Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aSv_uKbGRK5T0OhWUS64Ujyotnw.roa
File: aSv_uKbGRK5T0OhWUS64Ujyotnw.roa (raw, json)
Hash identifier: 1RJLAndJ4ByxB/dpzKx0uO/5TOY5P22Y6DUZfLBsAI0=
Subject key identifier: 69:2B:FF:B8:A6:C6:44:AE:53:D0:E8:56:51:2E:B8:52:3C:A8:B6:7C
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018954C2FC1AA0309DD62A41EBA62989F05B
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aSv_uKbGRK5T0OhWUS64Ujyotnw.roa
Signing time: Fri 14 Jul 2023 14:16:51 +0000
ROA not before: Fri 14 Jul 2023 14:16:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 88.209.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:c2:fc:1a:a0:30:9d:d6:2a:41:eb:a6:29:89:f0:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 14 14:16:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=692bffb8a6c644ae53d0e856512eb8523ca8b67c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:26:c1:ec:70:1e:cc:a7:4b:90:b9:27:18:57:
d0:21:ae:38:37:cf:f0:c3:98:48:ee:83:31:9d:e4:
aa:8a:eb:e8:cc:23:f6:c8:18:09:6f:95:91:0a:cd:
29:c0:ea:61:c1:4a:52:5c:43:14:cf:64:67:53:90:
25:ee:aa:bc:2d:e2:6a:9b:56:8f:a3:d4:d8:bf:5b:
c6:01:97:0c:01:b0:90:2f:36:d0:0b:19:18:97:b3:
ba:e7:0e:2e:8a:0a:e4:ca:a2:ce:2b:4f:5b:c1:8a:
48:0a:e6:5c:45:e7:a1:47:c2:10:e7:af:3f:43:55:
40:d1:8f:db:e5:88:43:bd:7d:62:35:10:27:9f:a4:
4e:47:9e:87:31:c3:8b:18:ee:2e:df:3a:be:de:6c:
5d:4d:74:a1:a1:79:c9:d4:90:54:69:ac:fa:8f:f1:
39:bd:c4:3d:96:28:8e:e1:52:83:4e:fc:b7:14:9c:
4d:40:8e:7a:be:61:61:28:16:97:48:ab:ad:8e:13:
66:c5:58:be:0d:ea:3f:ed:ec:f4:5f:bd:19:fb:29:
c4:ef:3c:33:38:6b:e1:b0:5e:72:4f:42:11:fb:a2:
09:97:a6:eb:cb:f8:30:e8:38:3b:f4:48:b0:a2:57:
a1:67:3b:18:2b:4e:ef:2a:43:c5:54:34:67:dc:ea:
aa:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2B:FF:B8:A6:C6:44:AE:53:D0:E8:56:51:2E:B8:52:3C:A8:B6:7C
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aSv_uKbGRK5T0OhWUS64Ujyotnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.217.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:2d:fe:eb:fc:67:04:70:66:fd:dc:c4:a2:64:2a:53:92:ab:
65:1e:5b:e0:66:54:34:b2:7b:f4:2e:89:05:fc:1b:f9:25:72:
d2:53:b6:58:46:34:4d:4a:69:2f:b8:1e:33:6d:06:f8:35:04:
76:c5:a1:6a:21:9b:43:9f:c3:ed:28:95:14:a9:9d:1b:32:a6:
2b:0e:47:58:16:cd:0f:0d:f6:3f:ae:4d:35:3e:67:26:45:7e:
ef:ad:ff:07:53:1c:68:de:5e:a1:a1:6b:ee:68:b5:b8:48:fa:
3e:cc:1c:79:35:a3:ff:e2:a7:3d:b6:63:21:fb:57:d3:09:21:
6e:3a:ff:ca:3a:5c:83:24:d1:8f:9c:9e:61:e1:c4:35:eb:4c:
19:83:23:07:ab:eb:ad:d2:8e:7d:e8:7c:2f:36:64:4b:d8:72:
f1:05:fd:02:13:4b:a2:c2:45:0d:97:cd:62:ca:29:01:f8:dd:
23:06:c8:66:5f:cc:ca:28:c1:3b:29:aa:be:28:04:f9:5c:41:
06:c9:60:fd:92:d3:5e:e5:be:d7:17:8c:ba:22:6a:57:7d:94:
75:9a:47:7f:11:80:40:aa:0b:ae:f0:56:8e:f1:08:db:96:e1:
50:09:bf:41:89:63:3c:4d:5b:7c:80:c2:31:5b:ff:d4:ab:cb:
51:e9:72:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org