Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/so3yUA6DWQzOxIvKE29YwSRl8Do.roa
File: so3yUA6DWQzOxIvKE29YwSRl8Do.roa (raw, json)
Hash identifier: wRb84H9KGfIAzgfwjm95r/bHvdBTTLu3WMfd458yStU=
Subject key identifier: B2:8D:F2:50:0E:83:59:0C:CE:C4:8B:CA:13:6F:58:C1:24:65:F0:3A
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01870352C035A6FA69EBE4FDF99BD1B5D8DD
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/so3yUA6DWQzOxIvKE29YwSRl8Do.roa
Signing time: Tue 21 Mar 2023 08:39:27 +0000
ROA not before: Tue 21 Mar 2023 08:39:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200010
IP address blocks: 88.209.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:52:c0:35:a6:fa:69:eb:e4:fd:f9:9b:d1:b5:d8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 21 08:39:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b28df2500e83590ccec48bca136f58c12465f03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:df:a2:cb:e5:0a:e9:b2:98:48:af:ff:7b:ec:
1e:c7:c2:61:e2:77:ea:7f:e3:e5:31:ec:2f:7e:b0:
41:d2:72:70:de:6a:b9:2e:3a:eb:36:03:eb:88:bc:
0e:9f:fe:f0:c9:37:2e:67:6f:45:58:1f:a8:fa:54:
9e:10:d7:f0:a6:96:11:0a:59:6c:61:56:f0:15:67:
f5:30:3f:18:ce:bc:99:40:36:da:31:4b:ef:2e:81:
0b:63:97:37:60:cf:5b:fe:c5:6b:6b:d4:2a:20:f0:
22:32:81:a2:0c:c3:e7:61:db:80:52:4f:b6:26:cf:
b2:90:99:ce:79:82:49:cb:51:5d:38:92:af:49:f8:
08:a5:3d:fd:e3:b2:2b:aa:fb:f7:54:8c:7b:41:93:
2d:ec:93:55:eb:88:c6:b8:02:7a:61:d3:1c:d1:7c:
2f:85:e2:b9:3c:55:7c:84:0d:88:cf:81:c9:87:a6:
6c:75:12:c7:d5:6e:1a:9a:21:97:8a:d5:a5:ef:cd:
9b:fb:2e:f2:31:ba:92:27:af:fa:f1:f5:52:d4:02:
75:e9:a8:d4:7b:d4:4a:99:32:30:b2:52:9f:67:cf:
9f:c9:46:f4:6e:d5:10:8b:dc:ed:82:28:8d:7c:00:
6c:ea:2f:d4:b0:06:26:7e:a8:ef:b5:9a:ad:a6:b2:
29:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:8D:F2:50:0E:83:59:0C:CE:C4:8B:CA:13:6F:58:C1:24:65:F0:3A
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/so3yUA6DWQzOxIvKE29YwSRl8Do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.245.0/24
Signature Algorithm: sha256WithRSAEncryption
99:43:7a:9c:3b:52:90:a8:81:1f:b5:9f:35:d0:90:b5:02:7d:
d6:3f:43:e7:85:78:3b:18:65:28:6b:a6:e0:db:92:c0:b6:23:
c0:c9:bb:f0:95:94:2b:50:91:2a:29:14:63:86:ed:b7:67:cb:
7d:5f:8f:1f:0d:6e:d0:37:a7:83:e7:85:16:0c:58:1c:bb:58:
b1:73:c3:41:b3:7a:f7:cc:87:91:2a:fe:43:16:3c:5b:34:37:
5b:55:6e:9e:56:d2:53:da:12:a0:97:51:e2:9f:59:80:69:e2:
4a:3c:8a:26:f4:d4:05:4c:6d:ef:a1:d3:89:35:d7:16:a6:b4:
23:3b:c4:9d:f7:08:81:ce:0e:30:92:30:26:ac:0f:b6:02:bf:
69:00:9f:0e:44:b7:f6:21:15:5f:51:64:41:92:2c:e6:97:26:
72:35:1d:55:c7:59:a5:f8:6a:b9:45:44:26:a7:99:e0:04:fc:
13:a3:87:e0:a7:7b:63:01:a8:de:b1:d6:2b:14:cb:ea:c8:be:
78:8c:e5:e4:6e:6a:12:97:14:cf:b7:46:8d:ca:4f:1f:3c:fb:
eb:17:44:e8:c1:06:95:65:e4:6f:22:98:7e:96:4d:f2:80:24:
0a:d4:39:a5:1f:3a:73:e9:dd:17:b2:19:be:71:14:1b:42:a7:
f3:55:0f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:52 2023 by rpki-client on console-ams.rpki-client.org