Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/YG9mZSjZX8ATGcgMri9TITv0Eis.roa
File: YG9mZSjZX8ATGcgMri9TITv0Eis.roa (raw, json)
Hash identifier: jw5agXmXVPA5WRVNcYqqyRdurV9MhZHz70o2FslEU3I=
Subject key identifier: 60:6F:66:65:28:D9:5F:C0:13:19:C8:0C:AE:2F:53:21:3B:F4:12:2B
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188BDE0257801C1E02D4BE423E1EEC39135
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/YG9mZSjZX8ATGcgMri9TITv0Eis.roa
Signing time: Thu 15 Jun 2023 07:06:03 +0000
ROA not before: Thu 15 Jun 2023 07:06:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 88.209.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Sep 2023 07:17:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bd:e0:25:78:01:c1:e0:2d:4b:e4:23:e1:ee:c3:91:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 15 07:06:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=606f666528d95fc01319c80cae2f53213bf4122b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:bd:24:e7:ce:fc:0b:07:0d:ae:f1:56:70:b6:
91:da:04:83:c1:6e:35:32:b3:6a:1a:70:f1:1f:a1:
c8:37:cf:d4:7e:2c:c3:af:6e:44:60:a9:d9:1c:94:
1a:dc:db:2d:b8:02:5a:3f:f2:fb:df:9e:f0:89:4a:
12:1a:fc:5f:0a:f0:88:ad:7f:b4:88:08:91:55:81:
57:ba:d8:11:1b:88:41:2f:0c:c8:3e:3a:2d:57:69:
93:b6:76:65:73:83:7a:d9:a2:fb:30:8d:17:33:86:
85:a5:90:49:08:99:3b:8d:db:6b:0a:6c:fa:49:91:
84:52:7e:f5:8d:2b:86:fe:8f:77:6f:56:f6:c9:b1:
be:d5:fd:ed:b5:20:1d:01:ee:29:b5:1e:f4:ad:aa:
0f:dc:3e:7f:ab:57:2d:16:ae:2d:f7:0b:e9:fe:91:
f7:5e:72:07:0b:57:88:88:2b:6b:c9:17:d4:40:1b:
86:ae:5f:07:8a:cf:68:4e:cc:be:c8:83:40:c1:5b:
e0:df:5c:8d:4c:be:66:44:19:d7:a3:b7:d8:c1:0f:
62:1c:6f:ad:5c:62:15:7a:aa:ac:15:6d:4d:4d:97:
f7:92:9a:72:4e:ac:9e:5f:fb:c6:03:b5:cf:fd:ce:
1f:ac:8e:f6:93:24:b8:e3:ed:12:f0:05:a7:13:19:
45:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:6F:66:65:28:D9:5F:C0:13:19:C8:0C:AE:2F:53:21:3B:F4:12:2B
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/YG9mZSjZX8ATGcgMri9TITv0Eis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.244.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:0f:08:2f:91:36:1e:dc:27:f1:06:02:9e:4a:63:ec:d8:4a:
e2:6d:d1:11:55:20:13:f3:33:a9:88:09:73:c4:e3:14:2a:0a:
a6:28:3a:af:08:20:df:8b:0c:cf:7a:22:65:cb:04:d1:d7:a9:
bc:42:a1:29:ac:64:19:2b:c7:2b:93:1e:ab:52:aa:31:81:b7:
cc:75:92:cf:15:13:56:80:9a:85:e7:f8:3f:7e:1e:bc:2c:d9:
db:a6:d5:25:9f:fb:87:9c:e8:78:b1:96:54:65:79:e9:62:ef:
8f:3b:98:0e:94:e8:12:3b:0b:fe:05:05:a2:32:69:f7:06:a4:
72:16:01:e4:98:ad:ca:68:8a:eb:2b:f9:d5:a1:ed:41:25:de:
f1:50:13:92:d3:30:33:c9:6c:be:ec:3d:4a:48:db:05:da:da:
08:4a:b6:a6:69:f8:1e:07:7a:11:9d:ea:78:43:2a:58:8f:5b:
4d:2c:bd:b3:51:0f:1f:c9:5f:5c:9c:7f:c9:72:ab:55:54:e1:
e3:47:d3:97:4d:14:86:f6:6f:b9:5f:95:70:7d:a6:66:cd:cc:
5c:4c:c6:a9:2a:14:88:aa:b0:99:0b:6d:77:0b:3d:b2:97:78:
9e:47:26:44:0c:87:30:2b:ca:72:37:0b:b1:2f:18:45:9f:5a:
91:a9:bf:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org