Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/HgVQxBvWNA36VeVCYLSJ_vJC1AU.roa
File: HgVQxBvWNA36VeVCYLSJ_vJC1AU.roa (raw, json)
Hash identifier: BpPf0tTdFBiViBrJREQJDI29sy7m2K3RXpsmjgNX8V0=
Subject key identifier: 1E:05:50:C4:1B:D6:34:0D:FA:55:E5:42:60:B4:89:FE:F2:42:D4:05
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01861123522B9C2FB9660A25AF1C8CF76EAC
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/HgVQxBvWNA36VeVCYLSJ_vJC1AU.roa
Signing time: Thu 02 Feb 2023 07:59:32 +0000
ROA not before: Thu 02 Feb 2023 07:59:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 88.216.224.0/22 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 05:11:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:23:52:2b:9c:2f:b9:66:0a:25:af:1c:8c:f7:6e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 2 07:59:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e0550c41bd6340dfa55e54260b489fef242d405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d1:75:7f:b8:6a:37:5b:27:5e:39:10:15:e5:
dd:40:ba:89:3c:7b:22:03:9c:47:3a:0e:ce:c2:66:
d6:74:4d:07:a1:9a:d9:c7:54:3a:f1:f0:58:cd:b1:
c7:f3:17:5f:7c:02:be:4f:37:29:90:3d:7d:4f:0b:
3c:1b:c6:e6:b1:23:f4:a1:99:65:b9:18:14:85:74:
d5:70:a8:9b:70:d2:b3:31:53:f3:0a:a1:3b:36:17:
5d:12:a1:68:fc:e3:76:e7:3b:62:67:5d:9b:c8:ef:
5c:7d:91:8e:00:05:cf:82:9a:93:74:ad:86:b8:47:
36:36:b6:2f:33:cd:7d:3e:4f:00:1f:87:e2:9c:05:
99:08:8f:f4:ec:c7:a0:b8:cb:7a:2e:aa:89:a7:48:
98:63:65:d2:7d:96:79:d9:84:98:cb:78:61:fb:27:
67:59:1d:ac:33:9f:28:7c:8d:10:bf:3c:31:30:5c:
e2:63:9e:85:ee:9f:5a:9f:e9:a0:91:6c:24:df:7d:
3c:d2:d1:cb:b4:2e:79:32:b4:aa:18:d2:8c:61:13:
e1:2f:ac:6f:2e:67:4b:12:2a:cf:80:55:e8:c5:e3:
89:79:c4:18:4d:0a:37:b9:d3:af:90:4d:ab:6d:46:
21:b7:d3:68:d9:5e:ba:9a:e6:af:5f:5c:aa:31:05:
12:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:05:50:C4:1B:D6:34:0D:FA:55:E5:42:60:B4:89:FE:F2:42:D4:05
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/HgVQxBvWNA36VeVCYLSJ_vJC1AU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.224.0-88.216.235.255
Signature Algorithm: sha256WithRSAEncryption
8f:9f:98:e0:d4:37:74:82:85:30:a9:24:0e:b3:24:1b:b8:19:
a2:56:49:c4:97:7d:19:b0:4e:b4:30:2a:da:1d:bc:b5:92:bc:
3c:ba:a8:5e:ae:80:1d:8f:fb:9b:33:b6:47:3e:d4:c4:b8:c3:
67:ed:8d:d0:68:17:3a:26:ae:da:4d:ed:f7:c9:02:3d:73:99:
8a:63:7b:99:4f:a9:3a:fa:8a:90:ca:49:f8:98:9c:a1:ed:95:
35:f1:3d:ac:a1:32:7b:ae:85:0c:5a:e8:fd:49:ef:fa:77:b5:
10:bb:c1:7d:d2:ce:97:1f:99:97:1f:90:ef:a5:58:d1:e6:f5:
61:28:5a:39:68:07:16:6c:30:de:df:5e:f0:7c:92:04:54:ce:
5c:2f:92:50:28:00:e8:ad:11:6f:00:44:a9:67:eb:e0:9f:ba:
89:22:2f:ec:35:7a:3c:42:10:dd:24:05:17:97:b7:a4:cc:9a:
af:4a:3c:22:09:56:d9:0e:7e:0c:19:6b:78:79:12:84:b7:6a:
4e:d6:27:07:24:ef:eb:e1:ee:1c:0b:6e:60:33:d4:00:d6:fe:
34:92:14:c9:81:e1:7a:06:48:6c:09:9a:9f:c0:d7:f0:d6:26:
1b:5d:0a:67:26:98:91:a6:7d:af:e8:00:42:f3:eb:a5:97:c5:
7e:45:f1:7e
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYYRI1IrnC+5ZgolrxyM926sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMjAyMDc1OTMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTA1NTBjNDFiZDYzNDBkZmE1NWU1NDI2MGI0ODlmZWYyNDJkNDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg9F1f7hqN1snXjkQFeXdQLqJPHsi
A5xHOg7OwmbWdE0HoZrZx1Q68fBYzbHH8xdffAK+TzcpkD19Tws8G8bmsSP0oZll
uRgUhXTVcKibcNKzMVPzCqE7NhddEqFo/ON25ztiZ12byO9cfZGOAAXPgpqTdK2G
uEc2NrYvM819Pk8AH4finAWZCI/07MeguMt6LqqJp0iYY2XSfZZ52YSYy3hh+ydn
WR2sM58ofI0QvzwxMFziY56F7p9an+mgkWwk33080tHLtC55MrSqGNKMYRPhL6xv
LmdLEirPgFXoxeOJecQYTQo3udOvkE2rbUYht9No2V66muavX1yqMQUSswIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFB4FUMQb1jQN+lXlQmC0if7yQtQFMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvSGdWUXhCdldOQTM2VmVWQ1lMU0pfdkpDMUFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAVY2OAD
BAJY2OgwDQYJKoZIhvcNAQELBQADggEBAI+fmODUN3SChTCpJA6zJBu4GaJWScSX
fRmwTrQwKtodvLWSvDy6qF6ugB2P+5sztkc+1MS4w2ftjdBoFzomrtpN7ffJAj1z
mYpje5lPqTr6ipDKSfiYnKHtlTXxPayhMnuuhQxa6P1J7/p3tRC7wX3SzpcfmZcf
kO+lWNHm9WEoWjloBxZsMN7fXvB8kgRUzlwvklAoAOitEW8ARKln6+CfuokiL+w1
ejxCEN0kBReXt6TMmq9KPCIJVtkOfgwZa3h5EoS3ak7WJwck7+vh7hwLbmAz1ADW
/jSSFMmB4XoGSGwJmp/A1/DWJhtdCmcmmJGmfa/oAELz66WXxX5F8X4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org