Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/lLMXWExs539lgUzLyvgM5KZnmUQ.roa
File: lLMXWExs539lgUzLyvgM5KZnmUQ.roa (raw, json)
Hash identifier: 9/+PM1lmW/o2DnCpRSgJElqVUqPBx8G03mNHs70dpm8=
Subject key identifier: 94:B3:17:58:4C:6C:E7:7F:65:81:4C:CB:CA:F8:0C:E4:A6:67:99:44
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188E3FBE51F193131222EA711C0C4BFCF58
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/lLMXWExs539lgUzLyvgM5KZnmUQ.roa
Signing time: Thu 22 Jun 2023 16:41:56 +0000
ROA not before: Thu 22 Jun 2023 16:41:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198652
IP address blocks: 88.216.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 05:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e3:fb:e5:1f:19:31:31:22:2e:a7:11:c0:c4:bf:cf:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 22 16:41:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94b317584c6ce77f65814ccbcaf80ce4a6679944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:21:9f:ec:6a:0b:5d:80:84:0b:37:1a:3d:6e:
ed:66:4e:fd:19:01:48:c7:be:53:62:e3:60:d8:e8:
f7:dd:80:c0:ac:35:33:5d:8c:b5:b0:55:82:01:32:
55:b3:13:df:0f:91:97:70:1a:72:72:53:57:71:3e:
e5:a3:09:45:d3:0c:9f:61:61:45:d1:2a:f6:b7:fd:
08:b2:e4:0c:2d:31:26:7a:36:97:c2:aa:1e:4f:84:
84:1b:f4:55:37:32:1a:c1:95:f1:f7:25:bd:2b:d9:
df:89:67:e2:63:3f:5e:89:84:c2:98:00:04:c4:69:
26:fc:37:21:8f:3e:ee:1e:89:a5:b0:38:34:35:9c:
94:77:ca:47:33:db:d8:ca:2a:80:b4:7a:a6:ae:e6:
14:01:33:10:56:aa:be:e1:3e:d0:5c:58:32:f3:d4:
14:9f:63:c8:e9:fc:42:47:fa:5a:71:43:8c:62:96:
3a:91:96:c0:b9:20:63:19:06:de:10:40:e8:12:16:
34:38:a8:30:f7:6f:e5:0c:02:32:fb:e8:6c:45:30:
69:86:9f:e6:27:ae:c2:de:21:dd:65:4d:b2:69:2c:
cc:6c:0c:ef:26:d4:0a:63:04:23:8d:2f:3d:05:71:
f3:d4:3b:a5:06:1e:a9:f4:35:09:4a:53:83:51:f4:
b7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B3:17:58:4C:6C:E7:7F:65:81:4C:CB:CA:F8:0C:E4:A6:67:99:44
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/lLMXWExs539lgUzLyvgM5KZnmUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.106.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:96:13:75:2b:fb:a5:22:ed:9f:8f:e8:6f:c9:88:fb:09:e1:
6b:dd:00:bb:f0:d0:c4:1d:9c:08:39:af:3d:74:f9:f7:87:72:
a4:09:57:04:48:62:5a:8f:63:f9:10:73:11:25:6c:3a:99:a3:
fc:67:31:bb:b9:70:63:bf:6e:81:4b:b7:72:44:5f:12:1c:d3:
6e:d4:73:18:bc:95:e9:b5:17:7d:fb:9c:3b:27:4d:d2:36:71:
0d:8e:0b:bc:00:e6:9b:5b:87:0d:f0:73:c0:7f:1d:85:2f:ca:
a6:0d:0a:c3:bb:64:d9:ca:43:71:4c:04:fb:21:ae:f6:d4:cc:
64:20:c4:2a:31:ef:a0:a4:3e:b0:2c:78:71:e6:a8:63:3f:07:
aa:b6:d7:0b:6d:9f:3a:c8:2a:c4:90:26:a8:f4:cb:3c:1f:e9:
1c:ca:6d:f0:4d:56:09:84:6b:94:8e:5c:c4:1a:bc:f7:3a:9e:
72:68:3c:d9:37:a7:c5:2f:20:dc:4a:f3:32:92:1c:f2:7e:d7:
7b:8b:af:6a:4c:b6:76:b8:c4:06:e2:3b:82:3a:99:6a:b2:b4:
4e:d6:ff:3c:3a:39:46:43:83:a8:93:13:5a:cd:69:e3:21:59:
86:79:a6:d6:0c:53:95:58:8b:b7:ba:57:57:04:df:c3:61:18:
3f:88:f8:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjj++UfGTExIi6nEcDEv89YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNjIyMTY0MTU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGIzMTc1ODRjNmNlNzdmNjU4MTRjY2JjYWY4MGNlNGE2Njc5OTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhyGf7GoLXYCECzcaPW7tZk79GQFI
x75TYuNg2Oj33YDArDUzXYy1sFWCATJVsxPfD5GXcBpyclNXcT7lowlF0wyfYWFF
0Sr2t/0IsuQMLTEmejaXwqoeT4SEG/RVNzIawZXx9yW9K9nfiWfiYz9eiYTCmAAE
xGkm/Dchjz7uHomlsDg0NZyUd8pHM9vYyiqAtHqmruYUATMQVqq+4T7QXFgy89QU
n2PI6fxCR/pacUOMYpY6kZbAuSBjGQbeEEDoEhY0OKgw92/lDAIy++hsRTBphp/m
J67C3iHdZU2yaSzMbAzvJtQKYwQjjS89BXHz1DulBh6p9DUJSlODUfS3XwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJSzF1hMbOd/ZYFMy8r4DOSmZ5lEMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvbExNWFdFeHM1MzlsZ1V6THl2Z001S1pubVVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNhqMA0G
CSqGSIb3DQEBCwUAA4IBAQBqlhN1K/ulIu2fj+hvyYj7CeFr3QC78NDEHZwIOa89
dPn3h3KkCVcESGJaj2P5EHMRJWw6maP8ZzG7uXBjv26BS7dyRF8SHNNu1HMYvJXp
tRd9+5w7J03SNnENjgu8AOabW4cN8HPAfx2FL8qmDQrDu2TZykNxTAT7Ia721Mxk
IMQqMe+gpD6wLHhx5qhjPweqttcLbZ86yCrEkCao9Ms8H+kcym3wTVYJhGuUjlzE
Grz3Op5yaDzZN6fFLyDcSvMykhzyftd7i69qTLZ2uMQG4juCOplqsrRO1v88OjlG
Q4OokxNazWnjIVmGeabWDFOVWIu3uldXBN/DYRg/iPiJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org