Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vRmy27Sk8MzgHzpfMXeIU_eXwAs.roa
File: vRmy27Sk8MzgHzpfMXeIU_eXwAs.roa (raw, json)
Hash identifier: H2VvgGLqOY5ROvcVrsJ64yrM1LjGsuS0zD6orO2pKU8=
Subject key identifier: BD:19:B2:DB:B4:A4:F0:CC:E0:1F:3A:5F:31:77:88:53:F7:97:C0:0B
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01891C33F9360A309759B0FCF0BD91460927
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vRmy27Sk8MzgHzpfMXeIU_eXwAs.roa
Signing time: Mon 03 Jul 2023 14:41:55 +0000
ROA not before: Mon 03 Jul 2023 14:41:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205733
IP address blocks: 88.209.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Sep 2023 07:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1c:33:f9:36:0a:30:97:59:b0:fc:f0:bd:91:46:09:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 3 14:41:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd19b2dbb4a4f0cce01f3a5f31778853f797c00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1c:86:eb:55:b1:3a:69:70:c5:0f:6f:f2:86:
1c:0d:9e:e2:61:88:82:12:00:23:7b:b7:4b:0c:19:
a6:47:05:49:03:5d:6c:eb:57:a9:a8:47:b9:8a:89:
be:55:82:a9:07:b1:36:d9:2b:5b:3d:6c:c4:06:44:
95:c5:29:19:6b:93:ff:aa:00:c0:ca:40:30:d6:0b:
6c:10:74:ec:3a:79:73:b1:df:bb:95:91:bc:45:1a:
b1:73:1f:9e:4e:8d:f3:7b:af:28:cf:df:04:92:a2:
23:9f:71:df:fa:2e:92:e5:36:bd:37:39:c9:be:d0:
88:b2:83:9b:01:87:3f:29:62:83:b4:29:7a:28:fd:
52:d5:60:dd:9e:aa:7f:a3:90:51:aa:3b:89:93:7a:
2a:88:3d:b9:82:ed:8c:15:ca:a8:c6:36:94:cc:4f:
63:e4:be:c7:13:a1:30:f3:14:9a:93:af:25:40:de:
de:7e:da:70:d2:80:04:84:4f:19:7e:5a:4b:1c:70:
6f:c2:ce:ba:96:31:9a:1a:da:10:3e:aa:38:92:57:
2d:1f:f7:a4:49:d9:c6:e9:38:81:8c:c0:18:45:76:
2f:81:9e:ac:8b:af:db:fc:ef:a6:26:5a:42:9f:fd:
94:f2:2d:c5:fb:80:94:7c:88:11:0c:ad:6f:0f:d0:
3e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:19:B2:DB:B4:A4:F0:CC:E0:1F:3A:5F:31:77:88:53:F7:97:C0:0B
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/vRmy27Sk8MzgHzpfMXeIU_eXwAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.249.0/24
Signature Algorithm: sha256WithRSAEncryption
89:bb:3f:b7:fb:9f:6f:f9:14:48:46:1f:7c:0c:b2:33:33:fc:
5e:03:41:00:34:38:76:75:fc:07:1e:ae:6e:89:2f:af:33:1f:
84:3d:32:c4:b2:bd:a9:27:38:89:8f:49:6e:ce:df:f5:57:43:
ea:a3:49:f4:cc:1b:c8:c9:11:c6:0b:53:7f:8e:4a:1e:55:3f:
a3:01:21:cb:ff:01:f4:3f:69:c9:53:81:34:7a:e9:f4:d1:38:
16:48:93:b4:87:84:77:af:ca:03:5e:29:58:6a:1d:96:46:49:
b4:d3:d6:55:22:a9:5e:f7:7d:47:7b:40:fb:e7:26:da:8a:8c:
99:ca:3a:58:d1:0c:98:05:88:b6:9c:bd:19:ed:78:b1:c3:b5:
b8:73:e0:a3:24:1b:c7:91:eb:bb:88:c4:92:2a:20:13:63:f3:
5b:e8:5d:22:85:1b:05:47:b9:67:a7:ea:3b:0f:6a:00:cc:85:
4c:be:65:2d:4a:de:c1:49:4e:27:70:04:6f:02:d9:82:ea:ac:
59:65:96:10:b8:fd:17:8b:08:b9:ac:0a:b0:39:db:97:ff:be:
58:de:25:5e:dc:a7:18:cc:b0:b5:82:66:0d:87:f1:39:00:8a:
0b:36:d8:a6:fa:3a:b0:f9:86:0c:0a:34:09:2b:64:87:3e:34:
06:21:6c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:57 2024 by rpki-client on console-ams.rpki-client.org