Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/T63SuxSN7JD0tDi0q5YTw6og3IY.roa
File: T63SuxSN7JD0tDi0q5YTw6og3IY.roa (raw, json)
Hash identifier: wdNNooUhqSnTedK7A8l7abFfNSX4qGBwmJOPLantRAM=
Subject key identifier: 4F:AD:D2:BB:14:8D:EC:90:F4:B4:38:B4:AB:96:13:C3:AA:20:DC:86
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018CC3B6B92E73CB6AC2F650BB21C24BA7A4
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/T63SuxSN7JD0tDi0q5YTw6og3IY.roa
Signing time: Mon 01 Jan 2024 06:29:41 +0000
ROA not before: Mon 01 Jan 2024 06:29:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42689
IP address blocks: 88.209.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 13:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:b9:2e:73:cb:6a:c2:f6:50:bb:21:c2:4b:a7:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 1 06:29:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fadd2bb148dec90f4b438b4ab9613c3aa20dc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e5:1b:33:a8:0c:9e:2e:c7:65:07:ee:ea:03:
aa:46:64:45:05:15:41:17:2a:e9:c4:38:b6:0c:fa:
6f:2d:6a:f2:25:a9:97:d8:00:a2:7a:53:10:55:a0:
29:ef:ea:d9:9d:4d:d4:1c:61:2d:ae:92:aa:c1:a8:
20:6e:e6:07:8f:36:6d:ea:a9:3c:ad:31:bb:43:ce:
32:71:03:47:a0:2f:a1:b4:dd:d0:17:62:44:e2:10:
05:f0:fe:f5:22:6c:87:3c:0f:39:28:f8:ce:04:ce:
22:39:85:67:57:12:f3:2f:38:7b:c4:ec:0f:6b:37:
43:e6:c9:57:8b:2e:f6:cb:9b:b9:8f:d9:9c:80:b0:
38:8e:01:5f:bb:83:84:db:b1:7d:e1:e3:72:02:b6:
40:e8:0c:d6:2a:bf:74:cc:43:45:b2:5a:9b:1e:aa:
b4:16:47:3a:83:68:ca:d9:a9:b6:70:6f:51:d6:0a:
96:30:2a:ba:df:e0:7f:b1:c2:07:35:77:8c:9d:f0:
7c:bb:d9:0b:7b:02:22:0b:89:2f:74:bc:9d:63:98:
ad:1b:1b:da:5c:17:df:52:53:6d:2a:85:b1:a1:23:
6a:50:77:48:d5:0e:e8:05:e4:95:1b:8e:69:13:32:
72:21:54:e6:b2:e2:e1:a7:36:c3:f0:57:ec:f4:57:
ce:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AD:D2:BB:14:8D:EC:90:F4:B4:38:B4:AB:96:13:C3:AA:20:DC:86
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/T63SuxSN7JD0tDi0q5YTw6og3IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.201.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:16:1e:4c:39:3c:75:c7:e4:3f:4f:0d:36:91:c4:05:a7:bc:
f1:ab:e1:d8:a1:0c:df:82:51:21:e5:fd:d2:c5:ee:6d:b1:0d:
67:64:0f:41:d3:0f:d1:40:b5:6f:4e:12:c3:c1:a4:8c:23:6a:
90:b3:a7:04:15:5e:0d:c6:49:2d:35:e8:ec:29:14:3d:1f:c1:
7d:ab:2a:16:20:77:02:0c:19:df:45:67:52:12:30:90:7f:8a:
1d:1f:52:b3:4b:71:3c:b2:46:65:27:d8:70:11:8b:68:db:85:
d6:81:44:05:33:a7:c1:3e:95:ff:3e:03:00:52:06:f2:88:ad:
ad:78:bd:c1:69:f6:4d:ed:e0:db:a8:25:79:2b:5f:e9:0c:98:
76:dd:e5:f1:42:7e:59:43:df:c8:74:fc:9e:84:33:44:ec:04:
f2:1c:14:31:57:d9:f9:6b:81:33:6d:cc:13:53:ea:7d:89:f2:
a4:b9:4c:b2:e4:db:ee:79:d9:8e:45:a1:17:39:44:85:7a:a4:
30:e3:95:f7:12:23:18:75:0c:52:f9:b6:74:33:7b:a9:d8:22:
a7:04:54:86:c2:aa:5f:26:7b:0a:b9:2f:b8:90:5b:a8:5d:75:
28:64:4b:9a:0b:03:20:9d:7b:77:f5:f9:e2:29:b1:bf:94:a4:
59:89:bc:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 18:05:51 2024 by rpki-client on console-fra.rpki-client.org