Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/336198-3e7b-4615-bcea-4a545b116880/1/IETk5ZlJ-LjDgJCyZnTTZ9rbOZ4.roa
File: IETk5ZlJ-LjDgJCyZnTTZ9rbOZ4.roa (raw, json)
Hash identifier: ISWgLnHRiEJRTmVLSfbLt2sZRZvwj3qSnx7Tj14r7gU=
Subject key identifier: 20:44:E4:E5:99:49:F8:B8:C3:80:90:B2:66:74:D3:67:DA:DB:39:9E
Certificate issuer: /CN=b68b42922d387c578fa57692487f2a19068589ba
Certificate serial: 01856CCAD5C7FEF5A9CFB32A306147F24801
Authority key identifier: B6:8B:42:92:2D:38:7C:57:8F:A5:76:92:48:7F:2A:19:06:85:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/totCki04fFePpXaSSH8qGQaFibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/336198-3e7b-4615-bcea-4a545b116880/1/IETk5ZlJ-LjDgJCyZnTTZ9rbOZ4.roa
Signing time: Sun 01 Jan 2023 10:05:10 +0000
ROA not before: Sun 01 Jan 2023 10:05:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209582
IP address blocks: 188.190.108.0/22 maxlen: 22
2a0d:d1c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:d5:c7:fe:f5:a9:cf:b3:2a:30:61:47:f2:48:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b68b42922d387c578fa57692487f2a19068589ba
Validity
Not Before: Jan 1 10:05:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2044e4e59949f8b8c38090b26674d367dadb399e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7d:fd:b2:13:5c:a9:a6:1e:25:8b:85:44:8b:
1c:0f:47:74:43:9d:83:16:91:59:bb:f7:50:63:3c:
a4:8b:79:da:d0:ea:e6:2f:2b:15:26:10:bb:3b:05:
77:bd:a8:8b:a1:97:de:ae:41:fa:e5:7b:16:30:ec:
34:4b:fc:a1:07:7a:61:f0:a8:fb:04:82:b7:e2:93:
5d:dc:c9:a8:d7:81:04:a8:3a:40:a6:00:11:90:e8:
8c:56:77:5e:89:ec:11:91:16:0b:f3:2c:ce:45:44:
ce:d3:4f:9b:48:b7:7f:5a:22:d4:83:fa:08:02:7a:
12:43:27:e6:99:95:9c:11:46:bf:0a:67:09:ab:b6:
7d:71:17:27:f1:ea:a9:6f:91:59:d3:24:a1:2b:b0:
7a:81:73:09:b5:4d:37:e1:52:5e:11:b0:ab:2d:4e:
bc:74:d6:2b:69:c7:92:0f:e0:f9:be:86:7e:09:6b:
a0:72:c0:d2:3d:5f:ff:81:fd:a9:62:c8:95:c8:af:
7e:b9:14:b7:dc:70:9e:11:87:28:1b:74:44:1f:8c:
00:d5:73:9f:b3:b0:5f:b2:cc:30:ff:97:ae:7a:5e:
35:77:1f:98:c3:e2:fd:08:63:6a:ec:bf:b5:88:57:
80:b0:67:f9:8a:33:8b:e5:d7:5e:a5:12:3f:11:f2:
8c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:44:E4:E5:99:49:F8:B8:C3:80:90:B2:66:74:D3:67:DA:DB:39:9E
X509v3 Authority Key Identifier:
keyid:B6:8B:42:92:2D:38:7C:57:8F:A5:76:92:48:7F:2A:19:06:85:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/totCki04fFePpXaSSH8qGQaFibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/336198-3e7b-4615-bcea-4a545b116880/1/IETk5ZlJ-LjDgJCyZnTTZ9rbOZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/336198-3e7b-4615-bcea-4a545b116880/1/totCki04fFePpXaSSH8qGQaFibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.190.108.0/22
IPv6:
2a0d:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
11:87:f9:3c:0c:a1:29:12:a2:28:47:5b:00:be:34:3e:78:7a:
e6:95:c3:cb:cb:38:40:ce:ac:75:02:e1:35:60:2e:9b:8d:41:
5b:5e:91:6d:52:59:52:92:47:d0:cc:93:d5:7e:fb:ab:1c:0d:
ef:f1:bf:06:df:8d:56:28:83:d6:8c:00:fa:d8:35:b7:28:81:
4d:3b:51:c6:5e:a0:59:76:cc:67:ff:d9:28:59:91:11:bf:2c:
5d:d0:cb:64:26:0d:67:bb:cd:ba:8f:bf:3f:d1:20:cd:83:bd:
e7:2f:f5:a1:38:f6:bf:b2:8d:d4:d8:d0:09:bc:1c:88:bf:2c:
1c:b6:da:f5:35:e1:63:a1:e7:30:f4:02:f7:07:2a:6b:55:53:
b8:d7:d0:28:da:21:66:23:f9:86:87:b0:4d:1f:28:07:d7:29:
84:9c:2a:67:d3:c5:e6:ad:81:a3:ed:bd:9a:08:b7:ea:90:2b:
cd:a2:cd:88:c5:0c:34:e0:ca:06:8e:5a:70:df:c9:15:c6:ad:
23:79:69:2f:ae:99:38:87:e7:47:10:21:37:1b:4e:21:c1:01:
10:56:10:78:f2:94:71:7e:ff:ae:e3:c6:8a:90:f6:c9:d2:ae:
33:5f:d7:8b:99:4a:5c:27:c1:09:a0:ba:7c:9f:d6:76:dc:41:
f4:26:53:39
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVsytXH/vWpz7MqMGFH8kgBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OGI0MjkyMmQzODdjNTc4ZmE1NzY5MjQ4N2YyYTE5MDY4
NTg5YmEwHhcNMjMwMTAxMTAwNTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDQ0ZTRlNTk5NDlmOGI4YzM4MDkwYjI2Njc0ZDM2N2RhZGIzOTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqH39shNcqaYeJYuFRIscD0d0Q52D
FpFZu/dQYzyki3na0OrmLysVJhC7OwV3vaiLoZferkH65XsWMOw0S/yhB3ph8Kj7
BIK34pNd3Mmo14EEqDpApgARkOiMVndeiewRkRYL8yzORUTO00+bSLd/WiLUg/oI
AnoSQyfmmZWcEUa/CmcJq7Z9cRcn8eqpb5FZ0yShK7B6gXMJtU034VJeEbCrLU68
dNYraceSD+D5voZ+CWugcsDSPV//gf2pYsiVyK9+uRS33HCeEYcoG3REH4wA1XOf
s7Bfssww/5euel41dx+Yw+L9CGNq7L+1iFeAsGf5ijOL5ddepRI/EfKMgQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFCBE5OWZSfi4w4CQsmZ002fa2zmeMB8GA1UdIwQY
MBaAFLaLQpItOHxXj6V2kkh/KhkGhYm6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG90Q2tpMDRmRmVQcFhhU1NIOHFHUWFGaWJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS8zMzYxOTgtM2U3Yi00NjE1LWJjZWEt
NGE1NDViMTE2ODgwLzEvSUVUazVabEotTGpEZ0pDeVpuVFRaOXJiT1o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS8zMzYxOTgtM2U3Yi00NjE1LWJjZWEtNGE1NDViMTE2ODgw
LzEvdG90Q2tpMDRmRmVQcFhhU1NIOHFHUWFGaWJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCvL5sMA0E
AgACMAcDBQAqDdHAMA0GCSqGSIb3DQEBCwUAA4IBAQARh/k8DKEpEqIoR1sAvjQ+
eHrmlcPLyzhAzqx1AuE1YC6bjUFbXpFtUllSkkfQzJPVfvurHA3v8b8G341WKIPW
jAD62DW3KIFNO1HGXqBZdsxn/9koWZERvyxd0MtkJg1nu826j78/0SDNg73nL/Wh
OPa/so3U2NAJvByIvywcttr1NeFjoecw9AL3ByprVVO419Ao2iFmI/mGh7BNHygH
1ymEnCpn08XmrYGj7b2aCLfqkCvNos2IxQw04MoGjlpw38kVxq0jeWkvrpk4h+dH
ECE3G04hwQEQVhB48pRxfv+u48aKkPbJ0q4zX9eLmUpcJ8EJoLp8n9Z23EH0JlM5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:24 2024 by rpki-client on console-ams.rpki-client.org