Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aEPwWEeR9On3i2rJLF-Nxiuq_Og.roa
File: aEPwWEeR9On3i2rJLF-Nxiuq_Og.roa (raw, json)
Hash identifier: CM19yhBbRPmnEySgo96dFVhnT2XFbMBi78KXD+WsNco=
Subject key identifier: 68:43:F0:58:47:91:F4:E9:F7:8B:6A:C9:2C:5F:8D:C6:2B:AA:FC:E8
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7B041A5775AD7B62BBB479647B11B
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aEPwWEeR9On3i2rJLF-Nxiuq_Og.roa
Signing time: Mon 02 Jan 2023 09:54:47 +0000
ROA not before: Mon 02 Jan 2023 09:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 88.209.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 07:09:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:b0:41:a5:77:5a:d7:b6:2b:bb:47:96:47:b1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6843f0584791f4e9f78b6ac92c5f8dc62baafce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0f:a4:8c:2e:4e:18:22:3b:73:e1:ae:ab:e9:
fe:4b:b9:d9:96:eb:ed:fa:09:53:47:32:65:d2:a1:
41:a5:83:da:92:81:54:87:09:f1:e6:cc:0b:8a:82:
88:c0:55:8e:01:be:72:64:7f:3e:39:63:e5:0d:4c:
e1:a1:c2:57:a5:d0:eb:e4:ab:47:4f:db:9b:91:31:
cb:4a:55:74:26:2c:40:eb:2f:03:18:cd:a0:02:34:
97:0f:99:e8:76:ee:e8:fe:64:2e:35:2c:8e:1a:11:
14:77:ef:a5:a1:4e:af:ec:f3:7d:76:26:46:15:04:
30:47:04:d6:87:3e:ab:56:0d:93:a9:ba:4c:18:96:
71:e6:c6:8d:14:4b:d5:32:1d:22:91:32:12:25:1d:
8a:6e:31:40:b3:52:1b:af:83:13:fe:c1:62:bb:ba:
fb:ff:55:c0:57:80:ea:fe:f9:27:cb:7f:73:3e:9a:
22:60:3a:af:c1:e2:c7:f2:9e:5f:cc:6c:ed:c3:95:
69:0e:a2:d7:58:ca:db:49:4a:b2:e4:5f:41:cd:dd:
98:af:81:fb:3d:64:48:51:6b:fd:74:2a:20:76:1f:
c2:7a:c1:de:4c:3a:df:55:90:9a:80:b7:5d:83:d3:
91:64:f5:ea:2a:91:cb:db:e6:99:35:cb:1d:f9:12:
82:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:43:F0:58:47:91:F4:E9:F7:8B:6A:C9:2C:5F:8D:C6:2B:AA:FC:E8
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aEPwWEeR9On3i2rJLF-Nxiuq_Og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.248.0/24
Signature Algorithm: sha256WithRSAEncryption
28:85:ca:80:56:8d:58:e1:ae:2b:dc:5e:dd:45:42:22:10:51:
d1:3b:89:e6:68:b6:b4:30:7d:35:20:2f:20:2d:0a:b3:d9:61:
ee:5b:dd:de:39:bb:dc:7e:ae:9e:cb:46:d6:c8:37:6e:a9:a6:
f7:82:51:e0:18:24:dd:98:ca:a1:32:44:a6:98:de:b5:61:9c:
02:71:f9:db:36:12:f6:59:80:3f:da:31:e9:18:f7:9c:e5:8e:
3d:01:3a:31:ed:e0:e6:2d:d6:a8:9c:43:8b:97:b3:f9:b6:88:
97:6e:db:47:80:e6:36:0e:98:d3:c5:17:3b:2f:a5:fd:00:e4:
05:35:75:84:f5:8d:19:d0:31:0e:48:ed:d3:31:5e:fc:97:48:
fd:06:a3:d3:15:57:c1:5a:ab:cb:fe:2e:3d:9f:3c:26:f9:2a:
a8:e1:b4:e8:c7:6a:4c:bc:cb:1c:60:87:ed:06:88:64:42:76:
21:65:1a:fd:b6:24:a8:52:74:a5:6e:09:1e:c5:ca:97:39:81:
1a:e8:36:58:dc:58:bb:d3:d2:fa:06:64:fc:4c:eb:27:b0:13:
d9:02:cb:c5:4f:fd:93:5a:17:0f:60:f4:9a:8a:d1:e3:4b:a7:
5c:87:ae:8a:5d:34:20:05:63:ea:17:e7:10:a6:33:f4:c6:74:
ad:ae:c0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org