Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/h-WG7rpjH95l99pEIcNqJZPJqAU.roa
File: h-WG7rpjH95l99pEIcNqJZPJqAU.roa (raw, json)
Hash identifier: AA38YdWJ4JJGnaBT6iUs2djPzTwFt/k7iRfMKaqbi2E=
Subject key identifier: 87:E5:86:EE:BA:63:1F:DE:65:F7:DA:44:21:C3:6A:25:93:C9:A8:05
Certificate issuer: /CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Certificate serial: 018CC2DAB1ADE283F9956E745629D25BFB37
Authority key identifier: B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/h-WG7rpjH95l99pEIcNqJZPJqAU.roa
Signing time: Mon 01 Jan 2024 02:29:21 +0000
ROA not before: Mon 01 Jan 2024 02:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40676
IP address blocks: 188.215.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 11:44:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:b1:ad:e2:83:f9:95:6e:74:56:29:d2:5b:fb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c8aa18730f4a83e2852c5692551abb5b1ee7ea
Validity
Not Before: Jan 1 02:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87e586eeba631fde65f7da4421c36a2593c9a805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:37:3c:28:62:bb:95:65:76:fd:a6:4b:e5:4f:
90:a9:3f:b1:b0:ac:cc:9e:db:d8:e9:6d:d9:88:45:
0e:9c:37:76:ef:29:e5:e7:cc:46:4d:8e:e6:10:b9:
c4:cb:85:0b:03:95:c2:54:85:20:a9:57:d3:68:b2:
31:9e:82:33:aa:35:32:3a:05:69:ba:de:e3:80:6e:
83:c8:d2:b6:f8:1a:fd:70:c3:dc:8f:29:9a:df:7a:
8e:2e:9c:d1:ef:1a:51:16:3b:d2:73:b7:a4:d5:7c:
c9:83:11:b6:98:a9:86:22:97:13:a2:24:3f:6a:dc:
87:2a:4f:3e:38:64:f9:25:d5:f8:19:fd:71:8f:22:
f6:ab:25:30:31:06:ba:d6:10:21:35:b2:c2:8d:0b:
a7:23:03:d5:54:6e:59:a0:f9:63:a4:a4:dd:65:42:
fc:13:b2:09:a2:76:41:aa:07:63:0d:d9:3b:7a:41:
6e:7a:6a:72:0c:d3:57:df:b3:d3:8f:ba:8c:af:8c:
f5:6d:e1:3a:54:90:f5:dd:a1:95:72:a1:0e:71:0c:
42:d7:d4:96:59:68:35:41:74:26:77:e5:2a:45:13:
92:8b:40:4a:3f:1d:86:ff:28:7b:5a:14:c2:fa:25:
ff:b6:f5:5a:72:09:71:25:2b:7a:ee:f6:73:e0:fb:
85:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:E5:86:EE:BA:63:1F:DE:65:F7:DA:44:21:C3:6A:25:93:C9:A8:05
X509v3 Authority Key Identifier:
keyid:B8:C8:AA:18:73:0F:4A:83:E2:85:2C:56:92:55:1A:BB:5B:1E:E7:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMiqGHMPSoPihSxWklUau1se5-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/h-WG7rpjH95l99pEIcNqJZPJqAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a94992-566b-4b6f-a689-a57604a3f6bb/1/uMiqGHMPSoPihSxWklUau1se5-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.215.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:be:24:50:70:6d:18:4d:7b:22:cc:53:07:76:67:38:e2:cb:
19:76:7a:be:75:3b:5b:19:24:ad:cf:6e:78:d7:3d:76:3a:c4:
f5:aa:ac:bf:d4:4b:d4:d8:ea:ae:3a:d5:d4:d9:6b:3c:ea:5d:
6c:51:99:79:70:84:52:c9:5f:88:c2:ca:9e:2d:50:35:fa:4a:
31:b3:80:93:93:d0:38:14:02:98:fd:4e:0a:72:be:f0:ff:f3:
9c:ff:a7:c4:1e:81:82:3e:34:78:90:b1:c9:c6:86:71:9c:e7:
84:22:1d:e2:b0:4f:a5:53:0e:ed:26:b6:02:ee:26:62:e7:22:
4a:85:bf:e7:c8:22:76:b6:22:15:92:c1:22:77:d0:ad:d7:ee:
af:51:e3:89:a8:e4:02:f2:67:6f:56:f1:d2:3b:2a:64:d5:a1:
9d:12:fe:96:ae:4c:9e:16:df:f5:1c:0a:71:e6:a2:40:4f:a1:
3e:ba:4d:08:d4:d5:a1:79:e9:77:23:fa:dc:64:cd:3a:d8:95:
ec:ba:58:1e:e2:03:c1:f9:fd:c7:e2:26:7d:ee:fc:59:01:98:
da:26:93:a2:53:7b:72:1c:3b:bc:49:71:b7:32:e5:36:14:d9:
38:04:49:ec:db:7a:73:44:57:b0:14:a0:05:59:03:36:61:76:
1e:9d:4f:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2rGt4oP5lW50VinSW/s3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4YzhhYTE4NzMwZjRhODNlMjg1MmM1NjkyNTUxYWJiNWIx
ZWU3ZWEwHhcNMjQwMTAxMDIyOTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2U1ODZlZWJhNjMxZmRlNjVmN2RhNDQyMWMzNmEyNTkzYzlhODA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDc8KGK7lWV2/aZL5U+QqT+xsKzM
ntvY6W3ZiEUOnDd27ynl58xGTY7mELnEy4ULA5XCVIUgqVfTaLIxnoIzqjUyOgVp
ut7jgG6DyNK2+Br9cMPcjyma33qOLpzR7xpRFjvSc7ek1XzJgxG2mKmGIpcToiQ/
atyHKk8+OGT5JdX4Gf1xjyL2qyUwMQa61hAhNbLCjQunIwPVVG5ZoPljpKTdZUL8
E7IJonZBqgdjDdk7ekFuempyDNNX37PTj7qMr4z1beE6VJD13aGVcqEOcQxC19SW
WWg1QXQmd+UqRROSi0BKPx2G/yh7WhTC+iX/tvVacglxJSt67vZz4PuFJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIflhu66Yx/eZffaRCHDaiWTyagFMB8GA1UdIwQY
MBaAFLjIqhhzD0qD4oUsVpJVGrtbHufqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdU1pcUdITVBTb1BpaFN4V2tsVWF1MXNlNS1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9hOTQ5OTItNTY2Yi00YjZmLWE2ODkt
YTU3NjA0YTNmNmJiLzEvaC1XRzdycGpIOTVsOTlwRUljTnFKWlBKcUFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9hOTQ5OTItNTY2Yi00YjZmLWE2ODktYTU3NjA0YTNmNmJi
LzEvdU1pcUdITVBTb1BpaFN4V2tsVWF1MXNlNS1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNdQMA0G
CSqGSIb3DQEBCwUAA4IBAQAeviRQcG0YTXsizFMHdmc44ssZdnq+dTtbGSStz254
1z12OsT1qqy/1EvU2OquOtXU2Ws86l1sUZl5cIRSyV+IwsqeLVA1+koxs4CTk9A4
FAKY/U4Kcr7w//Oc/6fEHoGCPjR4kLHJxoZxnOeEIh3isE+lUw7tJrYC7iZi5yJK
hb/nyCJ2tiIVksEid9Ct1+6vUeOJqOQC8mdvVvHSOypk1aGdEv6WrkyeFt/1HApx
5qJAT6E+uk0I1NWheel3I/rcZM062JXsulge4gPB+f3H4iZ97vxZAZjaJpOiU3ty
HDu8SXG3MuU2FNk4BEns23pzRFewFKAFWQM2YXYenU/Z
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:27 2024 by rpki-client on console-ams.rpki-client.org