Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/VY_fy6cYGttVYAIl3tdCvbWYpHA.roa
File: VY_fy6cYGttVYAIl3tdCvbWYpHA.roa (raw, json)
Hash identifier: 3aDllexvK8qBPEDKC8SQYquGjncxUZm995c0PgX6YHM=
Subject key identifier: 55:8F:DF:CB:A7:18:1A:DB:55:60:02:25:DE:D7:42:BD:B5:98:A4:70
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188AB27806116BFEDC0C6B4B7D4EC0B40EF
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/VY_fy6cYGttVYAIl3tdCvbWYpHA.roa
Signing time: Sun 11 Jun 2023 15:51:12 +0000
ROA not before: Sun 11 Jun 2023 15:51:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 88.209.203.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ab:27:80:61:16:bf:ed:c0:c6:b4:b7:d4:ec:0b:40:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 11 15:51:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=558fdfcba7181adb55600225ded742bdb598a470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:8f:3f:a5:89:40:2b:b4:19:5c:de:da:fc:
47:0c:42:e0:39:75:6e:4d:d6:2f:33:7b:d6:71:55:
73:96:79:80:b1:de:e5:1e:d0:48:48:0a:55:72:fe:
db:90:2b:a7:6b:58:56:3f:3a:9c:da:70:fe:7a:37:
f9:c8:41:f7:d4:1b:2a:c5:d3:51:65:b6:93:a8:72:
c0:5d:3e:bb:7d:a9:58:76:51:1f:31:7f:2d:ba:3d:
12:cd:15:2b:64:ca:7f:92:52:bc:e7:57:03:e5:67:
03:52:68:7a:83:97:22:64:5c:c2:93:79:89:af:d9:
65:49:a7:51:08:26:92:b0:cc:75:1a:42:94:1c:f4:
0d:bb:ad:8c:34:f2:1a:78:81:46:73:46:f5:ee:b7:
cb:30:39:1a:bf:c1:23:99:31:35:ad:b3:c7:b3:87:
0a:fb:0a:6e:9a:b8:80:87:2e:d1:92:4d:25:7d:e6:
65:7a:7e:97:2e:c3:36:eb:a2:8a:4b:ae:b6:46:64:
5f:6c:db:a7:d0:fd:da:4a:e3:6c:0e:c0:23:5c:20:
7d:1c:e8:5c:82:f2:98:df:e1:56:ea:35:41:02:44:
e9:f6:8f:f0:f6:ef:7c:52:09:ae:04:66:0b:4f:16:
8c:55:13:35:b7:51:7c:70:d4:19:db:50:0b:51:0c:
2f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8F:DF:CB:A7:18:1A:DB:55:60:02:25:DE:D7:42:BD:B5:98:A4:70
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/VY_fy6cYGttVYAIl3tdCvbWYpHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.203.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:b6:6b:b2:01:35:e4:c9:6c:7a:99:15:dc:39:4b:68:80:33:
b9:13:7b:80:fb:29:c3:0b:ea:a4:f7:ff:2a:17:06:b4:38:53:
ec:12:f1:21:a0:7e:73:71:ef:49:5c:6b:1f:39:a7:b1:98:4c:
0e:bd:e3:96:ac:fc:a3:8d:a2:93:06:1f:38:ae:c3:22:a5:db:
4d:c8:be:1b:0e:a4:1a:2d:03:f4:6e:de:ed:48:ed:60:ce:ef:
b7:b4:38:2a:84:06:6d:bf:c9:e0:bf:de:c9:aa:a4:72:ce:fa:
06:29:9e:33:1c:a7:9c:36:8d:3c:c5:ea:48:cc:69:d7:8c:7a:
65:ef:ea:6b:48:3c:49:3c:d0:7a:52:7b:10:a9:32:08:a9:d1:
41:c1:b4:70:e9:52:fb:82:43:e0:2b:54:39:e5:27:bc:52:bc:
66:38:e5:87:23:06:5a:2e:17:9a:d5:f8:3f:ca:35:53:f6:51:
5f:cf:b3:b3:f4:a9:cb:54:e6:c2:ad:5d:40:c7:93:46:ba:dd:
51:3a:de:e1:00:04:3a:ba:d6:4b:1e:89:37:85:9d:db:dc:cb:
a0:17:a4:49:b6:19:fb:c8:06:d7:1d:df:9f:f9:03:50:8d:77:
21:b2:ce:02:e9:d4:ce:59:a6:34:a7:1f:c9:a0:b7:a9:bf:d9:
eb:ca:af:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:01 2023 by rpki-client on console-fra.rpki-client.org