Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/uM0WBeBD163cd_oWt4GpUyyuo0c.roa
File: uM0WBeBD163cd_oWt4GpUyyuo0c.roa (raw, json)
Hash identifier: yk2EnNEtd/qoh2MBgj2RLFTXEvf8A/u24Ad36eY8Qfo=
Subject key identifier: B8:CD:16:05:E0:43:D7:AD:DC:77:FA:16:B7:81:A9:53:2C:AE:A3:47
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0185C137D3DD59EBE8103DA1951DE67DB7FC
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/uM0WBeBD163cd_oWt4GpUyyuo0c.roa
Signing time: Tue 17 Jan 2023 19:32:19 +0000
ROA not before: Tue 17 Jan 2023 19:32:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 88.209.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Jan 2023 11:38:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c1:37:d3:dd:59:eb:e8:10:3d:a1:95:1d:e6:7d:b7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 17 19:32:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8cd1605e043d7addc77fa16b781a9532caea347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:45:45:cf:06:f2:17:02:72:50:58:b4:05:17:
b1:f4:86:6d:fb:bb:ff:94:57:bf:f1:eb:94:cd:70:
c8:25:df:d6:9f:96:b2:f4:9e:1e:64:1a:c8:05:e4:
3b:59:09:db:42:e8:bf:ca:6a:dc:e5:95:1b:3e:88:
53:47:76:29:ef:c7:c9:a9:75:4b:bc:b4:6d:db:31:
70:8a:fb:1c:62:a3:5e:03:82:0f:8e:56:64:4c:9c:
49:10:6e:83:58:9d:c6:3f:04:6f:81:55:3c:3a:b3:
36:68:c1:11:1f:d5:87:a6:70:ea:50:b7:26:d1:c6:
f8:e9:c1:7d:7f:67:ad:43:56:82:d9:56:0b:ed:d7:
7b:f2:05:8c:c5:b1:aa:5a:e5:19:46:00:4c:d6:b4:
18:6a:7f:29:5a:e5:8a:7e:48:20:fc:a2:ef:f8:be:
02:b8:18:7a:74:ee:50:dd:b2:ec:b8:33:66:31:aa:
cb:27:6a:19:b3:47:52:3a:05:26:75:d8:b1:74:1d:
44:38:ec:e7:33:0e:48:a5:d8:81:c0:ae:e2:53:b2:
2b:f1:1b:34:cf:6e:cd:2d:92:6f:2d:6e:c8:eb:f4:
9d:02:f1:1e:7a:00:a5:28:e0:ef:1f:a9:cf:81:3f:
18:a8:f8:2c:da:4f:e6:7c:ee:ce:16:62:d6:0c:56:
8f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CD:16:05:E0:43:D7:AD:DC:77:FA:16:B7:81:A9:53:2C:AE:A3:47
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/uM0WBeBD163cd_oWt4GpUyyuo0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.207.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:f4:42:d1:5a:1a:c1:56:d3:a5:db:2a:81:fd:65:5c:49:a5:
ce:8d:a0:84:27:41:7e:94:dc:e3:90:26:64:bb:af:f8:af:7e:
47:44:6c:26:d2:dd:aa:47:2f:e2:71:44:1e:49:69:1a:1c:f6:
62:04:f9:6a:0e:1f:a8:cf:7b:8f:9f:b6:ff:4b:7a:d2:85:f5:
ad:e6:b7:99:52:0f:73:09:86:15:c4:a5:97:78:e7:96:4b:b2:
dd:e6:2d:67:5d:82:e3:95:2b:3d:04:ac:56:6c:72:fa:40:40:
ba:0a:62:12:85:c6:71:5b:35:13:42:60:6d:6e:b3:f6:88:45:
4b:93:d8:5a:93:cd:66:1a:33:46:98:9c:b6:e1:e0:ff:ae:2b:
44:95:20:13:87:a2:ec:8e:bf:bb:ce:35:4d:d4:72:54:59:54:
99:11:d2:94:1a:cb:ae:06:62:ff:bf:cc:c0:08:b8:15:bb:52:
33:cc:cc:c5:f7:8f:7b:66:97:5d:09:4e:f3:60:54:d3:df:6b:
4d:ba:e3:4e:eb:a0:e9:d8:70:65:71:20:93:bc:26:c9:c0:3f:
0b:6b:46:ce:4f:26:ad:7e:f2:22:3c:ca:95:cb:88:ec:ac:ef:
cd:e8:4c:78:4b:58:30:c0:d7:fc:61:a2:93:bd:4e:9b:3f:c6:
6e:56:1e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:57 2024 by rpki-client on console-ams.rpki-client.org