Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/4iu1RMz6dgKTuV90aPO3KPQN7xk.roa
File: 4iu1RMz6dgKTuV90aPO3KPQN7xk.roa (raw, json)
Hash identifier: wBnUYWin41bBHaVFLWc0a1ZyLOg1Ufxy1cf6+hHSoMY=
Subject key identifier: E2:2B:B5:44:CC:FA:76:02:93:B9:5F:74:68:F3:B7:28:F4:0D:EF:19
Certificate issuer: /CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Certificate serial: 018A83A2F7AA17287053EEEACE505DCE360A
Authority key identifier: 65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/4iu1RMz6dgKTuV90aPO3KPQN7xk.roa
Signing time: Mon 11 Sep 2023 09:46:50 +0000
ROA not before: Mon 11 Sep 2023 09:46:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 188.126.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 08:55:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:a2:f7:aa:17:28:70:53:ee:ea:ce:50:5d:ce:36:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e226bcf4a830b2f448fd6ea9976b152087dd45
Validity
Not Before: Sep 11 09:46:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e22bb544ccfa760293b95f7468f3b728f40def19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5c:64:c6:f1:02:5a:23:f3:06:da:42:81:27:
f1:4c:34:3a:67:21:65:75:d1:8c:f0:66:c9:b7:4d:
b7:6a:ca:2d:4e:f6:23:ce:aa:62:64:01:ed:70:07:
47:d1:57:6d:77:ea:d9:e1:e2:e0:67:8e:78:0b:68:
90:3d:45:f8:13:22:67:21:1a:09:5e:14:d4:1e:6f:
2b:32:3a:4c:ba:2c:4b:27:4a:25:88:b2:23:8f:69:
87:ee:a1:31:c3:cd:23:2f:9a:96:37:6e:22:cf:2c:
d5:a5:d7:7e:59:b0:85:25:30:47:d5:2e:15:cd:16:
71:c8:9b:ff:a4:27:29:6c:c3:c4:c9:61:46:96:fe:
47:de:db:f0:12:68:14:d9:97:c3:c0:dc:fa:94:f2:
31:65:fd:7e:f9:86:1f:4d:50:95:15:e1:07:c2:26:
ac:fb:bb:7d:d4:90:42:86:33:59:96:53:29:70:81:
90:a6:7b:17:15:78:9e:3b:f5:d1:52:6e:cb:0b:ce:
b7:a0:a0:2a:52:14:09:56:ea:72:06:7b:09:f5:40:
94:aa:24:52:26:cb:8f:18:d1:8c:a5:ca:fb:69:4f:
2c:50:f7:18:b4:60:b5:4c:62:30:98:21:32:6a:f4:
74:f7:a0:9c:a0:eb:ec:da:d9:a4:19:19:8f:29:72:
9c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:2B:B5:44:CC:FA:76:02:93:B9:5F:74:68:F3:B7:28:F4:0D:EF:19
X509v3 Authority Key Identifier:
keyid:65:E2:26:BC:F4:A8:30:B2:F4:48:FD:6E:A9:97:6B:15:20:87:DD:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeImvPSoMLL0SP1uqZdrFSCH3UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/4iu1RMz6dgKTuV90aPO3KPQN7xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f5873a-8932-426f-8175-38c8dafb3e4f/1/ZeImvPSoMLL0SP1uqZdrFSCH3UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.126.16.0/24
Signature Algorithm: sha256WithRSAEncryption
10:67:64:70:c2:0a:e9:85:cd:09:20:ce:4a:2a:7b:c3:76:16:
92:11:17:2c:b2:17:51:32:63:f2:74:45:64:7e:bb:ac:09:eb:
41:90:21:99:b0:50:f6:45:e9:85:c5:2b:c2:67:6f:f2:ca:9f:
50:fa:fc:1f:de:71:3e:51:98:bc:1c:9d:1c:c1:63:2e:69:5f:
b6:17:85:4f:27:e7:fc:90:4d:54:93:e8:a0:74:f1:ba:83:2b:
fc:9e:c7:c4:da:a7:40:72:4b:5a:91:8b:7f:3e:b8:46:4a:33:
de:d5:80:90:23:be:9e:ae:60:86:a9:93:93:47:94:62:3d:8f:
67:f0:e4:5f:99:96:7e:f0:c2:42:27:73:90:15:09:38:b5:ee:
f3:81:9d:c8:6b:4f:bc:1f:ee:8c:93:00:bb:e7:47:f3:9f:29:
7b:6a:85:ec:c5:bd:ee:2c:1f:4f:51:c7:eb:8a:0b:f6:13:2d:
46:74:98:b1:70:ea:23:f6:16:0f:6d:2b:60:b3:71:d9:14:25:
70:c9:da:35:a1:18:49:e2:24:52:f1:65:06:23:9a:3f:63:98:
6a:a7:f5:b4:0f:6f:54:b5:64:2c:2c:4e:e2:bb:9b:96:81:8c:
cb:7c:f6:49:74:7d:fb:1d:3d:2b:66:ae:d2:2b:7b:5d:ea:19:
c1:fe:7b:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqDoveqFyhwU+7qzlBdzjYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZTIyNmJjZjRhODMwYjJmNDQ4ZmQ2ZWE5OTc2YjE1MjA4
N2RkNDUwHhcNMjMwOTExMDk0NjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjJiYjU0NGNjZmE3NjAyOTNiOTVmNzQ2OGYzYjcyOGY0MGRlZjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1xkxvECWiPzBtpCgSfxTDQ6ZyFl
ddGM8GbJt023asotTvYjzqpiZAHtcAdH0Vdtd+rZ4eLgZ454C2iQPUX4EyJnIRoJ
XhTUHm8rMjpMuixLJ0oliLIjj2mH7qExw80jL5qWN24izyzVpdd+WbCFJTBH1S4V
zRZxyJv/pCcpbMPEyWFGlv5H3tvwEmgU2ZfDwNz6lPIxZf1++YYfTVCVFeEHwias
+7t91JBChjNZllMpcIGQpnsXFXieO/XRUm7LC863oKAqUhQJVupyBnsJ9UCUqiRS
JsuPGNGMpcr7aU8sUPcYtGC1TGIwmCEyavR096CcoOvs2tmkGRmPKXKcjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOIrtUTM+nYCk7lfdGjztyj0De8ZMB8GA1UdIwQY
MBaAFGXiJrz0qDCy9Ej9bqmXaxUgh91FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmVJbXZQU29NTEwwU1AxdXFaZHJGU0NIM1VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mNTg3M2EtODkzMi00MjZmLTgxNzUt
MzhjOGRhZmIzZTRmLzEvNGl1MVJNejZkZ0tUdVY5MGFQTzNLUFFON3hrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mNTg3M2EtODkzMi00MjZmLTgxNzUtMzhjOGRhZmIzZTRm
LzEvWmVJbXZQU29NTEwwU1AxdXFaZHJGU0NIM1VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvH4QMA0G
CSqGSIb3DQEBCwUAA4IBAQAQZ2Rwwgrphc0JIM5KKnvDdhaSERcsshdRMmPydEVk
frusCetBkCGZsFD2RemFxSvCZ2/yyp9Q+vwf3nE+UZi8HJ0cwWMuaV+2F4VPJ+f8
kE1Uk+igdPG6gyv8nsfE2qdAcktakYt/PrhGSjPe1YCQI76ermCGqZOTR5RiPY9n
8ORfmZZ+8MJCJ3OQFQk4te7zgZ3Ia0+8H+6MkwC750fznyl7aoXsxb3uLB9PUcfr
igv2Ey1GdJixcOoj9hYPbStgs3HZFCVwydo1oRhJ4iRS8WUGI5o/Y5hqp/W0D29U
tWQsLE7iu5uWgYzLfPZJdH37HT0rZq7SK3td6hnB/ntQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:08 2024 by rpki-client on console-ams.rpki-client.org