Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/d5zFNzw2PKbC3bSf1AoZcaNIkbw.roa
File: d5zFNzw2PKbC3bSf1AoZcaNIkbw.roa (raw, json)
Hash identifier: Wr7tmOgcnIv0glWioqbw3Xa2wahrxqG4ldRN0t0Pr/Y=
Subject key identifier: 77:9C:C5:37:3C:36:3C:A6:C2:DD:B4:9F:D4:0A:19:71:A3:48:91:BC
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018FE9F968C754DB996DFB6BD68DE41EDE3C
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/d5zFNzw2PKbC3bSf1AoZcaNIkbw.roa
Signing time: Wed 05 Jun 2024 19:56:27 +0000
ROA not before: Wed 05 Jun 2024 19:56:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.209.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 07:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e9:f9:68:c7:54:db:99:6d:fb:6b:d6:8d:e4:1e:de:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 5 19:56:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=779cc5373c363ca6c2ddb49fd40a1971a34891bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:72:c7:8d:13:fd:22:7a:0b:5a:30:0d:c6:
4b:9c:20:5c:0c:47:db:ef:09:81:cd:9d:ba:72:b2:
0a:9d:de:76:9c:91:37:e9:22:f2:71:39:68:ad:0a:
56:ac:f5:d1:02:eb:4e:2a:8e:93:d2:98:f1:f8:e2:
74:0a:ba:d7:8d:38:9e:a1:68:01:07:3a:92:ac:1c:
ad:bc:f2:f5:42:80:3b:36:b1:ac:3a:9b:77:15:63:
51:30:74:03:bc:e0:9d:4d:0e:a7:0f:b2:25:76:b1:
1b:06:79:bb:97:9c:38:79:10:14:f2:ad:1a:eb:90:
5f:65:7c:b3:f5:06:15:4f:71:f1:2c:0c:3b:69:da:
9f:a2:48:7a:9b:6b:5b:1f:ca:22:d7:ca:f5:e3:27:
18:e9:be:73:10:fe:b2:19:53:67:c7:65:2d:ad:da:
22:8d:fb:f3:6e:79:3b:85:8a:c9:57:22:4b:30:ff:
60:9f:63:57:1d:ed:72:02:81:79:a6:60:ca:63:61:
71:9f:af:3d:e4:41:14:b3:68:c7:55:b3:35:00:2e:
e5:67:f3:01:66:f5:7c:fc:39:d4:53:14:38:f8:38:
b5:ac:b0:ab:d3:8b:33:50:3d:57:cb:3f:d6:7b:45:
0b:0f:5c:fe:39:24:4d:31:39:41:c4:30:39:04:5d:
f2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9C:C5:37:3C:36:3C:A6:C2:DD:B4:9F:D4:0A:19:71:A3:48:91:BC
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/d5zFNzw2PKbC3bSf1AoZcaNIkbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.132.0/22
Signature Algorithm: sha256WithRSAEncryption
40:0f:52:c8:39:27:33:34:14:f3:e0:98:d3:05:c5:7f:e3:4b:
0c:f0:1a:f4:bc:15:1b:8d:71:6f:6e:d1:7f:d2:be:34:ad:63:
11:40:d3:80:8a:27:bd:39:fe:75:7f:dd:cb:5c:72:6d:6f:72:
a0:a1:f9:74:ca:1f:c7:e3:b0:cb:97:53:15:04:a2:d4:49:db:
6f:da:a8:82:60:26:68:63:7d:d1:31:7d:da:ce:aa:bf:ad:5b:
fa:93:45:5a:d2:77:9c:92:95:4d:aa:b3:c4:f4:4e:ba:d8:eb:
70:91:db:7a:97:d6:65:ec:cc:33:71:ec:6a:03:c2:f7:93:5f:
eb:65:43:a4:5b:a0:46:57:d8:27:e7:03:52:f8:5b:7c:04:a3:
e4:5e:69:c3:a7:d5:62:b0:37:df:cd:f7:53:1f:44:4d:59:2d:
a8:e4:20:55:a9:89:73:03:cd:df:6e:fb:dd:e6:a2:88:68:58:
d2:16:7b:29:37:8d:d8:7d:e7:82:e3:ef:ab:19:b6:ee:8d:0d:
70:f8:98:cc:70:9b:21:2b:03:8d:4f:f9:a3:1e:24:7a:c6:d0:
89:bb:f2:7c:19:a3:1a:dd:26:6e:90:87:30:b1:80:76:0b:fb:
97:d9:47:ce:46:67:07:f0:ca:61:4d:46:0a:b1:63:15:0f:a9:
ed:46:c6:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/p+WjHVNuZbftr1o3kHt48MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjQwNjA1MTk1NjI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzljYzUzNzNjMzYzY2E2YzJkZGI0OWZkNDBhMTk3MWEzNDg5MWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlpyx40T/SJ6C1owDcZLnCBcDEfb
7wmBzZ26crIKnd52nJE36SLycTlorQpWrPXRAutOKo6T0pjx+OJ0CrrXjTieoWgB
BzqSrBytvPL1QoA7NrGsOpt3FWNRMHQDvOCdTQ6nD7IldrEbBnm7l5w4eRAU8q0a
65BfZXyz9QYVT3HxLAw7adqfokh6m2tbH8oi18r14ycY6b5zEP6yGVNnx2Utrdoi
jfvzbnk7hYrJVyJLMP9gn2NXHe1yAoF5pmDKY2Fxn6895EEUs2jHVbM1AC7lZ/MB
ZvV8/DnUUxQ4+Di1rLCr04szUD1Xyz/We0ULD1z+OSRNMTlBxDA5BF3yvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHecxTc8Njymwt20n9QKGXGjSJG8MB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvZDV6Rk56dzJQS2JDM2JTZjFBb1pjYU5Ja2J3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvNGEMA0G
CSqGSIb3DQEBCwUAA4IBAQBAD1LIOSczNBTz4JjTBcV/40sM8Br0vBUbjXFvbtF/
0r40rWMRQNOAiie9Of51f93LXHJtb3Kgofl0yh/H47DLl1MVBKLUSdtv2qiCYCZo
Y33RMX3azqq/rVv6k0Va0neckpVNqrPE9E662Otwkdt6l9Zl7MwzcexqA8L3k1/r
ZUOkW6BGV9gn5wNS+Ft8BKPkXmnDp9VisDffzfdTH0RNWS2o5CBVqYlzA83fbvvd
5qKIaFjSFnspN43YfeeC4++rGbbujQ1w+JjMcJshKwONT/mjHiR6xtCJu/J8GaMa
3SZukIcwsYB2C/uX2UfORmcH8MphTUYKsWMVD6ntRsaN
-----END CERTIFICATE-----
Generated at Sat Jun 8 08:38:36 2024 by rpki-client on console-fra.rpki-client.org