Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/4zYKvszRilGJPGvxxMnOJe7OeLI.roa
File: 4zYKvszRilGJPGvxxMnOJe7OeLI.roa (raw, json)
Hash identifier: tScUUFs2Zfh03x1fwZ0sOqnItySWznfDIPMir6m74eM=
Subject key identifier: E3:36:0A:BE:CC:D1:8A:51:89:3C:6B:F1:C4:C9:CE:25:EE:CE:78:B2
Certificate issuer: /CN=8a26f476d608625ad1fe06e52b974a9f66f0141a
Certificate serial: 0185718C2C6428646048DDA187AAC6050007
Authority key identifier: 8A:26:F4:76:D6:08:62:5A:D1:FE:06:E5:2B:97:4A:9F:66:F0:14:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/4zYKvszRilGJPGvxxMnOJe7OeLI.roa
Signing time: Mon 02 Jan 2023 08:14:49 +0000
ROA not before: Mon 02 Jan 2023 08:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31651
IP address blocks: 81.88.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:2c:64:28:64:60:48:dd:a1:87:aa:c6:05:00:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a26f476d608625ad1fe06e52b974a9f66f0141a
Validity
Not Before: Jan 2 08:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3360abeccd18a51893c6bf1c4c9ce25eece78b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:86:f6:7a:ab:f3:df:14:d7:8f:aa:97:98:0d:
36:4d:2e:08:e0:6f:01:80:52:39:e2:46:db:55:52:
35:ec:0b:d2:2e:45:23:5f:f2:ab:f7:25:2e:88:b9:
2f:c4:b4:3f:1b:fa:37:fe:f9:af:1b:41:00:0b:dd:
d6:c9:00:d9:23:5c:c0:8d:6f:2f:41:36:3d:4b:7a:
c4:f1:5b:fc:ff:9e:d5:f1:87:9e:22:4f:52:c3:93:
00:c1:3b:cf:b6:4a:7c:60:97:9d:16:97:44:bd:6c:
c2:2d:c6:f7:7f:f1:d6:a6:5b:e0:87:4b:03:3d:1e:
08:75:fe:d9:cc:be:59:2a:b2:b9:79:8d:16:c1:ab:
10:e6:a3:aa:f4:e7:2f:0b:88:16:8a:e9:e9:27:01:
70:1f:03:93:50:01:0c:99:57:d0:cd:7f:2c:a1:1b:
77:d8:c2:d7:3e:ed:3d:43:c9:37:23:0f:ca:05:a0:
82:32:89:23:99:bc:33:57:6c:d5:82:41:a6:a5:42:
4c:04:ef:32:01:29:c5:a7:bf:a1:e7:fb:23:c0:64:
9b:cc:4b:ca:df:a2:c3:5b:1a:43:f6:1c:60:f5:a5:
c2:f0:96:1e:e1:6d:63:fd:c6:65:1b:0f:c3:cd:f0:
55:d9:d1:50:42:cb:d9:8f:3b:1c:e8:12:1f:e5:e6:
bf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:36:0A:BE:CC:D1:8A:51:89:3C:6B:F1:C4:C9:CE:25:EE:CE:78:B2
X509v3 Authority Key Identifier:
keyid:8A:26:F4:76:D6:08:62:5A:D1:FE:06:E5:2B:97:4A:9F:66:F0:14:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/4zYKvszRilGJPGvxxMnOJe7OeLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/iib0dtYIYlrR_gblK5dKn2bwFBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.88.108.0/22
Signature Algorithm: sha256WithRSAEncryption
09:26:30:f0:f3:a4:22:8a:8b:ce:7f:e4:52:19:e0:5b:ae:b0:
39:f7:60:01:04:87:f1:94:5d:21:85:05:09:f8:2d:08:2e:60:
f5:08:95:46:0e:bd:fe:82:6f:84:d7:63:6f:c2:d1:75:f5:23:
c7:9f:ad:dd:da:bb:d1:e9:46:a3:37:17:5a:99:bc:46:cc:7b:
58:02:f4:fd:29:a0:3c:d3:9e:e1:d0:6b:30:82:59:6b:d6:9e:
16:f3:97:61:16:aa:76:b5:55:ba:c3:2b:b7:51:02:6c:1a:7c:
e6:b5:32:a9:48:8f:38:e1:ed:22:3e:60:22:d6:5d:51:d7:1a:
27:16:f6:1d:79:7e:79:18:ef:22:0f:4e:1b:f8:05:7e:62:33:
7a:4d:5a:ea:26:6e:8d:be:40:f3:10:0e:06:08:c2:ff:c2:ea:
41:71:36:f0:23:d6:30:b8:27:a6:7a:40:13:6b:6d:c4:ae:53:
1a:82:04:24:94:de:cd:05:6f:cc:0e:38:76:51:38:71:e4:db:
c3:eb:43:86:e4:4c:f4:8c:e1:dd:4a:8e:a2:7e:66:45:12:b5:
d3:51:18:07:08:88:29:f4:ec:6b:be:b7:17:90:de:08:d0:e0:
52:e9:33:2a:a1:34:9c:37:72:f9:42:a0:d9:c5:08:1a:cb:05:
69:0f:03:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxjCxkKGRgSN2hh6rGBQAHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMjZmNDc2ZDYwODYyNWFkMWZlMDZlNTJiOTc0YTlmNjZm
MDE0MWEwHhcNMjMwMTAyMDgxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzM2MGFiZWNjZDE4YTUxODkzYzZiZjFjNGM5Y2UyNWVlY2U3OGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIb2eqvz3xTXj6qXmA02TS4I4G8B
gFI54kbbVVI17AvSLkUjX/Kr9yUuiLkvxLQ/G/o3/vmvG0EAC93WyQDZI1zAjW8v
QTY9S3rE8Vv8/57V8YeeIk9Sw5MAwTvPtkp8YJedFpdEvWzCLcb3f/HWplvgh0sD
PR4Idf7ZzL5ZKrK5eY0WwasQ5qOq9OcvC4gWiunpJwFwHwOTUAEMmVfQzX8soRt3
2MLXPu09Q8k3Iw/KBaCCMokjmbwzV2zVgkGmpUJMBO8yASnFp7+h5/sjwGSbzEvK
36LDWxpD9hxg9aXC8JYe4W1j/cZlGw/DzfBV2dFQQsvZjzsc6BIf5ea/owIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOM2Cr7M0YpRiTxr8cTJziXuzniyMB8GA1UdIwQY
MBaAFIom9HbWCGJa0f4G5SuXSp9m8BQaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWliMGR0WUlZbHJSX2dibEs1ZEtuMmJ3RkJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9hNjZmMmQtY2EyZi00YmNhLWIyN2It
ZDg0NmQxMDZiNWY3LzEvNHpZS3ZzelJpbEdKUEd2eHhNbk9KZTdPZUxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9hNjZmMmQtY2EyZi00YmNhLWIyN2ItZDg0NmQxMDZiNWY3
LzEvaWliMGR0WUlZbHJSX2dibEs1ZEtuMmJ3RkJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCUVhsMA0G
CSqGSIb3DQEBCwUAA4IBAQAJJjDw86QiiovOf+RSGeBbrrA592ABBIfxlF0hhQUJ
+C0ILmD1CJVGDr3+gm+E12NvwtF19SPHn63d2rvR6UajNxdambxGzHtYAvT9KaA8
057h0Gswgllr1p4W85dhFqp2tVW6wyu3UQJsGnzmtTKpSI844e0iPmAi1l1R1xon
FvYdeX55GO8iD04b+AV+YjN6TVrqJm6NvkDzEA4GCML/wupBcTbwI9YwuCemekAT
a23ErlMaggQklN7NBW/MDjh2UThx5NvD60OG5Ez0jOHdSo6ifmZFErXTURgHCIgp
9OxrvrcXkN4I0OBS6TMqoTScN3L5QqDZxQgaywVpDwO3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:34 2024 by rpki-client on console-ams.rpki-client.org