Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/j4He-CILkNDdiuyVdK9EMLNBjwQ.roa
File: j4He-CILkNDdiuyVdK9EMLNBjwQ.roa (raw, json)
Hash identifier: 4VHuPhsGtVlHIs/7u1DQwjVh4wpSxqPvlE6us20O2LI=
Subject key identifier: 8F:81:DE:F8:22:0B:90:D0:DD:8A:EC:95:74:AF:44:30:B3:41:8F:04
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 0186AC8037F668BA2467388D9F006069971C
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/j4He-CILkNDdiuyVdK9EMLNBjwQ.roa
Signing time: Sat 04 Mar 2023 12:02:09 +0000
ROA not before: Sat 04 Mar 2023 12:02:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32097
IP address blocks: 188.255.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 17:51:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ac:80:37:f6:68:ba:24:67:38:8d:9f:00:60:69:97:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 4 12:02:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f81def8220b90d0dd8aec9574af4430b3418f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5f:46:c1:63:8e:fa:f6:84:28:fe:43:cc:13:
e5:7f:26:5e:5a:89:e5:79:7b:86:36:e0:cf:eb:8e:
a4:06:5e:6d:bf:54:02:c7:eb:8e:02:07:b4:19:62:
58:df:a8:ce:1e:eb:cf:ad:3f:62:33:37:50:a4:0f:
dc:5c:32:dc:1a:c0:12:2d:2a:ef:d4:a3:07:9d:c1:
03:97:3d:03:d7:e6:94:a7:8f:81:36:ad:11:b9:86:
f4:58:a5:d6:3d:8b:66:77:b2:a2:c0:c7:06:51:02:
89:a9:81:d2:80:46:3e:ef:bc:b8:af:31:c2:e2:a7:
9b:39:0c:2d:88:1e:9d:e0:0a:23:11:cd:c3:17:f4:
51:d1:4b:d8:7b:7a:ab:95:f0:f5:8a:d5:5d:0a:cf:
ef:28:5e:cc:c7:61:b1:0c:9e:f7:24:14:5e:49:61:
e0:ea:d0:80:db:f5:04:73:86:61:ab:32:7e:97:91:
ef:dc:b3:bb:67:df:b6:87:18:21:60:cf:c6:47:1e:
ca:c4:f4:c0:7c:e4:26:d5:e8:42:75:22:10:b6:ce:
49:fb:ec:e3:97:21:ca:93:e3:70:3f:3b:4e:66:fc:
d5:14:d4:9d:ed:76:41:8b:4f:c3:34:3d:da:46:eb:
fc:76:76:d1:d2:72:9e:b5:37:08:e5:f3:e8:3b:43:
cb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:81:DE:F8:22:0B:90:D0:DD:8A:EC:95:74:AF:44:30:B3:41:8F:04
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/j4He-CILkNDdiuyVdK9EMLNBjwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.255.134.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e7:68:83:d5:1e:a8:68:5b:64:a4:f4:b3:6a:53:09:76:bf:
ee:ec:cf:d1:1f:d4:27:a8:0e:18:22:c6:38:db:46:25:7c:8c:
e9:fd:0c:32:13:a5:96:8f:a8:55:d0:bd:ed:92:59:10:ed:bd:
0e:ba:d8:75:1e:83:5f:fe:c8:5f:98:a6:20:2c:42:e1:f4:a7:
30:dc:37:9d:88:c7:77:c7:7e:aa:15:4d:c9:c4:d1:90:2b:15:
5e:7b:77:59:67:e0:07:47:46:cc:9f:de:a7:2a:b4:8f:60:73:
76:ab:86:6f:6a:78:aa:62:8f:88:50:95:bc:2b:af:e7:dd:55:
9a:62:69:69:a9:e6:0f:fa:1b:e6:53:b9:fb:ca:f9:d9:73:41:
32:f9:bb:64:61:ee:13:73:48:c7:dc:2d:f0:95:c8:4c:24:ed:
7e:89:4f:4a:0a:28:6d:96:c9:8a:90:43:9f:09:a3:33:f2:e4:
13:a0:8e:74:6c:d0:08:4c:fc:3b:b8:3d:5f:0f:51:33:82:3f:
2f:50:41:83:fc:b8:2a:ec:d0:ee:f3:1c:c7:68:0d:99:f0:63:
76:0c:56:fb:a7:e7:3c:31:81:f5:4a:a8:f2:4c:eb:78:22:f6:
23:6b:d1:a2:3e:b3:d2:dc:8f:83:b3:9a:6c:4b:a0:cc:a8:75:
94:43:41:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYasgDf2aLokZziNnwBgaZccMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMwMzA0MTIwMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjgxZGVmODIyMGI5MGQwZGQ4YWVjOTU3NGFmNDQzMGIzNDE4ZjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhV9GwWOO+vaEKP5DzBPlfyZeWonl
eXuGNuDP646kBl5tv1QCx+uOAge0GWJY36jOHuvPrT9iMzdQpA/cXDLcGsASLSrv
1KMHncEDlz0D1+aUp4+BNq0RuYb0WKXWPYtmd7KiwMcGUQKJqYHSgEY+77y4rzHC
4qebOQwtiB6d4AojEc3DF/RR0UvYe3qrlfD1itVdCs/vKF7Mx2GxDJ73JBReSWHg
6tCA2/UEc4ZhqzJ+l5Hv3LO7Z9+2hxghYM/GRx7KxPTAfOQm1ehCdSIQts5J++zj
lyHKk+NwPztOZvzVFNSd7XZBi0/DND3aRuv8dnbR0nKetTcI5fPoO0PLGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI+B3vgiC5DQ3YrslXSvRDCzQY8EMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvajRIZS1DSUxrTkRkaXV5VmRLOUVNTE5CandRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvP+GMA0G
CSqGSIb3DQEBCwUAA4IBAQAI52iD1R6oaFtkpPSzalMJdr/u7M/RH9QnqA4YIsY4
20YlfIzp/QwyE6WWj6hV0L3tklkQ7b0Outh1HoNf/shfmKYgLELh9Kcw3DediMd3
x36qFU3JxNGQKxVee3dZZ+AHR0bMn96nKrSPYHN2q4ZvaniqYo+IUJW8K6/n3VWa
YmlpqeYP+hvmU7n7yvnZc0Ey+btkYe4Tc0jH3C3wlchMJO1+iU9KCihtlsmKkEOf
CaMz8uQToI50bNAITPw7uD1fD1Ezgj8vUEGD/Lgq7NDu8xzHaA2Z8GN2DFb7p+c8
MYH1SqjyTOt4IvYja9GiPrPS3I+Ds5psS6DMqHWUQ0G/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:26 2024 by rpki-client on console-fra.rpki-client.org