Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/g-vYsJN3xncLMi-0lZVvB6DLhQ4.roa
File: g-vYsJN3xncLMi-0lZVvB6DLhQ4.roa (raw, json)
Hash identifier: I71YG7AjLz6KV/q7rZZurcny/WJRwZa0nUri6BojAzc=
Subject key identifier: 83:EB:D8:B0:93:77:C6:77:0B:32:2F:B4:95:95:6F:07:A0:CB:85:0E
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0186980627D07F033CBF85E08F07454A5B75
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/g-vYsJN3xncLMi-0lZVvB6DLhQ4.roa
Signing time: Tue 28 Feb 2023 12:36:25 +0000
ROA not before: Tue 28 Feb 2023 12:36:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 88.151.59.0/24 maxlen: 24
88.209.222.0/24 maxlen: 24
88.209.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 06:26:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:98:06:27:d0:7f:03:3c:bf:85:e0:8f:07:45:4a:5b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 28 12:36:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83ebd8b09377c6770b322fb495956f07a0cb850e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a2:6c:27:5d:19:48:0c:d8:cb:71:a0:f6:c5:
4c:fd:68:4e:42:a9:e3:95:42:3f:97:b2:82:76:40:
9a:dd:9e:eb:e2:5d:51:52:40:a2:4b:44:b6:5f:80:
d9:53:70:7f:c4:b4:72:f3:65:37:a8:05:52:a5:98:
1f:bd:c5:ac:df:3f:96:55:1b:ac:ee:42:a3:85:ac:
60:0c:58:c6:69:c7:f9:54:13:c9:54:2f:8a:6e:f7:
68:ae:98:80:c9:28:f8:4b:4d:b6:ff:de:1c:3d:31:
78:61:3a:18:1a:27:aa:47:62:1e:43:15:2a:15:e8:
fb:aa:c6:49:20:eb:42:80:cf:92:b1:a7:4a:7d:ad:
e5:10:9e:22:2a:7d:36:f1:fd:91:f3:c9:dd:9f:4b:
71:38:52:ff:c9:f5:60:79:1a:d3:7d:7e:62:f5:8c:
7e:55:6e:11:46:a1:9a:cb:67:71:b3:c4:e3:c2:0f:
c3:22:0f:eb:83:17:b6:96:73:48:18:51:9e:35:cb:
72:00:8b:9d:86:a6:c4:f2:f6:fd:32:77:ba:cd:bb:
4e:69:cd:6d:84:16:cc:d6:e1:05:6d:b5:6b:bf:f3:
12:cc:c9:59:99:29:c8:1f:fd:5a:4f:0e:9d:ac:e4:
9c:5d:cc:64:cd:84:da:71:55:95:85:0c:b3:36:8a:
61:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:EB:D8:B0:93:77:C6:77:0B:32:2F:B4:95:95:6F:07:A0:CB:85:0E
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/g-vYsJN3xncLMi-0lZVvB6DLhQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.151.59.0/24
88.209.221.0-88.209.222.255
Signature Algorithm: sha256WithRSAEncryption
77:76:1e:ef:08:f6:49:ed:63:2e:f5:f0:74:2b:a1:b6:bb:db:
cb:02:80:f8:aa:79:6c:48:14:b5:44:5e:72:e9:83:27:b1:00:
a8:c3:68:77:22:2e:4c:8c:e0:36:8e:a3:63:fa:77:19:ac:18:
b5:e2:71:21:21:ee:66:a5:92:77:c0:45:8c:bb:48:ed:e6:8f:
71:40:97:4c:da:cd:aa:d5:18:28:f5:33:3a:c3:1c:ed:52:70:
f2:f7:3a:41:da:a4:76:fd:08:3d:ec:c2:a0:4d:ab:13:ea:8d:
b3:6a:45:25:18:37:eb:6d:f4:19:86:b8:f4:90:c2:34:a4:17:
32:50:9b:35:b0:a3:16:07:04:40:13:2e:47:ab:2c:86:2d:3d:
76:1f:94:70:b5:d7:28:b8:8d:59:85:c1:ca:ee:b5:40:37:fb:
5a:ad:ba:eb:97:2b:3d:7b:f4:9f:f8:ed:e3:44:47:df:1d:b9:
74:2b:95:c3:07:90:51:f5:44:5d:04:46:d1:c8:76:60:23:d9:
f7:ec:ba:ee:1f:22:77:83:55:7d:ce:57:3c:0c:32:3c:a3:ef:
c5:62:ed:07:ff:0e:30:dd:1e:b2:05:bc:7d:fa:0f:a0:36:10:
4a:c0:87:26:28:99:52:13:cf:b8:12:bf:e6:5e:ea:7a:87:a1:
95:10:86:af
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org