Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/PjiRQHYxwH-wYw0RLKMkv1Ibhok.roa
File: PjiRQHYxwH-wYw0RLKMkv1Ibhok.roa (raw, json)
Hash identifier: UMebD062kLMLNpcvU6m5ElSdWzkVgWdBlDoMx9wKBLg=
Subject key identifier: 3E:38:91:40:76:31:C0:7F:B0:63:0D:11:2C:A3:24:BF:52:1B:86:89
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01886728E0DD1C969A3DFB7B9CE6869C8C13
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/PjiRQHYxwH-wYw0RLKMkv1Ibhok.roa
Signing time: Mon 29 May 2023 10:58:32 +0000
ROA not before: Mon 29 May 2023 10:58:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147287
IP address blocks: 88.209.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Jun 2023 06:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:28:e0:dd:1c:96:9a:3d:fb:7b:9c:e6:86:9c:8c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: May 29 10:58:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e3891407631c07fb0630d112ca324bf521b8689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7d:88:18:7b:fc:c1:3f:04:db:8f:ab:09:43:
0c:67:ca:38:71:a6:bf:b3:a7:16:70:e3:a4:20:0c:
5a:39:63:28:eb:ce:c9:85:d6:9e:e3:cf:9f:19:24:
ed:40:73:1e:7a:a5:cb:59:c8:c8:0d:cc:72:90:0c:
5d:ea:b1:d5:c1:6f:8e:b7:23:33:29:16:5e:a8:12:
a8:f7:76:a8:ee:b6:5f:96:72:58:3d:1f:09:c7:70:
45:7d:9c:4b:b2:f4:6d:b0:4a:75:d6:01:be:12:bb:
64:82:06:75:f2:57:ab:d0:36:8c:94:91:06:40:91:
c0:46:e1:2d:01:c0:37:4d:7a:50:2f:58:08:64:55:
cb:59:3a:4d:b3:25:20:c1:d9:5e:d5:da:6d:fe:a5:
24:25:6e:45:a3:08:fe:20:ef:7a:2c:1b:70:93:f0:
68:83:04:9f:15:d9:39:9a:52:5f:ec:82:d6:9a:69:
99:1d:3c:03:37:3b:b4:50:33:e2:e3:62:ad:4b:8b:
1d:b8:20:dd:ee:b2:cc:18:5d:7a:8b:1c:b2:ac:53:
46:39:18:ee:c2:19:8f:fb:32:08:35:f4:ec:82:12:
48:bd:fb:4b:4a:ce:2a:19:b1:38:50:c4:d6:a9:25:
58:9b:90:7a:b4:c3:7e:1d:e4:37:ce:bf:98:33:b4:
7a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:38:91:40:76:31:C0:7F:B0:63:0D:11:2C:A3:24:BF:52:1B:86:89
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/PjiRQHYxwH-wYw0RLKMkv1Ibhok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.249.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:d1:0e:ab:ac:06:ee:2a:15:9a:d9:7f:57:6e:1a:4c:17:c2:
9f:cb:93:ee:e9:96:8a:c8:12:68:46:b8:3e:1f:1d:f3:be:7c:
59:da:80:bd:9a:1d:13:e5:e4:d2:17:34:59:7d:73:03:86:cc:
68:15:4b:92:bd:72:9b:c8:b6:6c:18:2e:f0:bd:db:ec:08:0a:
d8:29:98:a1:95:4b:da:74:98:7f:fb:57:1a:20:93:dd:5f:7a:
4e:3d:0d:68:7b:6e:33:ba:a0:96:01:ff:67:4f:4b:a1:77:d9:
49:cb:08:44:cc:eb:e8:2b:c2:55:d9:12:fa:8b:d1:57:22:e3:
3f:10:d1:59:bb:b4:14:fc:0c:45:24:9a:0e:8c:2d:e5:f4:da:
a1:77:73:6c:62:5e:6d:73:83:f3:a7:37:07:98:09:85:1d:a7:
fb:e6:6b:a8:4e:00:bd:3e:85:e6:94:be:25:04:06:f2:47:20:
91:c5:39:9e:87:7e:43:ef:4d:fa:a2:89:7a:4a:21:33:e2:c3:
a7:7e:de:59:44:fd:24:a5:2d:e3:cf:b4:ac:56:f9:b1:b1:cf:
b8:42:bb:60:ff:c1:a8:36:fd:4a:b5:55:ba:d1:df:e1:0d:5c:
ae:df:99:65:d8:73:b8:34:22:77:b8:59:c2:41:ec:62:d5:56:
12:85:da:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:55 2024 by rpki-client on console-ams.rpki-client.org