Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zz_Jeht3tgk3xWG70_Q7psrEqsI.roa
File: zz_Jeht3tgk3xWG70_Q7psrEqsI.roa (raw, json)
Hash identifier: ySSYexBtEVh9u3uRORXcLKyZIf1ALOuTaP61l50yfp0=
Subject key identifier: CF:3F:C9:7A:1B:77:B6:09:37:C5:61:BB:D3:F4:3B:A6:CA:C4:AA:C2
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01872C0BC11B9C4BC115C226D99F70DD9D50
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zz_Jeht3tgk3xWG70_Q7psrEqsI.roa
Signing time: Wed 29 Mar 2023 06:26:20 +0000
ROA not before: Wed 29 Mar 2023 06:26:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 88.209.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 06:10:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:0b:c1:1b:9c:4b:c1:15:c2:26:d9:9f:70:dd:9d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 29 06:26:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf3fc97a1b77b60937c561bbd3f43ba6cac4aac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:24:68:51:11:fb:9b:3e:6a:22:f2:23:53:7d:
db:2f:fc:76:8c:b7:c5:e4:ba:cf:bc:3c:09:21:fb:
58:20:b2:56:35:c0:85:4d:ac:0f:a4:a1:ed:4a:0f:
08:cd:ab:09:ff:4f:e1:5b:f1:d2:a0:d2:a5:f1:ad:
09:80:bc:ac:18:01:d2:9b:38:7d:f9:77:47:c4:50:
62:8c:9c:72:7f:72:9d:ce:70:5b:16:d6:ba:6b:dd:
1c:c7:df:dc:57:0b:5e:cd:1e:ea:ff:f9:b5:cf:fa:
cf:a5:9e:fb:64:4f:78:ae:fd:b8:bc:35:38:da:fb:
36:8c:6d:1e:b4:98:77:f7:22:33:83:ce:1a:34:72:
2b:c2:1e:9f:31:fc:57:e0:d6:4e:87:7c:8c:7d:dd:
7d:c8:0a:30:d1:5d:eb:c2:8b:30:e9:36:a2:24:da:
1a:89:65:a4:99:f7:97:c0:5c:85:b1:00:01:b4:17:
6f:e4:ac:fd:48:77:14:4d:68:25:bd:be:ac:36:a5:
39:8e:1c:d3:99:31:99:55:41:6b:e2:63:0f:33:8d:
2e:f8:fe:3f:5b:89:db:43:0f:df:d9:fe:6c:cb:2f:
5b:b3:31:48:ce:a8:21:db:d5:6b:c2:8f:26:92:ed:
20:6b:c2:81:29:6d:fc:d8:f6:75:47:58:e9:7a:99:
98:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:3F:C9:7A:1B:77:B6:09:37:C5:61:BB:D3:F4:3B:A6:CA:C4:AA:C2
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zz_Jeht3tgk3xWG70_Q7psrEqsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.209.222.0/24
Signature Algorithm: sha256WithRSAEncryption
59:23:3f:1d:f9:83:a0:8f:1f:91:e9:ae:02:b4:a3:23:77:96:
cb:7b:80:40:26:64:ac:8c:10:a0:1c:80:b5:10:10:7d:16:3a:
15:aa:13:e6:0a:6f:fc:24:9b:53:86:6d:ad:41:2b:38:29:10:
7d:f2:2c:ea:6e:44:11:13:38:00:d1:23:51:35:67:5f:58:e7:
c4:ea:4e:15:58:c8:99:bb:32:7e:21:b6:87:7e:14:7e:37:9e:
1a:39:a1:be:9a:9d:96:ad:c4:2f:f8:a1:15:26:58:f7:46:d3:
d4:e9:ec:9f:10:4e:11:04:7f:96:1f:87:57:5d:56:d7:60:b4:
09:7c:c1:4f:cb:7c:c6:97:39:9c:73:f0:aa:2d:41:a2:06:48:
2e:04:98:ff:8b:32:f6:f9:65:27:30:8a:42:79:f1:d1:18:72:
eb:2f:49:d3:dc:2f:7d:5e:21:7c:7b:c2:49:0e:d1:b5:0c:0c:
ee:25:3f:b1:49:2b:b6:43:07:5a:45:a6:de:99:5b:24:a6:b2:
21:96:a9:05:3e:37:79:4f:62:2f:8b:a1:3b:ff:32:cd:89:e0:
91:4d:b3:7b:21:cf:7e:58:83:88:ac:0d:80:31:e7:f8:9c:51:
97:c7:62:4a:58:69:f3:30:36:36:81:12:c2:ba:3f:7c:7c:9e:
0d:ef:fc:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org