Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/2eh6novoguDjYiKXxZfwwvJzGmM.roa
File: 2eh6novoguDjYiKXxZfwwvJzGmM.roa (raw, json)
Hash identifier: yhf6D0TpOxk4xaypRjBNb500zAmQwg/Nc1p37TTu4HA=
Subject key identifier: D9:E8:7A:9E:8B:E8:82:E0:E3:62:22:97:C5:97:F0:C2:F2:73:1A:63
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01866E27095C57378F5F6887E205F5CA9C6D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/2eh6novoguDjYiKXxZfwwvJzGmM.roa
Signing time: Mon 20 Feb 2023 09:28:17 +0000
ROA not before: Mon 20 Feb 2023 09:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 88.209.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:27:09:5c:57:37:8f:5f:68:87:e2:05:f5:ca:9c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 20 09:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9e87a9e8be882e0e3622297c597f0c2f2731a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4f:d7:a5:71:5a:80:05:c7:a0:0b:86:ac:5e:
90:88:47:b5:91:bf:d4:fc:1f:24:0b:09:2a:3d:44:
25:b5:38:ed:d0:a8:3e:1f:e6:4b:90:9b:76:4b:05:
29:87:0c:4e:fa:2c:48:81:dd:3d:93:4c:91:9c:3a:
0c:3d:e4:f1:a8:32:14:94:1a:f9:90:f1:d6:31:88:
3b:4a:09:af:7c:0d:d9:66:86:e1:bd:13:9b:1c:8c:
42:38:d7:d2:8b:5f:26:b5:1a:e1:57:38:18:4e:06:
c0:2e:17:19:98:8f:62:f3:e0:cf:a3:9f:7f:0c:9a:
d7:c7:a8:3e:be:40:15:34:fd:ff:f9:b6:ad:2e:e1:
d6:98:c3:b3:d4:c2:93:c0:44:8f:d3:d4:5c:43:0b:
46:9c:87:dc:fc:1d:eb:13:db:53:2b:46:b1:ac:15:
b9:c7:7c:a9:34:0e:dc:e4:c7:f9:62:56:1a:6e:ea:
03:74:86:fb:bd:63:38:cd:f1:39:53:98:72:49:16:
3a:b1:c0:72:b2:80:d9:43:ab:01:a4:02:ed:8e:61:
af:c3:3d:be:8c:01:18:0c:8d:7f:d5:aa:86:4f:ad:
01:d1:bd:a6:b5:70:f4:aa:2a:88:7c:ab:35:b3:c7:
ca:46:2d:4d:f5:ef:22:74:05:dc:5f:06:d5:2d:b6:
69:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E8:7A:9E:8B:E8:82:E0:E3:62:22:97:C5:97:F0:C2:F2:73:1A:63
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/2eh6novoguDjYiKXxZfwwvJzGmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.248.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:e9:97:65:5d:a6:28:80:72:3b:fe:dc:7f:3b:1f:92:55:7d:
1f:cf:49:24:3d:cc:0d:9c:30:c1:fb:f4:85:d4:6b:a3:81:29:
f6:23:35:70:af:70:f8:a6:03:78:fb:49:65:8b:9b:93:bc:fc:
2f:9f:09:e1:a3:f2:2b:2d:eb:78:8d:14:34:7f:c2:7e:9a:11:
40:1e:7a:99:55:29:ed:75:c5:e4:6e:7a:17:45:12:d6:b6:be:
e7:4d:d0:0e:15:9c:d5:d5:89:e5:0f:ed:80:6e:e1:0d:8e:a8:
b0:6e:14:c4:8f:8f:28:bc:ac:bf:09:d5:4e:80:3c:56:d3:f2:
82:ef:33:16:a2:b2:be:93:75:8e:29:3f:4d:fc:f1:8c:2a:a1:
6b:65:f5:21:81:7c:48:cb:bf:86:63:72:15:7a:69:2e:d1:54:
f1:44:0a:fe:c0:5e:3f:d7:ab:0e:39:bd:6f:5c:7e:46:14:c6:
c0:54:77:a3:1e:72:75:d1:59:f6:d8:37:13:2e:e7:10:74:e2:
2c:ec:6a:e8:55:8b:50:74:85:bb:d4:7b:4a:60:be:4e:70:ed:
7f:1c:b7:f7:e6:5f:0a:f9:25:85:ab:b5:63:bb:b4:90:9c:f7:
34:c7:ba:4b:de:92:fc:ca:a5:23:19:be:b2:0f:cf:c5:f2:d3:
47:05:37:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZuJwlcVzePX2iH4gX1ypxtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMjIwMDkyODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOWU4N2E5ZThiZTg4MmUwZTM2MjIyOTdjNTk3ZjBjMmYyNzMxYTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgk/XpXFagAXHoAuGrF6QiEe1kb/U
/B8kCwkqPUQltTjt0Kg+H+ZLkJt2SwUphwxO+ixIgd09k0yRnDoMPeTxqDIUlBr5
kPHWMYg7SgmvfA3ZZobhvRObHIxCONfSi18mtRrhVzgYTgbALhcZmI9i8+DPo59/
DJrXx6g+vkAVNP3/+batLuHWmMOz1MKTwESP09RcQwtGnIfc/B3rE9tTK0axrBW5
x3ypNA7c5Mf5YlYabuoDdIb7vWM4zfE5U5hySRY6scBysoDZQ6sBpALtjmGvwz2+
jAEYDI1/1aqGT60B0b2mtXD0qiqIfKs1s8fKRi1N9e8idAXcXwbVLbZpawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNnoep6L6ILg42Iil8WX8MLycxpjMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvMmVoNm5vdm9ndURqWWlLWHhaZnd3dkp6R21NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNH4MA0G
CSqGSIb3DQEBCwUAA4IBAQC96ZdlXaYogHI7/tx/Ox+SVX0fz0kkPcwNnDDB+/SF
1GujgSn2IzVwr3D4pgN4+0lli5uTvPwvnwnho/IrLet4jRQ0f8J+mhFAHnqZVSnt
dcXkbnoXRRLWtr7nTdAOFZzV1YnlD+2AbuENjqiwbhTEj48ovKy/CdVOgDxW0/KC
7zMWorK+k3WOKT9N/PGMKqFrZfUhgXxIy7+GY3IVemku0VTxRAr+wF4/16sOOb1v
XH5GFMbAVHejHnJ10Vn22DcTLucQdOIs7GroVYtQdIW71HtKYL5OcO1/HLf35l8K
+SWFq7Vju7SQnPc0x7pL3pL8yqUjGb6yD8/F8tNHBTdc
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:50 2023 by rpki-client on console-ams.rpki-client.org