Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/gSvi5eK8sPxJC4LxjyVvtRWK0c0.roa
File: gSvi5eK8sPxJC4LxjyVvtRWK0c0.roa (raw, json)
Hash identifier: buIaEBX9V5N6Bjo6ric+oslCGT0ldh10YSWTvnrKpTI=
Subject key identifier: 81:2B:E2:E5:E2:BC:B0:FC:49:0B:82:F1:8F:25:6F:B5:15:8A:D1:CD
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 019599C5772F3198F251DA1AC847597A14F0
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/gSvi5eK8sPxJC4LxjyVvtRWK0c0.roa
Signing time: Sat 15 Mar 2025 12:26:49 +0000
ROA not before: Sat 15 Mar 2025 12:26:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 88.209.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Apr 2025 06:16:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:99:c5:77:2f:31:98:f2:51:da:1a:c8:47:59:7a:14:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 15 12:26:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=812be2e5e2bcb0fc490b82f18f256fb5158ad1cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:88:87:c3:7e:4f:bc:7c:38:6c:91:c8:48:3d:
80:69:90:2f:71:0f:40:d0:e4:ea:32:6f:51:91:63:
54:5a:66:88:bd:33:dd:4c:2c:64:6f:af:e1:3f:5a:
80:a7:ba:09:1f:04:97:58:e6:9c:b3:95:0b:a0:01:
90:d0:f8:ae:ed:86:96:a5:dc:8e:ce:95:2d:3d:ec:
7b:08:9d:e4:91:10:77:45:71:92:fc:be:47:85:46:
52:cd:6e:21:6e:6a:8c:22:e5:f3:48:20:c6:3b:b7:
6f:29:dd:00:9b:d5:be:72:a7:7b:a2:33:ed:75:aa:
5e:3b:69:e9:95:38:6f:d5:1a:25:49:31:59:80:f6:
a1:66:a1:b7:eb:18:46:5b:44:60:02:ba:a1:d1:f9:
af:4d:9c:da:f7:17:1a:85:2e:ed:fd:97:f5:07:ba:
ba:09:b5:e6:f4:cd:17:e3:57:bd:82:73:87:aa:21:
95:3d:98:05:24:79:f2:6b:ff:0f:b8:74:d8:ed:a8:
eb:3a:fd:c6:f1:ca:21:37:08:df:5a:c4:fc:1a:9f:
e7:86:39:40:9f:2e:b8:b8:07:3e:7a:ab:ce:d9:89:
fb:92:fc:28:36:42:d6:4e:fb:d1:eb:bc:20:b3:c8:
b8:1a:74:4d:fd:ac:af:54:d3:a6:4e:ed:ba:66:11:
12:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2B:E2:E5:E2:BC:B0:FC:49:0B:82:F1:8F:25:6F:B5:15:8A:D1:CD
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/gSvi5eK8sPxJC4LxjyVvtRWK0c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.201.0/24
Signature Algorithm: sha256WithRSAEncryption
08:93:5a:1b:de:fc:4d:ef:fb:35:ee:14:ad:0c:4d:55:ae:08:
17:a4:c9:de:a7:fc:70:64:d5:79:89:3d:6e:9e:22:0d:bc:85:
1a:4a:7c:3f:79:35:d2:b9:c7:bb:ba:94:66:51:41:0b:0e:f0:
60:f8:d5:01:84:8b:fe:fd:1d:f1:a6:4a:e5:af:43:63:96:93:
e5:39:96:9d:c7:4a:3c:42:84:a4:1d:88:fd:bf:34:2d:d3:05:
e4:ba:a8:3c:28:75:02:84:c1:58:93:a9:70:9b:54:9a:e0:46:
b4:cc:45:cc:b9:53:3f:6d:77:3b:85:29:66:c3:57:47:8d:e4:
fb:c0:0b:30:85:f2:3b:42:d1:73:23:e1:78:67:ca:53:d1:bd:
31:ff:30:d7:35:64:34:f4:93:35:e5:e7:d4:94:4d:53:15:3e:
60:71:7b:0c:47:f5:10:89:80:7e:01:41:b0:84:ae:65:86:84:
d4:55:87:95:f6:73:ed:03:d1:72:a3:98:ab:b5:59:dc:7e:95:
0c:fa:20:16:65:50:ef:28:60:4e:f3:8b:2d:d1:50:22:17:c0:
bb:6d:95:fd:7e:00:09:fc:a2:7e:43:9a:f4:38:b1:8a:18:6a:
e1:f2:84:73:28:3c:72:a9:4c:a7:03:e0:e7:a5:28:3e:f7:44:
07:cd:f0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:29:51 2025 by rpki-client