Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/kZ6bNFG13cCgO7xnkDfZ0iokl0A.roa
File: kZ6bNFG13cCgO7xnkDfZ0iokl0A.roa (raw, json)
Hash identifier: w2URPzYiiPHIWlfpgM0zjgMyF+mh4B0z0WwXxRwEh78=
Subject key identifier: 91:9E:9B:34:51:B5:DD:C0:A0:3B:BC:67:90:37:D9:D2:2A:24:97:40
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018731291A44B02E47E3FC43D34CD575C47C
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/kZ6bNFG13cCgO7xnkDfZ0iokl0A.roa
Signing time: Thu 30 Mar 2023 06:16:29 +0000
ROA not before: Thu 30 Mar 2023 06:16:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400529
IP address blocks: 88.209.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:29:1a:44:b0:2e:47:e3:fc:43:d3:4c:d5:75:c4:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 30 06:16:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=919e9b3451b5ddc0a03bbc679037d9d22a249740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0f:db:fa:6e:d8:6f:67:dc:46:58:f8:64:46:
c8:a9:4b:81:b5:ed:5e:9b:b7:65:2f:b9:1f:83:fb:
5a:aa:1f:ea:da:21:d6:44:05:a3:cc:3b:fb:79:28:
0a:06:e3:65:d6:a7:65:be:18:08:0b:f3:f6:77:53:
8b:8e:af:79:27:83:4b:80:67:2e:0e:73:bf:b8:a0:
0c:c3:33:3d:43:8b:97:44:7d:0c:fb:9a:a5:db:bb:
a1:e6:d3:65:13:55:10:15:b2:12:2d:f7:0c:96:09:
03:c2:5a:ec:ac:84:ac:c7:c2:40:95:7a:36:f1:d2:
95:e6:23:f8:98:22:8b:b5:c2:dc:c8:70:10:c6:74:
c9:21:7f:79:82:f9:6d:19:2d:ce:f9:be:0d:05:4f:
e6:e6:39:40:12:8c:2f:35:a5:21:11:9c:b6:a7:de:
fc:35:b9:5f:56:19:f5:c6:c8:31:ee:94:0c:a2:95:
c7:25:23:72:3f:9b:0b:66:c5:9f:9d:4e:d4:51:56:
62:32:20:41:08:82:00:2f:dc:9f:84:f1:90:15:2d:
d8:44:59:ac:c7:81:d7:9b:ea:75:ea:68:a4:a1:b8:
b0:9c:2a:1b:f2:2f:6c:32:da:0e:60:f6:3b:01:dc:
65:c8:99:e5:e3:dd:89:9e:6c:41:0c:a7:f1:96:56:
90:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9E:9B:34:51:B5:DD:C0:A0:3B:BC:67:90:37:D9:D2:2A:24:97:40
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/kZ6bNFG13cCgO7xnkDfZ0iokl0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.197.0/24
Signature Algorithm: sha256WithRSAEncryption
94:80:1d:42:28:72:b9:fc:93:9b:8f:d5:ce:e0:7e:6f:f3:ce:
fe:cb:45:9a:5c:55:73:06:5b:14:df:ca:d5:9e:d8:df:b8:7c:
89:fa:98:20:8e:5a:a6:c4:d0:f1:ba:32:8a:76:f7:78:da:8e:
5e:85:5a:61:a3:79:55:d8:7e:e6:37:c8:18:79:f1:85:ee:39:
9c:82:b5:7a:27:24:7d:eb:6d:a8:ce:61:8b:93:cd:39:ea:24:
d5:61:c9:8c:54:84:81:cc:5c:df:e7:08:88:75:98:3a:74:d5:
27:50:b5:7a:bd:d0:34:94:70:f1:1f:e6:5f:c6:88:9b:67:3d:
3e:d4:d2:2b:42:b1:af:3d:a6:eb:00:10:bf:4a:c1:82:6f:18:
19:34:1d:db:01:91:83:a7:98:0e:55:1d:6d:3e:c0:d1:e7:4a:
51:75:70:38:fb:aa:32:f8:0e:f0:9f:f0:69:12:e7:cd:d0:2b:
44:ff:fa:2f:19:e9:17:ec:ab:78:9c:b4:56:49:e4:6a:8e:0b:
76:d1:0b:2c:d6:98:ef:fc:a0:a6:d3:af:aa:d1:b6:1a:f5:ec:
15:6d:90:fa:9b:63:bf:5f:cc:55:13:79:2f:0c:5a:ac:b3:72:
0e:3e:ab:20:bc:b3:ff:3d:11:d9:52:61:6c:da:4c:cb:f5:b0:
e5:28:67:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcxKRpEsC5H4/xD00zVdcR8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMzMwMDYxNjI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTllOWIzNDUxYjVkZGMwYTAzYmJjNjc5MDM3ZDlkMjJhMjQ5NzQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlw/b+m7Yb2fcRlj4ZEbIqUuBte1e
m7dlL7kfg/taqh/q2iHWRAWjzDv7eSgKBuNl1qdlvhgIC/P2d1OLjq95J4NLgGcu
DnO/uKAMwzM9Q4uXRH0M+5ql27uh5tNlE1UQFbISLfcMlgkDwlrsrISsx8JAlXo2
8dKV5iP4mCKLtcLcyHAQxnTJIX95gvltGS3O+b4NBU/m5jlAEowvNaUhEZy2p978
NblfVhn1xsgx7pQMopXHJSNyP5sLZsWfnU7UUVZiMiBBCIIAL9yfhPGQFS3YRFms
x4HXm+p16mikobiwnCob8i9sMtoOYPY7AdxlyJnl492JnmxBDKfxllaQCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGemzRRtd3AoDu8Z5A32dIqJJdAMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEva1o2Yk5GRzEzY0NnTzd4bmtEZlowaW9rbDBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNHFMA0G
CSqGSIb3DQEBCwUAA4IBAQCUgB1CKHK5/JObj9XO4H5v887+y0WaXFVzBlsU38rV
ntjfuHyJ+pggjlqmxNDxujKKdvd42o5ehVpho3lV2H7mN8gYefGF7jmcgrV6JyR9
622ozmGLk8056iTVYcmMVISBzFzf5wiIdZg6dNUnULV6vdA0lHDxH+ZfxoibZz0+
1NIrQrGvPabrABC/SsGCbxgZNB3bAZGDp5gOVR1tPsDR50pRdXA4+6oy+A7wn/Bp
EufN0CtE//ovGekX7Kt4nLRWSeRqjgt20Qss1pjv/KCm06+q0bYa9ewVbZD6m2O/
X8xVE3kvDFqss3IOPqsgvLP/PRHZUmFs2kzL9bDlKGe8
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:55 2024 by rpki-client on console-ams.rpki-client.org