Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xY6mi34YsKQo4Wt-ZHyyszgN0dw.roa
File: xY6mi34YsKQo4Wt-ZHyyszgN0dw.roa (raw, json)
Hash identifier: FkRAyZEAstkNCEiExqoWFv9EGiZrOy/CAAnroMXUj6c=
Subject key identifier: C5:8E:A6:8B:7E:18:B0:A4:28:E1:6B:7E:64:7C:B2:B3:38:0D:D1:DC
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 0186EE67D56A9761CA634679D1CE4B3AD2B1
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xY6mi34YsKQo4Wt-ZHyyszgN0dw.roa
Signing time: Fri 17 Mar 2023 07:10:27 +0000
ROA not before: Fri 17 Mar 2023 07:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 88.209.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 06:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ee:67:d5:6a:97:61:ca:63:46:79:d1:ce:4b:3a:d2:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 17 07:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c58ea68b7e18b0a428e16b7e647cb2b3380dd1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5d:3b:f7:d1:2e:18:34:b7:b8:a5:5c:33:46:
b1:3c:99:53:19:83:ab:f7:85:e3:89:b5:89:73:ee:
1a:f1:81:5f:0d:ef:f0:3e:3f:d6:f8:81:ff:0b:fd:
85:03:bf:57:26:95:32:42:ef:65:80:c1:1c:4f:b0:
8d:aa:0b:35:e6:10:6a:d9:87:9e:49:39:07:f3:1e:
a0:88:5a:72:3e:7c:5b:9c:e2:a2:47:14:42:39:13:
13:13:de:e6:63:cb:03:20:17:c3:3f:0b:b1:7e:97:
f9:19:82:55:54:f4:a1:e5:1d:d6:84:6c:fb:7a:b7:
ed:b9:2f:99:5e:5a:d1:58:27:4f:51:a4:3a:c5:e0:
a4:83:95:2e:a0:48:ed:8f:a8:d0:f2:bf:cb:b0:16:
02:74:1a:78:51:89:3c:c0:85:25:a5:7c:df:4f:84:
38:8c:8c:e6:f6:29:8e:2d:af:f2:eb:a3:af:f2:d5:
7b:32:b9:86:e9:d9:ce:81:a3:1a:48:82:c0:4c:f2:
e9:7c:71:47:50:4f:43:30:54:f9:4d:65:94:dc:66:
f0:df:12:03:6f:8f:ec:f0:66:88:9a:8b:c9:dc:a8:
1d:ec:74:d3:58:87:75:c6:4b:ca:26:31:eb:99:0e:
18:75:f0:fd:3e:d6:22:3f:ab:04:33:9f:28:7a:21:
14:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8E:A6:8B:7E:18:B0:A4:28:E1:6B:7E:64:7C:B2:B3:38:0D:D1:DC
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/xY6mi34YsKQo4Wt-ZHyyszgN0dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.198.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d4:80:f7:72:90:6f:48:92:a9:01:e6:2d:01:7b:40:16:95:
79:99:09:67:43:eb:22:c8:88:dc:71:9e:aa:e0:4e:d7:73:8b:
c7:4f:dd:25:e3:24:c6:c7:53:a7:ca:fb:19:a8:02:a3:3b:a6:
23:af:c0:fb:82:8f:9c:cc:5f:6a:04:ed:ec:e3:c4:db:9f:a7:
b1:53:cb:f7:ef:73:05:c3:45:1b:3b:da:3c:74:23:f0:6f:40:
ab:5b:22:e0:72:42:54:2d:34:6c:e3:f8:4a:8a:25:ab:6d:cc:
cb:27:d6:b7:68:75:b4:d1:7e:99:53:3a:fc:88:3e:eb:e5:ed:
33:15:3b:40:52:bb:b4:3b:fa:04:f3:b0:44:98:8b:11:ba:ab:
e8:30:d6:2d:37:bf:9d:14:67:b6:a8:74:78:6e:08:1d:da:ff:
e1:0f:5c:02:c3:0b:99:a6:05:71:e7:8d:9a:e5:f5:68:cf:9e:
da:81:e3:60:69:a4:a9:24:fc:64:d6:ff:06:7d:ab:73:41:37:
f7:8d:db:9a:24:5e:ed:7e:a3:0c:b5:86:42:2e:28:07:cf:91:
ed:9f:ef:75:5d:f0:23:db:6a:3e:48:14:06:df:d3:6e:ed:42:
80:64:02:d6:73:dd:dc:d5:74:6b:ed:84:63:ed:b7:f2:ec:ec:
38:f9:32:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbuZ9Vql2HKY0Z50c5LOtKxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMzE3MDcxMDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNThlYTY4YjdlMThiMGE0MjhlMTZiN2U2NDdjYjJiMzM4MGRkMWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk10799EuGDS3uKVcM0axPJlTGYOr
94XjibWJc+4a8YFfDe/wPj/W+IH/C/2FA79XJpUyQu9lgMEcT7CNqgs15hBq2Yee
STkH8x6giFpyPnxbnOKiRxRCORMTE97mY8sDIBfDPwuxfpf5GYJVVPSh5R3WhGz7
erftuS+ZXlrRWCdPUaQ6xeCkg5UuoEjtj6jQ8r/LsBYCdBp4UYk8wIUlpXzfT4Q4
jIzm9imOLa/y66Ov8tV7MrmG6dnOgaMaSILATPLpfHFHUE9DMFT5TWWU3Gbw3xID
b4/s8GaImovJ3Kgd7HTTWId1xkvKJjHrmQ4YdfD9PtYiP6sEM58oeiEUZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMWOpot+GLCkKOFrfmR8srM4DdHcMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEveFk2bWkzNFlzS1FvNFd0LVpIeXlzemdOMGR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNHGMA0G
CSqGSIb3DQEBCwUAA4IBAQA21ID3cpBvSJKpAeYtAXtAFpV5mQlnQ+siyIjccZ6q
4E7Xc4vHT90l4yTGx1OnyvsZqAKjO6Yjr8D7go+czF9qBO3s48Tbn6exU8v373MF
w0UbO9o8dCPwb0CrWyLgckJULTRs4/hKiiWrbczLJ9a3aHW00X6ZUzr8iD7r5e0z
FTtAUru0O/oE87BEmIsRuqvoMNYtN7+dFGe2qHR4bggd2v/hD1wCwwuZpgVx542a
5fVoz57ageNgaaSpJPxk1v8GfatzQTf3jduaJF7tfqMMtYZCLigHz5Htn+91XfAj
22o+SBQG39Nu7UKAZALWc93c1XRr7YRj7bfy7Ow4+TIk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:57 2024 by rpki-client on console-ams.rpki-client.org