Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/n17DphoiAwAC35cJ5NB5cKci33c.roa
File: n17DphoiAwAC35cJ5NB5cKci33c.roa (raw, json)
Hash identifier: pUWsjWx/5Ix9UTWft8cAh6AiyNeTl/Zrflw4NOZiuzA=
Subject key identifier: 9F:5E:C3:A6:1A:22:03:00:02:DF:97:09:E4:D0:79:70:A7:22:DF:77
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01877F1B32363C8F53B6DD31848266B20D0F
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/n17DphoiAwAC35cJ5NB5cKci33c.roa
Signing time: Fri 14 Apr 2023 09:31:41 +0000
ROA not before: Fri 14 Apr 2023 09:31:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208476
IP address blocks: 88.209.253.0/24 maxlen: 24
83.137.158.0/24 maxlen: 24
45.14.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 May 2023 13:41:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7f:1b:32:36:3c:8f:53:b6:dd:31:84:82:66:b2:0d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Apr 14 09:31:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f5ec3a61a22030002df9709e4d07970a722df77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:17:c1:fc:7e:6e:74:5b:a0:85:10:27:95:
0f:f4:77:2a:28:a5:03:b9:52:b0:a4:d2:be:7e:54:
87:84:52:df:51:2c:e2:72:f0:1f:8b:bd:22:53:a8:
19:22:78:b7:e7:48:dc:76:04:2d:07:89:57:6d:79:
7a:33:33:aa:86:2c:13:f9:74:ef:d2:92:9e:fc:3b:
69:e4:2b:11:b8:ea:29:32:fc:39:9f:10:03:77:42:
91:53:50:38:ae:f8:59:c1:5a:8f:47:a5:37:ba:ba:
b5:95:38:02:be:5c:a8:fe:8b:ec:22:40:37:fb:02:
58:a6:56:58:10:a8:7b:45:9e:b0:3b:60:81:28:7a:
08:08:5b:e7:0d:01:b4:60:3e:25:80:00:70:9f:97:
ad:bf:57:67:3c:ad:7b:cd:cf:20:e7:a7:0c:0e:fc:
ea:0b:46:ce:8a:1f:33:4e:66:06:43:8c:1d:a2:ba:
d3:da:96:d2:9a:cc:fc:c1:86:00:3d:4e:34:f6:22:
35:08:fb:27:44:f0:68:79:9e:ca:88:a0:8a:cb:e7:
26:4e:e7:20:bb:db:ee:82:05:1c:24:17:91:45:94:
a5:de:ee:dd:ea:9b:b1:de:a5:0b:e0:ca:9e:4a:eb:
9d:55:18:35:eb:27:dd:8e:56:19:26:4e:6f:f2:33:
70:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:5E:C3:A6:1A:22:03:00:02:DF:97:09:E4:D0:79:70:A7:22:DF:77
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/n17DphoiAwAC35cJ5NB5cKci33c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.9.0/24
83.137.158.0/24
88.209.253.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:cd:82:19:25:e6:91:3a:1f:f7:bc:d9:2c:cf:66:dd:f6:03:
fa:44:fe:3a:fc:83:ca:79:17:c9:60:1e:1b:10:8e:f6:19:58:
65:28:62:39:19:8c:38:e5:9a:51:25:c2:f6:bb:fc:a7:d5:fb:
a3:d5:14:15:98:64:a0:ac:85:c3:1e:61:91:57:6e:8f:cf:46:
61:80:b3:98:f5:b7:12:ab:34:6b:27:c7:63:85:bc:56:af:bb:
19:83:3b:35:aa:7e:a7:b8:45:e1:af:a7:d8:f4:27:b3:13:93:
75:bc:2b:b1:bc:f5:5a:c4:8d:01:d2:16:c1:4b:71:2f:7a:10:
53:7d:60:e7:2d:a1:d3:c3:a2:1f:49:f6:4b:34:a5:a9:62:6a:
5e:0b:fc:a0:a1:f9:2e:09:ad:53:47:12:7c:cf:bf:39:a4:8b:
94:ee:75:48:60:f9:17:69:5d:60:fa:7b:db:94:b9:6a:4a:09:
8e:fd:1c:59:6d:b6:93:d3:e9:a0:a7:01:ea:9b:b8:12:98:20:
0f:5e:e9:54:2d:4f:1e:33:70:e0:b9:c4:45:91:1a:4f:0a:77:
9a:ff:04:3e:4a:b1:9e:3d:b8:88:50:ec:25:29:53:54:f5:66:
95:2a:75:d8:f4:8e:89:66:bc:ba:e6:6e:6a:29:9c:28:1a:77:
f5:98:4c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org