Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/gQxy0ngG33MYnEizYn-oP2myEAg.roa
File: gQxy0ngG33MYnEizYn-oP2myEAg.roa (raw, json)
Hash identifier: TKO612DQryzbwxwpdCZAp93M9WY6BOJwMhE5THDtOPw=
Subject key identifier: 81:0C:72:D2:78:06:DF:73:18:9C:48:B3:62:7F:A8:3F:69:B2:10:08
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01878E3578E2CFAB1C4060086C4753C2915C
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/gQxy0ngG33MYnEizYn-oP2myEAg.roa
Signing time: Mon 17 Apr 2023 07:54:41 +0000
ROA not before: Mon 17 Apr 2023 07:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 88.216.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 07:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:35:78:e2:cf:ab:1c:40:60:08:6c:47:53:c2:91:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 17 07:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=810c72d27806df73189c48b3627fa83f69b21008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2f:9a:fd:e2:ec:c5:bf:8b:51:02:19:4b:5b:
86:84:49:d2:9b:71:25:ce:fa:fa:b5:ff:a2:ca:24:
22:8e:74:19:aa:52:1d:e1:a2:e3:70:8e:5b:c7:f9:
0f:e7:6f:51:2d:db:54:12:e3:4c:b5:40:ca:c2:e4:
88:9f:b0:ba:07:c0:ba:26:50:e5:d2:fc:47:53:cf:
fb:26:a2:22:9e:4a:07:56:ac:85:37:f1:d8:c0:f3:
26:58:bb:a9:bb:41:a1:1b:ef:36:10:7b:93:17:0a:
09:da:3a:d0:b2:7a:a7:45:96:68:68:5b:4e:70:27:
f3:be:bf:e1:8f:a3:4d:8c:eb:c7:a9:76:93:9a:dd:
f0:27:29:59:1d:84:bb:38:84:a6:bc:ed:30:fa:79:
35:82:4e:67:46:d9:df:da:ea:79:d1:97:b2:ea:c7:
8d:2d:6a:5d:2a:2b:64:04:01:37:a2:95:f5:12:18:
5b:8a:b4:c1:c1:e1:8a:45:b0:1d:02:b4:61:b7:5a:
c2:3d:24:19:03:0d:28:82:3f:67:cf:80:9e:6a:61:
c4:1f:bf:f2:67:66:e6:29:d2:e3:32:d6:48:d2:82:
a4:19:88:bb:fb:18:00:e9:51:28:dc:7b:d2:fa:40:
de:fa:a6:30:59:2d:ea:fc:d7:7b:5e:ce:7a:65:fb:
ca:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0C:72:D2:78:06:DF:73:18:9C:48:B3:62:7F:A8:3F:69:B2:10:08
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/gQxy0ngG33MYnEizYn-oP2myEAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.104.0/24
Signature Algorithm: sha256WithRSAEncryption
23:58:25:6d:27:4f:23:15:bd:5d:26:83:51:8c:a7:93:ea:a1:
39:bc:ea:02:ce:e4:cb:d3:c8:e5:59:0d:7a:ea:72:bc:18:4d:
39:ba:5e:75:d5:c0:19:6a:db:6a:fe:74:94:12:26:82:87:33:
d7:a6:6d:93:d3:12:e8:fe:d7:68:46:74:0b:d8:7c:a3:11:4e:
b3:18:c7:17:ed:bd:2d:f5:c9:7f:21:be:c3:be:85:8b:68:fa:
07:e1:ae:03:c7:73:bc:5d:fb:2d:fe:eb:53:83:cc:92:1b:99:
37:5d:a7:e1:8c:c7:b3:4c:c6:af:c3:d0:a6:cb:8c:0f:13:67:
d4:b0:65:6b:d1:39:33:bc:c1:58:53:d1:15:bc:d1:8e:2d:92:
44:e6:d3:dd:65:59:60:40:75:89:f1:b0:1c:31:66:a2:f2:b3:
5f:30:35:5b:4a:cb:f4:75:f6:5b:81:4d:54:f5:fa:9b:ea:48:
92:70:6c:78:cc:2b:df:41:f9:28:23:f5:85:4f:8a:91:00:1f:
39:08:33:88:a2:7d:f7:fe:bf:6f:0d:bb:cd:c7:24:bf:cb:a0:
0c:96:0d:56:ab:78:8b:f6:61:31:71:c3:16:2d:cd:5e:19:20:
47:e0:38:6f:f7:3a:32:73:40:9d:0b:32:6b:40:5f:5f:4c:65:
14:02:2a:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYeONXjiz6scQGAIbEdTwpFcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNDE3MDc1NDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTBjNzJkMjc4MDZkZjczMTg5YzQ4YjM2MjdmYTgzZjY5YjIxMDA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgC+a/eLsxb+LUQIZS1uGhEnSm3El
zvr6tf+iyiQijnQZqlId4aLjcI5bx/kP529RLdtUEuNMtUDKwuSIn7C6B8C6JlDl
0vxHU8/7JqIinkoHVqyFN/HYwPMmWLupu0GhG+82EHuTFwoJ2jrQsnqnRZZoaFtO
cCfzvr/hj6NNjOvHqXaTmt3wJylZHYS7OISmvO0w+nk1gk5nRtnf2up50Zey6seN
LWpdKitkBAE3opX1EhhbirTBweGKRbAdArRht1rCPSQZAw0ogj9nz4CeamHEH7/y
Z2bmKdLjMtZI0oKkGYi7+xgA6VEo3HvS+kDe+qYwWS3q/Nd7Xs56ZfvKywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEMctJ4Bt9zGJxIs2J/qD9pshAIMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvZ1F4eTBuZ0czM01ZbkVpelluLW9QMm15RUFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNhoMA0G
CSqGSIb3DQEBCwUAA4IBAQAjWCVtJ08jFb1dJoNRjKeT6qE5vOoCzuTL08jlWQ16
6nK8GE05ul511cAZattq/nSUEiaChzPXpm2T0xLo/tdoRnQL2HyjEU6zGMcX7b0t
9cl/Ib7DvoWLaPoH4a4Dx3O8Xfst/utTg8ySG5k3XafhjMezTMavw9Cmy4wPE2fU
sGVr0TkzvMFYU9EVvNGOLZJE5tPdZVlgQHWJ8bAcMWai8rNfMDVbSsv0dfZbgU1U
9fqb6kiScGx4zCvfQfkoI/WFT4qRAB85CDOIon33/r9vDbvNxyS/y6AMlg1Wq3iL
9mExccMWLc1eGSBH4Dhv9zoyc0CdCzJrQF9fTGUUAioO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:34 2024 by rpki-client on console-fra.rpki-client.org