Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/eRytfeFpVznIjIS6cQXf8TBFWHU.roa
File: eRytfeFpVznIjIS6cQXf8TBFWHU.roa (raw, json)
Hash identifier: 6FDKUN/hiIeeJu8mN0sqFDdLJVScEfVMlvF/8qgEzRU=
Subject key identifier: 79:1C:AD:7D:E1:69:57:39:C8:8C:84:BA:71:05:DF:F1:30:45:58:75
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018A4F9A45A6E50D3994A5C48EC40FB558D4
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/eRytfeFpVznIjIS6cQXf8TBFWHU.roa
Signing time: Fri 01 Sep 2023 07:17:04 +0000
ROA not before: Fri 01 Sep 2023 07:17:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 88.209.244.0/24 maxlen: 24
88.209.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 06:53:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:9a:45:a6:e5:0d:39:94:a5:c4:8e:c4:0f:b5:58:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Sep 1 07:17:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=791cad7de1695739c88c84ba7105dff130455875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:54:57:7f:5c:c1:27:82:10:5e:26:8b:2c:40:
b4:26:68:b5:28:d1:cb:43:f1:4e:9a:fe:bc:02:2b:
50:f2:37:e9:7e:66:af:df:39:80:29:45:4b:26:48:
4d:59:23:05:19:f6:17:79:ec:d9:ce:98:f6:bd:98:
68:48:a0:c5:31:43:f7:00:8c:dd:91:cf:59:9a:ca:
87:a1:2c:b9:4c:f3:2b:e7:98:de:ff:2e:14:ce:b4:
cb:83:85:cc:05:f9:49:e8:91:f2:ed:de:df:9d:f5:
73:48:6b:d1:c8:17:71:c0:46:98:6a:24:55:92:d2:
39:0e:df:d9:03:fe:75:19:ae:47:f6:2b:a2:44:a6:
7a:b1:ac:3c:00:0d:fb:a8:e7:d9:e0:79:24:8f:11:
cb:5a:a2:1f:6d:10:ae:ae:5e:ed:7b:0c:a1:ee:22:
a9:9f:3f:ee:15:03:10:b8:55:33:cf:46:dd:5c:52:
80:08:74:b6:a2:d5:f7:3a:ca:67:48:6b:31:4c:36:
04:46:0a:30:b2:03:ea:1e:00:96:5d:c4:46:f3:a2:
0c:f7:28:96:96:b9:a8:40:49:67:3e:a7:73:f4:a8:
9d:8a:19:72:9a:30:66:ff:fc:f4:41:7d:90:97:0d:
60:07:8e:75:9e:a7:c2:11:5e:e4:69:90:8e:45:b7:
69:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1C:AD:7D:E1:69:57:39:C8:8C:84:BA:71:05:DF:F1:30:45:58:75
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/eRytfeFpVznIjIS6cQXf8TBFWHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.216.0/24
88.209.244.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:66:b4:c5:63:3b:eb:5f:f3:2c:31:6e:3f:69:e3:28:50:c4:
fb:2c:eb:34:e1:5f:4e:a2:bf:ce:7c:f5:e5:77:45:e5:42:fd:
7a:26:c2:e0:0d:e2:9d:f8:b5:62:8c:a6:97:36:d6:5f:94:a2:
f2:34:42:f2:2c:8b:71:0a:39:6f:82:8e:18:cd:ac:3c:15:66:
b0:4e:5b:78:6d:82:b7:de:70:99:c8:13:b4:08:46:0d:d4:03:
4c:27:1e:fa:9a:02:92:77:29:16:0b:ac:64:da:84:b8:fe:85:
c0:06:17:68:72:17:8d:19:e1:90:86:a7:56:b1:c9:22:b8:b5:
62:52:5d:3c:79:4f:ef:8b:9b:c9:e7:4a:31:6e:01:f8:d6:45:
55:34:10:f5:28:58:a4:ec:43:1d:b3:22:2a:6d:90:9a:9e:9b:
72:1d:0f:c3:f3:b0:36:f5:fe:d4:e1:3a:b8:79:4a:34:a2:c6:
8a:43:53:d7:31:65:cc:18:a2:50:e8:d6:7a:26:19:4c:76:72:
32:0e:42:97:47:7e:c8:9f:45:37:d5:55:1c:ed:5b:31:c4:33:
c0:58:4b:07:db:65:34:c2:3d:a4:42:8e:f6:61:00:41:aa:01:
99:f2:dd:cd:ab:92:31:67:4e:8e:44:3b:06:c4:6a:36:f8:ab:
cc:fa:09:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org