Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/VtHLUv7DlDrmxokULC1eGkvMU98.roa
File: VtHLUv7DlDrmxokULC1eGkvMU98.roa (raw, json)
Hash identifier: hzK8oNd7Auq7qaR2ZEHpSfzeKpYBt5xvpmffsShtY5A=
Subject key identifier: 56:D1:CB:52:FE:C3:94:3A:E6:C6:89:14:2C:2D:5E:1A:4B:CC:53:DF
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018CC3B6CB370341243AC8AA437DF683EE2A
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/VtHLUv7DlDrmxokULC1eGkvMU98.roa
Signing time: Mon 01 Jan 2024 06:29:45 +0000
ROA not before: Mon 01 Jan 2024 06:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210512
IP address blocks: 188.119.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 04 Jun 2024 14:46:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:cb:37:03:41:24:3a:c8:aa:43:7d:f6:83:ee:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 1 06:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56d1cb52fec3943ae6c689142c2d5e1a4bcc53df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:d7:f9:25:33:d2:59:09:ed:d9:13:01:c2:
08:20:bf:de:6b:0e:b8:92:22:6c:c9:57:5d:01:4d:
74:1e:c5:43:dc:dd:b7:c4:61:49:3f:9c:f6:bc:88:
75:0e:30:33:96:a8:26:a4:ee:48:45:52:37:a7:46:
88:04:17:fd:a3:1f:83:04:67:2e:12:2a:20:b8:3b:
15:fd:d8:59:22:c4:65:70:ce:0f:47:4f:81:2b:b9:
d0:ef:3b:21:bf:41:68:90:73:f4:20:18:da:c6:13:
d0:37:f1:8a:44:62:e7:4b:1e:99:be:17:2e:ba:b8:
b5:ee:e9:20:2e:7c:e7:d8:00:26:29:9e:d6:e1:99:
67:d2:45:7e:fa:b6:0f:d5:ca:fc:24:dd:e7:54:fc:
5b:83:18:cf:dd:a8:9f:e2:4b:f8:f2:97:e1:7e:a4:
df:b2:d0:c5:c6:6e:44:a6:c3:e2:7a:e6:f3:20:78:
d4:58:28:7b:77:50:66:22:c9:83:8c:5e:b8:b8:12:
92:ba:e2:87:8d:bd:af:87:ee:c5:b4:38:ee:08:92:
8c:f9:5d:fb:78:04:26:9f:de:eb:80:8f:e6:f2:de:
ad:ac:29:d0:67:fb:98:d9:8e:1b:db:fd:de:20:64:
85:84:bf:b6:e3:16:16:ab:95:30:20:e6:c4:0d:d1:
f4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D1:CB:52:FE:C3:94:3A:E6:C6:89:14:2C:2D:5E:1A:4B:CC:53:DF
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/VtHLUv7DlDrmxokULC1eGkvMU98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.124.0/22
Signature Algorithm: sha256WithRSAEncryption
44:7e:d5:9c:34:8d:12:9e:88:67:7c:ae:f2:ff:90:35:86:66:
3d:c9:da:30:3d:5e:f5:73:85:b6:96:be:86:58:c9:cb:a4:37:
4f:29:de:10:cf:8f:fd:b2:78:34:f7:f7:48:f1:98:1b:08:58:
53:45:0e:b1:2c:09:d9:39:22:d8:7f:83:d0:25:63:3e:b2:d5:
dd:67:a6:44:29:4a:87:d1:f4:04:42:a4:1d:e7:da:03:2e:f9:
c1:fe:02:97:0d:b6:2d:1f:72:55:ac:39:37:63:48:75:62:35:
8e:5f:28:e0:8d:89:68:35:8b:90:77:58:c7:ba:20:c3:d7:89:
19:7d:97:85:50:c9:85:f6:c7:90:45:94:f1:50:1a:12:4d:72:
b7:2b:30:31:a1:82:a6:1d:0f:2f:ce:5b:f7:c0:b7:52:0d:b1:
6b:bd:0c:17:22:fd:60:9a:ad:a4:a3:78:be:b8:16:d0:d3:72:
e6:45:72:7c:92:ff:a2:ef:eb:23:cb:cc:fd:6b:f1:c7:be:f0:
ec:60:1f:a9:6a:95:b3:48:b9:07:15:1d:da:3c:7c:50:77:ec:
a4:82:ea:d1:30:5d:92:ef:4f:9c:dc:1d:5b:d3:bf:d3:95:e0:
fd:d4:df:ee:76:ff:14:d2:1a:b8:78:ce:6f:62:f1:97:5c:4c:
fe:2a:52:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDtss3A0EkOsiqQ332g+4qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExYTAxMGY4N2EwNDliNmUyMWFiZWQ5YjQwOTgzYjA0ZjNm
MWM3ZTgwHhcNMjQwMTAxMDYyOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmQxY2I1MmZlYzM5NDNhZTZjNjg5MTQyYzJkNWUxYTRiY2M1M2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAov3X+SUz0lkJ7dkTAcIIIL/eaw64
kiJsyVddAU10HsVD3N23xGFJP5z2vIh1DjAzlqgmpO5IRVI3p0aIBBf9ox+DBGcu
EioguDsV/dhZIsRlcM4PR0+BK7nQ7zshv0FokHP0IBjaxhPQN/GKRGLnSx6Zvhcu
uri17ukgLnzn2AAmKZ7W4Zln0kV++rYP1cr8JN3nVPxbgxjP3aif4kv48pfhfqTf
stDFxm5EpsPieubzIHjUWCh7d1BmIsmDjF64uBKSuuKHjb2vh+7FtDjuCJKM+V37
eAQmn97rgI/m8t6trCnQZ/uY2Y4b2/3eIGSFhL+24xYWq5UwIObEDdH03wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFbRy1L+w5Q65saJFCwtXhpLzFPfMB8GA1UdIwQY
MBaAFBGgEPh6BJtuIavtm0CYOwTz8cfoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUt
ZWU3NDY1NzU0ZmY2LzEvVnRITFV2N0RsRHJteG9rVUxDMWVHa3ZNVTk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9mMjVkN2MtNjY3Ny00ZmRiLTg5OGUtZWU3NDY1NzU0ZmY2
LzEvRWFBUS1Ib0VtMjRocS0yYlFKZzdCUFB4eC1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvHd8MA0G
CSqGSIb3DQEBCwUAA4IBAQBEftWcNI0SnohnfK7y/5A1hmY9ydowPV71c4W2lr6G
WMnLpDdPKd4Qz4/9sng09/dI8ZgbCFhTRQ6xLAnZOSLYf4PQJWM+stXdZ6ZEKUqH
0fQEQqQd59oDLvnB/gKXDbYtH3JVrDk3Y0h1YjWOXyjgjYloNYuQd1jHuiDD14kZ
fZeFUMmF9seQRZTxUBoSTXK3KzAxoYKmHQ8vzlv3wLdSDbFrvQwXIv1gmq2ko3i+
uBbQ03LmRXJ8kv+i7+sjy8z9a/HHvvDsYB+papWzSLkHFR3aPHxQd+ykgurRMF2S
70+c3B1b07/TleD91N/udv8U0hq4eM5vYvGXXEz+KlLD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:18 2024 by rpki-client on console-ams.rpki-client.org