Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/oqSmBFyv0MVDBX80jItgiFFG3Mg.roa
File: oqSmBFyv0MVDBX80jItgiFFG3Mg.roa (raw, json)
Hash identifier: cDhBZuZ9lBH/GdJzD7XuZ7s5q5gSYUuPdOHrjteXQxY=
Subject key identifier: A2:A4:A6:04:5C:AF:D0:C5:43:05:7F:34:8C:8B:60:88:51:46:DC:C8
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01856FD53C2FEC7089BCAA1A2779C70107DF
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/oqSmBFyv0MVDBX80jItgiFFG3Mg.roa
Signing time: Mon 02 Jan 2023 00:15:23 +0000
ROA not before: Mon 02 Jan 2023 00:15:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59995
IP address blocks: 188.212.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:3c:2f:ec:70:89:bc:aa:1a:27:79:c7:01:07:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:15:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2a4a6045cafd0c543057f348c8b60885146dcc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:98:f5:e8:72:92:17:02:6c:bf:56:5d:84:d3:
b3:29:9f:7e:0f:7b:9f:08:4a:c8:28:6c:f7:71:60:
5b:4f:db:c5:25:29:04:30:eb:12:dd:fe:44:0d:eb:
25:9b:f2:1b:6c:8c:75:1d:a5:1f:87:e9:35:53:9f:
67:f1:55:20:99:98:ca:65:6a:bd:f2:27:91:3f:4e:
8d:9a:f7:02:74:c6:d5:44:0f:d0:eb:fd:b0:3c:5c:
80:5d:59:8e:1a:e2:c3:50:b3:4d:cb:64:55:ba:29:
24:0d:ea:3a:3b:e8:fb:14:ef:34:99:d2:a5:e1:66:
9e:6a:a0:a9:6d:03:19:eb:c9:ff:fa:4c:81:1b:92:
21:3a:1c:85:a8:ce:68:4f:08:6b:01:fb:f9:6a:80:
b7:62:fa:6c:1c:fa:f8:d9:4c:0f:11:f8:48:ee:e2:
ea:de:55:a9:fe:05:17:8a:03:53:7c:02:3f:a0:47:
5e:03:12:bd:1d:1e:21:c9:77:f4:7b:e7:e5:60:a7:
0d:5c:04:80:66:11:b2:d6:69:3f:d7:44:86:0d:b1:
ef:73:df:19:27:79:8e:21:af:30:02:df:8b:cc:9c:
f2:4c:a3:41:b7:c8:2c:8b:0f:b4:8b:b0:cc:d6:05:
61:84:71:36:89:ac:ca:a8:06:17:a4:5f:cc:c8:d5:
79:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A4:A6:04:5C:AF:D0:C5:43:05:7F:34:8C:8B:60:88:51:46:DC:C8
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/oqSmBFyv0MVDBX80jItgiFFG3Mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.126.0/24
Signature Algorithm: sha256WithRSAEncryption
00:f6:29:50:23:db:4c:c6:68:d8:1f:41:c6:f8:bd:51:e0:73:
14:0a:de:0a:17:36:a5:ab:10:ab:5f:c6:6c:9d:d8:b1:c6:26:
39:d0:a5:aa:c1:36:4a:10:f7:9a:8e:b2:c6:d9:54:7b:ce:97:
b7:6a:43:5f:2f:f9:38:df:a9:68:54:e4:aa:54:ab:31:db:65:
ee:1b:c4:6f:f4:ec:d3:17:da:85:ae:dd:28:26:03:e2:f8:0c:
4f:d7:30:cd:25:4f:54:5c:cd:f0:81:42:77:87:f2:6f:a1:b1:
ed:09:5e:f0:c8:79:03:34:3c:55:41:84:4a:9f:3b:d9:bc:a9:
b7:3a:12:bf:eb:f2:f7:e0:9e:4a:f9:5a:48:7c:9e:50:43:40:
70:52:12:d2:86:31:fe:43:14:5b:d3:27:7f:43:55:3b:d7:b7:
4d:48:d6:85:14:e3:54:27:5f:eb:74:9a:fe:11:72:8d:95:00:
05:c8:19:cd:f3:6f:ab:fd:95:a0:75:b8:5b:a2:59:b4:cc:eb:
7a:5a:25:a6:4d:70:fe:c3:4d:e1:b5:8b:30:b8:d7:9c:fb:08:
ca:66:0e:6a:01:f6:57:40:37:fe:2c:d0:ac:02:d5:b7:3e:28:
cf:2a:50:47:b8:48:6b:94:60:27:3b:d3:b0:cc:16:33:d8:3e:
04:74:9d:51
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVv1Twv7HCJvKoaJ3nHAQffMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjMwMTAyMDAxNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmE0YTYwNDVjYWZkMGM1NDMwNTdmMzQ4YzhiNjA4ODUxNDZkY2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5j16HKSFwJsv1ZdhNOzKZ9+D3uf
CErIKGz3cWBbT9vFJSkEMOsS3f5EDeslm/IbbIx1HaUfh+k1U59n8VUgmZjKZWq9
8ieRP06NmvcCdMbVRA/Q6/2wPFyAXVmOGuLDULNNy2RVuikkDeo6O+j7FO80mdKl
4WaeaqCpbQMZ68n/+kyBG5IhOhyFqM5oTwhrAfv5aoC3YvpsHPr42UwPEfhI7uLq
3lWp/gUXigNTfAI/oEdeAxK9HR4hyXf0e+flYKcNXASAZhGy1mk/10SGDbHvc98Z
J3mOIa8wAt+LzJzyTKNBt8gsiw+0i7DM1gVhhHE2iazKqAYXpF/MyNV58wIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFKKkpgRcr9DFQwV/NIyLYIhRRtzIMB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL29xU21CRnl2ME1WREJYODBqSXRnaUZGRzNNZy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC81H4w
DQYJKoZIhvcNAQELBQADggEBAAD2KVAj20zGaNgfQcb4vVHgcxQK3goXNqWrEKtf
xmyd2LHGJjnQparBNkoQ95qOssbZVHvOl7dqQ18v+TjfqWhU5KpUqzHbZe4bxG/0
7NMX2oWu3SgmA+L4DE/XMM0lT1RczfCBQneH8m+hse0JXvDIeQM0PFVBhEqfO9m8
qbc6Er/r8vfgnkr5Wkh8nlBDQHBSEtKGMf5DFFvTJ39DVTvXt01I1oUU41QnX+t0
mv4Rco2VAAXIGc3zb6v9laB1uFuiWbTM63paJaZNcP7DTeG1izC415z7CMpmDmoB
9ldAN/4s0KwC1bc+KM8qUEe4SGuUYCc707DMFjPYPgR0nVE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:42 2024 by rpki-client on console-fra.rpki-client.org