Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/hIccytX9HC_NCxMzRQsBKQY-D3o.roa
File: hIccytX9HC_NCxMzRQsBKQY-D3o.roa (raw, json)
Hash identifier: HrmJjV6EClU2Yhu15FGj91HxvLFGUdmK0erEsVn6G38=
Subject key identifier: 84:87:1C:CA:D5:FD:1C:2F:CD:0B:13:33:45:0B:01:29:06:3E:0F:7A
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEED35DEC498EE9BB2654276C3D4F36
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/hIccytX9HC_NCxMzRQsBKQY-D3o.roa
Signing time: Sun 01 Jan 2023 06:04:51 +0000
ROA not before: Sun 01 Jan 2023 06:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203369
IP address blocks: 188.114.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:d3:5d:ec:49:8e:e9:bb:26:54:27:6c:3d:4f:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84871ccad5fd1c2fcd0b1333450b0129063e0f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ea:71:9d:7f:f3:14:58:7d:e2:bd:09:5d:13:
cd:9d:b9:47:87:80:ca:a1:9b:6e:c4:19:cb:a7:d6:
c7:56:ad:49:86:f5:72:c3:7d:40:0a:3f:d0:87:e8:
5e:4d:ac:75:95:4d:1e:af:89:31:b7:19:68:4e:b4:
f7:6c:4c:6e:c9:f9:0c:86:72:64:90:57:3b:52:3c:
f8:90:02:81:ad:02:7a:9b:12:bb:3c:87:ac:ef:1d:
ef:b7:c0:02:bc:0e:63:e5:2c:ea:ae:61:cd:00:70:
8d:50:5f:90:1a:40:14:8b:86:ae:ec:08:9f:ca:97:
cf:72:ba:22:1f:4f:83:19:1e:61:fc:21:16:6a:d4:
6a:74:fe:c4:2f:8c:d0:a8:1f:8c:1b:e5:66:7b:72:
5e:41:f0:8e:2b:bf:1f:d5:35:b3:6e:6e:83:1a:33:
ab:fa:c1:fe:c7:f6:97:0a:34:6b:0e:da:76:09:58:
d2:a2:e3:ab:2e:d9:60:bd:c7:75:6c:59:74:3e:db:
1a:51:a4:ec:8f:ed:04:2c:73:00:b6:08:3e:83:ff:
c9:c6:e6:9b:b2:50:bb:f4:01:a7:99:c5:b9:a7:0a:
d6:97:e1:66:23:86:95:88:35:cb:71:74:1e:cc:84:
ec:fb:ca:15:08:0e:d6:65:ab:7b:5d:b1:88:5e:50:
58:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:87:1C:CA:D5:FD:1C:2F:CD:0B:13:33:45:0B:01:29:06:3E:0F:7A
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/hIccytX9HC_NCxMzRQsBKQY-D3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.114.67.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d1:b0:be:6b:ab:9f:4c:c9:c5:23:f6:5a:47:6f:6b:4f:86:
43:02:f6:6e:2e:77:81:71:97:33:9b:61:d2:25:fa:57:f7:83:
bd:01:d8:ac:a0:b4:98:7a:ae:a1:bc:a4:7b:92:50:c7:f6:bb:
63:58:bf:13:73:e6:64:04:9b:75:43:25:df:ba:16:53:9e:e9:
76:ae:2e:28:0b:35:bc:a2:34:16:41:24:42:f6:b1:c3:3b:30:
e6:0d:95:ca:af:56:09:c3:d3:ca:7c:d9:1d:b4:f3:5c:d1:95:
69:27:3a:bf:fe:45:b2:cc:4d:81:a3:3a:3d:cd:4e:fa:45:54:
9d:2c:d3:00:79:4d:ef:85:c0:dc:b2:b9:ec:6c:30:18:2c:ac:
be:5e:a6:bd:59:d9:36:cd:9d:31:7c:f3:e9:4e:3d:d9:90:7f:
8e:df:be:7f:23:d7:1a:e8:83:28:36:2f:69:e8:3d:08:0f:38:
d4:bc:e0:6a:76:ea:dd:f3:45:2c:ad:37:3a:70:6c:64:24:0c:
b3:0d:1e:27:aa:36:18:70:0a:59:3e:dd:6d:2e:7b:15:7c:79:
bd:8f:06:2a:cc:4e:33:ab:fb:e3:25:f0:25:79:ac:ba:c1:82:
12:38:db:a6:a6:af:a9:e3:de:e4:e1:f5:54:c3:5b:91:c9:da:
37:30:d3:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7tNd7EmO6bsmVCdsPU82MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwMTAxMDYwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDg3MWNjYWQ1ZmQxYzJmY2QwYjEzMzM0NTBiMDEyOTA2M2UwZjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjepxnX/zFFh94r0JXRPNnblHh4DK
oZtuxBnLp9bHVq1JhvVyw31ACj/Qh+heTax1lU0er4kxtxloTrT3bExuyfkMhnJk
kFc7Ujz4kAKBrQJ6mxK7PIes7x3vt8ACvA5j5SzqrmHNAHCNUF+QGkAUi4au7Aif
ypfPcroiH0+DGR5h/CEWatRqdP7EL4zQqB+MG+Vme3JeQfCOK78f1TWzbm6DGjOr
+sH+x/aXCjRrDtp2CVjSouOrLtlgvcd1bFl0PtsaUaTsj+0ELHMAtgg+g//Jxuab
slC79AGnmcW5pwrWl+FmI4aViDXLcXQezITs+8oVCA7WZat7XbGIXlBYywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFISHHMrV/RwvzQsTM0ULASkGPg96MB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvaEljY3l0WDlIQ19OQ3hNelJRc0JLUVktRDNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvHJDMA0G
CSqGSIb3DQEBCwUAA4IBAQBu0bC+a6ufTMnFI/ZaR29rT4ZDAvZuLneBcZczm2HS
JfpX94O9AdisoLSYeq6hvKR7klDH9rtjWL8Tc+ZkBJt1QyXfuhZTnul2ri4oCzW8
ojQWQSRC9rHDOzDmDZXKr1YJw9PKfNkdtPNc0ZVpJzq//kWyzE2Bozo9zU76RVSd
LNMAeU3vhcDcsrnsbDAYLKy+Xqa9Wdk2zZ0xfPPpTj3ZkH+O375/I9ca6IMoNi9p
6D0IDzjUvOBqdurd80UsrTc6cGxkJAyzDR4nqjYYcApZPt1tLnsVfHm9jwYqzE4z
q/vjJfAleay6wYISONumpq+p497k4fVUw1uRydo3MNOi
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org