Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/_LJaSiMdPvEXDgy0EsYzlLApXmo.roa
File: _LJaSiMdPvEXDgy0EsYzlLApXmo.roa (raw, json)
Hash identifier: VcNGLnZitvxc0TootPjFs3M2L6DR2W0Lc9uYfuhJ5Pk=
Subject key identifier: FC:B2:5A:4A:23:1D:3E:F1:17:0E:0C:B4:12:C6:33:94:B0:29:5E:6A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0188773661043C6F692162D1314DA4E29D17
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/_LJaSiMdPvEXDgy0EsYzlLApXmo.roa
Signing time: Thu 01 Jun 2023 13:47:12 +0000
ROA not before: Thu 01 Jun 2023 13:47:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49468
IP address blocks: 88.209.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Sep 2023 06:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:77:36:61:04:3c:6f:69:21:62:d1:31:4d:a4:e2:9d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jun 1 13:47:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcb25a4a231d3ef1170e0cb412c63394b0295e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:4a:d3:d4:16:ce:93:1d:fb:9a:41:18:42:
bf:1a:b0:dd:4e:4c:48:ee:90:b5:da:78:ef:a1:86:
4c:73:88:0e:12:30:98:ae:21:ff:31:74:81:d5:12:
66:db:88:8e:0a:2c:77:72:e4:03:f3:56:cb:4f:b2:
26:0e:27:58:08:39:b9:b1:d3:6b:97:b8:ff:8b:6a:
d5:e6:12:32:74:42:88:e0:b9:a3:c9:5a:e6:77:07:
57:d6:0c:07:40:ae:42:e1:aa:9c:83:03:ec:b2:08:
05:43:d7:4b:59:e3:5b:df:07:a1:21:74:ab:99:7e:
b7:77:b7:53:9e:a3:1f:00:0a:06:87:2b:8e:87:78:
0d:65:73:5d:f6:01:d7:20:dc:b6:b0:62:10:b3:3f:
8d:10:e3:12:67:1b:25:60:42:e7:01:d6:30:90:9f:
dd:85:1f:47:76:e4:f4:c1:5d:4f:48:cd:79:39:a3:
75:9a:f7:8c:8e:8a:e6:1c:cd:af:65:4f:6f:3b:5c:
79:0f:63:6f:4d:8d:45:df:7a:e4:84:c4:5f:a4:9a:
30:47:02:30:a9:46:4c:2a:a4:dc:0d:0c:02:fe:88:
51:69:57:05:6b:9e:a0:4a:d1:f2:f9:23:e7:84:65:
e4:92:d8:64:f5:ef:45:40:a1:11:31:b5:fe:9a:e1:
a0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B2:5A:4A:23:1D:3E:F1:17:0E:0C:B4:12:C6:33:94:B0:29:5E:6A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/_LJaSiMdPvEXDgy0EsYzlLApXmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.220.0/24
Signature Algorithm: sha256WithRSAEncryption
82:3b:54:52:fb:e4:4a:63:63:64:8e:db:cc:71:b7:38:ca:dc:
5d:3b:e2:f7:60:58:51:f9:42:be:dd:7f:bc:16:70:b0:58:58:
23:87:3f:a1:c0:5c:de:80:21:96:ef:74:4f:c3:01:f7:14:09:
8f:1a:d7:9a:90:30:c9:07:63:ea:fc:a4:6e:53:f4:d8:41:2e:
f9:35:0b:87:03:90:a6:b3:5f:97:61:b3:5c:c0:9e:76:15:b5:
c5:e6:be:46:ae:d2:8e:ec:91:c8:02:f7:b8:2d:74:ae:60:15:
f5:6a:d9:37:79:9d:f5:6a:49:d9:a0:d5:22:f4:08:11:e7:3b:
f6:3d:af:1d:64:5f:73:8c:34:b1:61:64:9e:e5:8c:cb:d9:05:
75:9c:f4:e3:cd:b8:97:71:67:18:9d:5a:54:6f:a8:b8:1c:f3:
39:a5:d7:04:97:07:83:bb:08:79:8f:95:f1:24:84:e7:59:aa:
38:37:30:fa:a0:36:a3:46:e6:4a:b5:4f:4d:52:3a:20:88:b2:
bf:80:03:27:f8:09:51:8e:06:85:e8:7b:93:e7:33:94:9e:4e:
97:0f:5f:7c:7b:63:04:6c:5a:fe:71:ee:b6:b5:c4:07:5b:d6:
0d:21:dc:f7:a3:67:e5:3c:8c:e5:07:38:71:51:de:8e:c3:e9:
e7:23:33:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org