Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/dCGb-rzu3Y6l464b3zkMCGlBtkM.roa
File: dCGb-rzu3Y6l464b3zkMCGlBtkM.roa (raw, json)
Hash identifier: Pvhb0bv4+B12b1YxgthZY3u4bWdpnTnRa417oxvNzhc=
Subject key identifier: 74:21:9B:FA:BC:EE:DD:8E:A5:E3:AE:1B:DF:39:0C:08:69:41:B6:43
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7A381E917E374BFA77A2922F34804
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/dCGb-rzu3Y6l464b3zkMCGlBtkM.roa
Signing time: Mon 02 Jan 2023 09:54:43 +0000
ROA not before: Mon 02 Jan 2023 09:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46450
IP address blocks: 88.209.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 06:45:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:a3:81:e9:17:e3:74:bf:a7:7a:29:22:f3:48:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74219bfabceedd8ea5e3ae1bdf390c086941b643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5c:78:84:02:5f:2e:69:ff:9c:92:8f:6f:b7:
81:5f:92:23:e4:18:4e:17:32:74:17:86:f8:5c:07:
8c:04:63:e9:81:d7:f5:ce:d4:7b:a0:af:0e:a9:aa:
77:44:b0:8f:ce:a5:b7:44:43:30:eb:60:6d:ea:a8:
35:5f:9d:6b:49:81:cb:c1:bc:3b:84:f5:65:34:ef:
a1:6b:6a:75:e4:4b:58:dc:a3:e9:0e:95:09:6c:5f:
72:10:60:9a:c1:71:4d:fa:85:a0:3b:f3:a1:21:98:
41:89:49:50:5c:81:7c:5e:9a:79:4a:98:7d:06:4b:
42:6c:36:4c:81:e1:f0:3e:38:11:92:31:bf:b3:6e:
71:1a:0f:02:c2:74:47:44:f5:be:9d:4a:39:30:ad:
dc:8a:0e:20:4a:20:92:17:24:bc:e4:17:ce:f3:b4:
10:74:53:13:ba:b4:58:02:01:24:e0:d8:61:d0:88:
63:0f:84:54:0f:7e:07:6d:15:a5:01:43:5f:cd:27:
88:08:53:bf:e2:70:91:84:32:02:11:e1:f0:75:7d:
65:26:93:27:b8:26:26:36:c0:87:b1:3d:ac:de:cc:
76:a3:13:f1:21:99:ac:93:b5:97:c9:d2:7e:f7:dd:
f4:80:ae:f8:27:ee:85:67:8c:8c:65:ce:9d:a6:19:
fc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:21:9B:FA:BC:EE:DD:8E:A5:E3:AE:1B:DF:39:0C:08:69:41:B6:43
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/dCGb-rzu3Y6l464b3zkMCGlBtkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.232.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:63:25:9a:9f:52:d7:e6:4b:3d:89:f1:c7:16:02:de:73:67:
c5:d1:8e:d7:20:a3:eb:3a:1c:05:ca:92:3b:e3:c5:df:eb:7b:
fe:31:5c:e1:24:09:67:14:5f:49:4f:9b:99:67:8b:eb:7e:94:
61:ad:c4:35:14:58:25:3c:77:61:4f:1f:d7:04:03:35:98:27:
bd:6d:f9:11:66:8d:47:72:c4:8d:87:a0:0b:14:65:8f:10:14:
b7:ad:d2:bc:45:8a:60:ec:24:a6:e8:3c:29:da:7e:31:51:3d:
fd:e6:59:97:89:eb:c6:ec:a6:0f:7e:9b:b9:f9:eb:b7:7b:40:
d9:f1:4b:38:be:3d:f2:2f:c4:f8:ee:d3:6a:a9:1c:33:42:69:
f2:70:31:43:3d:35:59:4b:a6:bf:f7:2d:b1:a2:df:d2:1c:b0:
d4:ae:0c:2c:e3:3a:38:64:70:fa:b3:78:e3:40:f2:d7:d5:bd:
11:1e:40:dc:9d:f3:57:8c:53:62:7d:81:8d:de:a7:dd:51:3b:
75:39:ce:3a:a0:3a:ba:ca:80:f7:34:7f:37:de:d5:3b:31:30:
b9:b1:89:22:73:ee:8e:11:83:1f:05:2d:b7:ea:d0:e2:7d:e5:
5d:4b:69:4f:8f:74:68:18:03:8b:fe:c1:4f:9f:15:36:c5:05:
fe:1b:4d:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx56OB6RfjdL+neiki80gEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMTAyMDk1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDIxOWJmYWJjZWVkZDhlYTVlM2FlMWJkZjM5MGMwODY5NDFiNjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1x4hAJfLmn/nJKPb7eBX5Ij5BhO
FzJ0F4b4XAeMBGPpgdf1ztR7oK8Oqap3RLCPzqW3REMw62Bt6qg1X51rSYHLwbw7
hPVlNO+ha2p15EtY3KPpDpUJbF9yEGCawXFN+oWgO/OhIZhBiUlQXIF8Xpp5Sph9
BktCbDZMgeHwPjgRkjG/s25xGg8CwnRHRPW+nUo5MK3cig4gSiCSFyS85BfO87QQ
dFMTurRYAgEk4Nhh0IhjD4RUD34HbRWlAUNfzSeICFO/4nCRhDICEeHwdX1lJpMn
uCYmNsCHsT2s3sx2oxPxIZmsk7WXydJ+9930gK74J+6FZ4yMZc6dphn8lQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQhm/q87t2OpeOuG985DAhpQbZDMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvZENHYi1yenUzWTZsNDY0YjN6a01DR2xCdGtNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWNHoMA0G
CSqGSIb3DQEBCwUAA4IBAQChYyWan1LX5ks9ifHHFgLec2fF0Y7XIKPrOhwFypI7
48Xf63v+MVzhJAlnFF9JT5uZZ4vrfpRhrcQ1FFglPHdhTx/XBAM1mCe9bfkRZo1H
csSNh6ALFGWPEBS3rdK8RYpg7CSm6Dwp2n4xUT395lmXievG7KYPfpu5+eu3e0DZ
8Us4vj3yL8T47tNqqRwzQmnycDFDPTVZS6a/9y2xot/SHLDUrgws4zo4ZHD6s3jj
QPLX1b0RHkDcnfNXjFNifYGN3qfdUTt1Oc46oDq6yoD3NH833tU7MTC5sYkic+6O
EYMfBS236tDifeVdS2lPj3RoGAOL/sFPnxU2xQX+G03Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org