Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3zluIMgpW1eGdB3RIW1Ln64MByg.roa
File: 3zluIMgpW1eGdB3RIW1Ln64MByg.roa (raw, json)
Hash identifier: OMfz4husENP8R1tG4cadSXyk30a9nWFwmkqu92uDob4=
Subject key identifier: DF:39:6E:20:C8:29:5B:57:86:74:1D:D1:21:6D:4B:9F:AE:0C:07:28
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01863B5A26A60BE6C12815EE38E087260BA8
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3zluIMgpW1eGdB3RIW1Ln64MByg.roa
Signing time: Fri 10 Feb 2023 12:43:29 +0000
ROA not before: Fri 10 Feb 2023 12:43:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.209.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 07:41:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3b:5a:26:a6:0b:e6:c1:28:15:ee:38:e0:87:26:0b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 10 12:43:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df396e20c8295b5786741dd1216d4b9fae0c0728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:08:df:36:c2:f1:c1:c3:5b:da:40:3b:fa:3e:
94:07:ba:19:53:2a:1f:97:ad:4a:ab:5f:ca:71:6e:
32:72:03:5d:ea:21:d9:7c:85:4d:23:15:87:60:dd:
8a:85:96:2a:78:e9:eb:c9:4d:47:3b:78:7e:c1:ff:
99:c7:4c:1a:75:05:4a:0e:7b:43:5d:72:68:ce:d6:
b7:7c:ca:79:cf:ae:48:03:4f:94:8f:ff:9d:13:09:
04:43:f0:94:97:57:a1:7a:35:ad:9e:4a:0f:cb:d0:
0f:77:e5:6e:3c:07:22:ad:6f:18:9b:9f:49:6d:9d:
27:e9:d5:e6:a8:66:67:f8:d3:a6:67:1f:5d:ea:3b:
4c:5d:87:2a:15:4e:34:86:dd:a4:54:21:9a:c0:82:
91:ef:9d:84:a8:0f:7c:e2:69:be:a1:89:c2:98:75:
6c:77:f1:0d:e7:25:3f:84:df:7d:1a:ec:a3:75:c1:
44:24:6b:a9:71:6a:41:22:13:b7:33:e4:9a:d2:58:
09:bd:13:89:61:61:9a:42:2b:02:7a:80:d8:73:d0:
54:8f:2c:da:bd:d7:d5:4a:84:17:39:ac:ef:a0:29:
7d:93:c7:f0:70:2a:12:46:ef:44:d5:22:92:a0:af:
dc:bb:fe:f2:4c:ce:ca:ff:fb:e4:c6:78:c2:de:5f:
1f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:39:6E:20:C8:29:5B:57:86:74:1D:D1:21:6D:4B:9F:AE:0C:07:28
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/3zluIMgpW1eGdB3RIW1Ln64MByg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.245.0/24
Signature Algorithm: sha256WithRSAEncryption
13:5b:6b:66:59:a3:38:37:3e:ea:50:93:64:6f:c9:ea:4a:95:
5c:5c:55:e8:54:d4:02:d6:5a:ee:8d:16:0d:d8:b0:00:a4:03:
74:f7:38:9a:80:14:7e:71:e3:d7:7d:a3:3a:bd:11:b8:99:da:
41:91:3c:89:74:c9:c7:07:d3:24:46:44:9e:c8:b1:90:f7:b2:
4e:67:60:6a:03:17:c5:3c:8b:8e:5f:e2:9c:e4:5b:55:cb:d0:
7d:f3:51:1a:96:c2:e8:ec:98:ef:7b:1c:e1:e6:f6:29:78:3f:
12:ee:7c:ba:26:29:f6:e8:c4:f7:e3:69:92:d4:07:2a:d3:7b:
8b:1f:b3:f6:cc:92:06:fc:19:43:08:7e:c0:5c:0c:bd:23:0a:
9f:e4:1f:9c:8f:e1:2f:8c:62:81:45:8f:b7:1f:24:bc:63:4f:
a3:a0:41:c8:68:a8:66:8a:dc:65:4a:01:b0:47:31:f4:5e:e3:
57:20:3c:8f:4d:fe:b1:1f:b5:c8:53:83:98:0f:1d:4c:cc:ec:
7d:58:f1:e6:fa:1c:4c:06:64:b3:17:e5:a3:12:a6:33:d3:80:
e3:b7:41:6a:ce:44:95:8e:d5:6f:89:4c:3d:9e:cd:9e:bd:13:
70:a6:89:a6:e3:6f:0c:8f:5c:e0:c1:f1:d8:41:2a:af:0d:08:
76:35:c0:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:54 2024 by rpki-client on console-ams.rpki-client.org