Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vQk-zbojJh4o45uNH89hIgIY05Y.roa
File: vQk-zbojJh4o45uNH89hIgIY05Y.roa (raw, json)
Hash identifier: jeBNG3+l99LtgWf7ldcW9rOCMVMuDwat9rH6i4lRqF0=
Subject key identifier: BD:09:3E:CD:BA:23:26:1E:28:E3:9B:8D:1F:CF:61:22:02:18:D3:96
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0185D41FC2011C85015E179EE68A6994B22B
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vQk-zbojJh4o45uNH89hIgIY05Y.roa
Signing time: Sat 21 Jan 2023 11:38:49 +0000
ROA not before: Sat 21 Jan 2023 11:38:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 88.209.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 09:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d4:1f:c2:01:1c:85:01:5e:17:9e:e6:8a:69:94:b2:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 21 11:38:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd093ecdba23261e28e39b8d1fcf61220218d396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b4:3d:c5:2a:11:ad:9d:b2:d7:29:17:82:6b:
26:e2:82:ca:00:c8:7c:6c:3f:81:53:f8:39:99:0e:
7e:49:af:ce:66:bc:1a:93:a9:5b:10:74:05:6b:76:
d2:63:4c:14:5c:a7:04:74:c3:f9:04:01:fa:da:5d:
32:03:ce:08:28:dd:ab:52:bc:63:83:73:d4:23:f3:
44:c6:93:0e:da:1b:dc:7e:82:4b:d1:7d:8f:88:cb:
10:c6:79:a6:2a:0f:06:ad:11:74:f1:97:54:78:b5:
ba:5a:72:17:f9:3f:35:8e:ae:bc:1b:12:d5:b7:3d:
fa:18:a6:ef:4d:15:e2:3e:20:14:a6:95:09:97:23:
88:50:07:d7:5a:f9:02:7b:da:41:1c:7c:6e:3d:08:
8d:98:1f:2f:4c:b2:d5:59:52:78:56:5f:f1:cf:ac:
37:32:af:e7:94:2b:2e:5e:27:81:52:d8:6f:50:bb:
06:af:9b:f5:5a:f4:f7:cd:8f:7c:b2:20:b3:80:df:
ce:71:07:0e:8b:0a:18:c4:c4:40:87:d1:d6:d8:1e:
20:b9:60:4b:80:d9:c8:95:43:39:c7:dd:8c:d6:00:
15:9d:f2:04:1e:92:83:13:fc:f0:e9:17:8d:f3:e6:
5f:25:78:6e:15:53:a5:5a:71:20:e5:32:2f:12:90:
20:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:09:3E:CD:BA:23:26:1E:28:E3:9B:8D:1F:CF:61:22:02:18:D3:96
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vQk-zbojJh4o45uNH89hIgIY05Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.244.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:25:1f:b0:fe:d1:42:e5:b0:97:c8:c4:cd:92:32:2b:de:da:
28:ad:53:73:64:75:84:3c:0f:3b:8b:c9:5c:0f:ac:af:2d:ab:
2d:c6:ba:85:d8:df:a4:a0:66:b9:b4:70:d8:c1:e0:3a:48:de:
59:f3:53:00:1f:7c:65:b8:d8:1c:12:8c:69:e7:b7:70:a1:46:
02:2a:fc:a9:05:73:33:ef:fd:d3:47:d2:db:3e:f6:4c:eb:ed:
fe:33:18:e6:2f:ad:ec:0a:f8:e8:5f:fa:4c:62:0a:ff:1f:a4:
05:17:7c:73:3b:b6:5c:f2:b5:d8:08:e1:57:7a:d1:53:e4:02:
a4:20:e8:39:97:45:d2:72:1a:be:52:a7:b6:ea:71:a9:05:0e:
41:c7:95:c9:13:b7:c8:50:f1:78:13:49:ed:e5:5f:41:17:68:
1b:4d:84:a7:7f:45:fe:56:d7:02:94:a4:71:a5:70:08:09:23:
44:be:de:bc:f5:75:25:2a:d1:7e:07:20:31:2b:85:f5:d4:fb:
ec:f0:f4:9d:55:da:5c:70:10:4f:ff:b7:67:d2:b5:c9:d2:9a:
f8:89:74:df:18:95:35:dd:02:53:b6:7c:d4:1c:e1:58:54:24:
31:22:da:77:7d:4d:4e:1d:25:ba:3f:08:b5:92:b8:2c:32:ee:
b4:0a:2f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org