Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/WTRSscULD7N6NVYOo-f5gJj7EK0.roa
File: WTRSscULD7N6NVYOo-f5gJj7EK0.roa (raw, json)
Hash identifier: /vWCoomQaXAXm9oyKbcRCZuyFrLLYM+Mp0OPv7fyCb8=
Subject key identifier: 59:34:52:B1:C5:0B:0F:B3:7A:35:56:0E:A3:E7:F9:80:98:FB:10:AD
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01888A2AAB19E7677D8C7A167BFE356B1EB5
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/WTRSscULD7N6NVYOo-f5gJj7EK0.roa
Signing time: Mon 05 Jun 2023 06:07:12 +0000
ROA not before: Mon 05 Jun 2023 06:07:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.209.245.0/24 maxlen: 24
88.209.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 06:56:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:2a:ab:19:e7:67:7d:8c:7a:16:7b:fe:35:6b:1e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 5 06:07:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=593452b1c50b0fb37a35560ea3e7f98098fb10ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3d:8e:cb:19:36:06:00:c9:d0:f6:fc:49:28:
a5:56:2d:c0:16:4b:07:8f:5b:e7:8e:ac:b0:a9:32:
01:40:a1:f1:eb:1f:0d:82:12:b2:4a:a1:57:60:dc:
32:85:fa:a4:11:66:a2:79:36:19:42:da:3c:30:9f:
3b:0d:9e:2c:92:60:26:b3:61:91:06:d9:30:a1:09:
cd:9a:9d:74:3e:bb:25:8c:9c:9f:37:02:52:d3:b0:
aa:7d:f7:91:8a:26:18:6b:4d:96:11:71:f8:cf:dc:
be:4d:bd:42:55:51:83:d6:bb:98:ca:fd:38:83:29:
a7:c8:e6:97:bf:8e:e5:c8:a0:26:5d:8a:dc:b3:7c:
4a:c3:65:5c:1c:f4:e5:7e:4a:1d:38:ca:17:e6:e7:
7a:1a:b7:9e:17:83:7a:02:29:fc:77:c2:21:07:98:
76:46:0c:06:f6:67:43:7d:8c:be:1b:e9:b5:05:99:
35:0f:13:b1:3d:dd:10:49:ff:db:ab:0d:00:63:4f:
f8:9c:f9:bc:1a:17:78:72:7a:15:04:4c:9f:a4:9f:
eb:65:74:21:86:1c:c8:89:c8:93:48:5a:b9:8e:4e:
48:28:76:71:0f:d3:8f:b5:7e:d0:3d:64:a5:63:21:
11:f1:af:e9:e1:79:ce:66:4e:e6:1d:03:ca:53:26:
f7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:34:52:B1:C5:0B:0F:B3:7A:35:56:0E:A3:E7:F9:80:98:FB:10:AD
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/WTRSscULD7N6NVYOo-f5gJj7EK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.211.0/24
88.209.245.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a9:1d:fd:d4:cb:39:99:59:f7:7c:68:63:b6:bf:cc:9b:e4:
8f:51:f5:bf:1b:b4:1e:82:d5:e7:db:75:9b:1e:38:23:c0:fe:
0a:ed:73:7a:97:ea:15:3e:6e:fc:c8:6f:13:b0:5b:13:87:2c:
a0:4c:dc:7f:7a:8f:7b:6d:3c:52:8a:66:d2:43:94:52:30:fd:
83:49:7b:aa:a1:d1:12:db:e8:e2:ea:41:73:44:37:c6:17:5b:
92:fc:d2:0a:96:d4:02:9f:12:17:d5:27:4f:e0:3e:84:56:28:
94:9e:f3:c1:a1:f7:47:76:2a:7a:bf:ee:cc:f0:32:3a:02:e7:
10:58:08:21:80:43:3f:bc:6f:99:8d:fb:a0:4f:aa:54:79:ca:
04:86:0b:ac:41:ef:98:0b:3a:74:3d:ca:cc:04:06:48:42:62:
74:34:9f:e8:06:d7:f6:93:0f:8b:bf:cd:5a:9c:71:ab:1d:27:
86:d7:e2:54:94:21:67:29:68:55:c5:55:94:2c:b1:a2:60:54:
ea:fb:a7:db:05:3c:38:1f:de:6d:81:f9:c1:f9:9a:b0:18:d6:
66:f7:35:03:8b:59:76:99:72:93:f2:d2:23:4c:4d:17:3d:90:
db:ea:f0:66:fb:c2:aa:05:ea:37:c5:31:ee:1c:ee:70:69:94:
84:14:83:dc
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYiKKqsZ52d9jHoWe/41ax61MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwNjA1MDYwNzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTM0NTJiMWM1MGIwZmIzN2EzNTU2MGVhM2U3Zjk4MDk4ZmIxMGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8T2Oyxk2BgDJ0Pb8SSilVi3AFksH
j1vnjqywqTIBQKHx6x8NghKySqFXYNwyhfqkEWaieTYZQto8MJ87DZ4skmAms2GR
BtkwoQnNmp10PrsljJyfNwJS07CqffeRiiYYa02WEXH4z9y+Tb1CVVGD1ruYyv04
gymnyOaXv47lyKAmXYrcs3xKw2VcHPTlfkodOMoX5ud6GreeF4N6Ain8d8IhB5h2
RgwG9mdDfYy+G+m1BZk1DxOxPd0QSf/bqw0AY0/4nPm8Ghd4cnoVBEyfpJ/rZXQh
hhzIiciTSFq5jk5IKHZxD9OPtX7QPWSlYyER8a/p4XnOZk7mHQPKUyb3zQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFk0UrHFCw+zejVWDqPn+YCY+xCtMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvV1RSU3NjVUxEN042TlZZT28tZjVnSmo3RUswLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWNHTAwQA
WNH1MA0GCSqGSIb3DQEBCwUAA4IBAQBRqR391Ms5mVn3fGhjtr/Mm+SPUfW/G7Qe
gtXn23WbHjgjwP4K7XN6l+oVPm78yG8TsFsThyygTNx/eo97bTxSimbSQ5RSMP2D
SXuqodES2+ji6kFzRDfGF1uS/NIKltQCnxIX1SdP4D6EViiUnvPBofdHdip6v+7M
8DI6AucQWAghgEM/vG+ZjfugT6pUecoEhgusQe+YCzp0PcrMBAZIQmJ0NJ/oBtf2
kw+Lv81anHGrHSeG1+JUlCFnKWhVxVWULLGiYFTq+6fbBTw4H95tgfnB+ZqwGNZm
9zUDi1l2mXKT8tIjTE0XPZDb6vBm+8KqBeo3xTHuHO5waZSEFIPc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org