Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/34244d-03c8-4780-87c3-45e696a5ae45/1/I5TEMSGE2aZr5o7XYBO6en2rCmk.roa
File: I5TEMSGE2aZr5o7XYBO6en2rCmk.roa (raw, json)
Hash identifier: zgyazTdHrRDJkEnjTmzb0cBY2T0yFPhtnO3/h+z3RaI=
Subject key identifier: 23:94:C4:31:21:84:D9:A6:6B:E6:8E:D7:60:13:BA:7A:7D:AB:0A:69
Certificate issuer: /CN=f13219221cc0a21326ce006c42825bac2be31e17
Certificate serial: 01863285AC08BF6DE7E20C2AE0CD3D069C9A
Authority key identifier: F1:32:19:22:1C:C0:A2:13:26:CE:00:6C:42:82:5B:AC:2B:E3:1E:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TIZIhzAohMmzgBsQoJbrCvjHhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/34244d-03c8-4780-87c3-45e696a5ae45/1/I5TEMSGE2aZr5o7XYBO6en2rCmk.roa
Signing time: Wed 08 Feb 2023 19:34:26 +0000
ROA not before: Wed 08 Feb 2023 19:34:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 448695
IP address blocks: 188.249.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 06:09:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:32:85:ac:08:bf:6d:e7:e2:0c:2a:e0:cd:3d:06:9c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13219221cc0a21326ce006c42825bac2be31e17
Validity
Not Before: Feb 8 19:34:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2394c4312184d9a66be68ed76013ba7a7dab0a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0a:f3:3f:8d:fa:96:3a:b7:3e:86:93:66:cb:
c5:bf:55:7c:e8:e9:27:08:67:75:53:25:35:b1:d2:
08:28:64:aa:28:37:38:8c:4b:b1:5e:5c:3e:1f:64:
29:ef:62:72:39:79:27:ec:20:a0:3e:43:4e:bd:5e:
a7:63:2a:a3:3c:9c:8b:23:98:74:88:d4:3e:44:8e:
d6:c5:f5:aa:d5:3f:79:ef:b0:58:89:49:9f:b3:bf:
34:24:35:74:55:52:d6:7e:1c:33:9a:a4:6c:56:91:
ed:38:d3:2a:24:0a:c9:6a:7d:d9:9c:03:e3:11:26:
7b:f2:3e:2a:dd:b8:b9:a2:af:ea:9a:5d:e2:43:2f:
28:11:98:c6:40:5a:22:7f:9a:7e:fb:73:46:e2:f2:
dc:fc:49:6a:7d:6a:c4:f9:72:50:5b:22:0d:1b:8f:
f3:9d:b0:88:f0:fc:ef:0b:93:f1:0a:74:ff:74:13:
14:16:87:ae:df:e0:60:34:00:58:8f:82:8b:b7:e9:
c7:24:60:50:35:26:7e:61:fe:ce:95:15:46:89:af:
dc:c2:ec:15:2f:8b:43:26:7b:8a:e4:85:93:31:24:
ff:9b:92:4b:24:7b:1b:c2:a4:4d:55:a3:6d:76:d7:
5e:b2:f8:14:8a:91:6b:24:b0:c4:b6:7c:65:5b:8b:
33:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:94:C4:31:21:84:D9:A6:6B:E6:8E:D7:60:13:BA:7A:7D:AB:0A:69
X509v3 Authority Key Identifier:
keyid:F1:32:19:22:1C:C0:A2:13:26:CE:00:6C:42:82:5B:AC:2B:E3:1E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TIZIhzAohMmzgBsQoJbrCvjHhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/34244d-03c8-4780-87c3-45e696a5ae45/1/I5TEMSGE2aZr5o7XYBO6en2rCmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/34244d-03c8-4780-87c3-45e696a5ae45/1/8TIZIhzAohMmzgBsQoJbrCvjHhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.249.38.0/24
Signature Algorithm: sha256WithRSAEncryption
07:62:2e:1d:ec:7d:87:d1:0d:82:e8:2f:7b:5e:c6:5e:5e:46:
cb:8b:e9:06:f1:39:c0:27:20:02:28:5a:75:03:da:a6:d8:e6:
d1:3f:d0:a6:bd:a1:67:51:88:3c:f6:f4:8b:59:0b:09:bd:7c:
4f:19:6e:98:63:63:2e:a5:bd:02:b6:94:84:7a:dc:de:59:c2:
b9:5e:81:14:08:33:ee:92:80:6c:35:c9:8a:0c:26:48:de:64:
72:e3:1d:29:7c:5a:da:12:60:65:d3:10:ee:3c:ee:b6:d9:fa:
33:29:4d:e6:51:c2:4a:6a:32:61:c4:d5:36:e8:19:c8:36:c8:
f3:5a:24:a9:4d:b4:61:a5:02:69:fc:b8:aa:b9:6a:db:17:1a:
f3:e4:95:0a:a0:a0:42:03:0f:09:46:d6:b9:ac:eb:e3:f5:9e:
5b:91:a7:c6:f0:5b:f9:0f:52:14:5b:0c:bc:6f:f8:6e:9c:cc:
4a:60:83:7f:fe:ee:18:19:72:15:6e:aa:bb:f8:64:e9:38:2c:
50:75:8c:f0:0f:28:fd:ea:cf:c1:71:f9:5a:f4:23:f8:78:db:
23:3b:43:68:4d:c0:98:77:62:70:ba:67:17:06:8b:b6:4a:6f:
a3:cc:aa:14:9d:ef:b1:80:e5:88:62:34:fe:0a:61:1d:14:9a:
c4:89:80:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYyhawIv23n4gwq4M09BpyaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzIxOTIyMWNjMGEyMTMyNmNlMDA2YzQyODI1YmFjMmJl
MzFlMTcwHhcNMjMwMjA4MTkzNDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzk0YzQzMTIxODRkOWE2NmJlNjhlZDc2MDEzYmE3YTdkYWIwYTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQrzP436ljq3PoaTZsvFv1V86Okn
CGd1UyU1sdIIKGSqKDc4jEuxXlw+H2Qp72JyOXkn7CCgPkNOvV6nYyqjPJyLI5h0
iNQ+RI7WxfWq1T9577BYiUmfs780JDV0VVLWfhwzmqRsVpHtONMqJArJan3ZnAPj
ESZ78j4q3bi5oq/qml3iQy8oEZjGQFoif5p++3NG4vLc/ElqfWrE+XJQWyING4/z
nbCI8PzvC5PxCnT/dBMUFoeu3+BgNABYj4KLt+nHJGBQNSZ+Yf7OlRVGia/cwuwV
L4tDJnuK5IWTMST/m5JLJHsbwqRNVaNtdtdesvgUipFrJLDEtnxlW4szbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCOUxDEhhNmma+aO12ATunp9qwppMB8GA1UdIwQY
MBaAFPEyGSIcwKITJs4AbEKCW6wr4x4XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRJWkloekFvaE1temdCc1FvSmJyQ3ZqSGhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDI0NGQtMDNjOC00NzgwLTg3YzMt
NDVlNjk2YTVhZTQ1LzEvSTVURU1TR0UyYVpyNW83WFlCTzZlbjJyQ21rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDI0NGQtMDNjOC00NzgwLTg3YzMtNDVlNjk2YTVhZTQ1
LzEvOFRJWkloekFvaE1temdCc1FvSmJyQ3ZqSGhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvPkmMA0G
CSqGSIb3DQEBCwUAA4IBAQAHYi4d7H2H0Q2C6C97XsZeXkbLi+kG8TnAJyACKFp1
A9qm2ObRP9CmvaFnUYg89vSLWQsJvXxPGW6YY2Mupb0CtpSEetzeWcK5XoEUCDPu
koBsNcmKDCZI3mRy4x0pfFraEmBl0xDuPO622fozKU3mUcJKajJhxNU26BnINsjz
WiSpTbRhpQJp/LiquWrbFxrz5JUKoKBCAw8JRta5rOvj9Z5bkafG8Fv5D1IUWwy8
b/hunMxKYIN//u4YGXIVbqq7+GTpOCxQdYzwDyj96s/Bcfla9CP4eNsjO0NoTcCY
d2JwumcXBou2Sm+jzKoUne+xgOWIYjT+CmEdFJrEiYC/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org