBclthpRPLC6rmjiaRXL9JufltMU+0tC
zjcMqJo4hNUvVfa5kyFH/IJI/Fc/V7eNmijZ5P0zMQsH
-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:20 2024 by rpki-client on console-fra.rpki-client.org