Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/5MsV-aq4KPWwHR5v4V-1wIEA4QE.roa
File: 5MsV-aq4KPWwHR5v4V-1wIEA4QE.roa (raw, json)
Hash identifier: CVKUu45ZV/jUM/8OWQ61XZSjIed262616M9VjsTLMPk=
Subject key identifier: E4:CB:15:F9:AA:B8:28:F5:B0:1D:1E:6F:E1:5F:B5:C0:81:00:E1:01
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018D1AE23FD342C9D8266CF30E8F6ABDBCF0
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/5MsV-aq4KPWwHR5v4V-1wIEA4QE.roa
Signing time: Thu 18 Jan 2024 04:44:11 +0000
ROA not before: Thu 18 Jan 2024 04:44:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57391
IP address blocks: 188.212.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Mar 2024 20:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1a:e2:3f:d3:42:c9:d8:26:6c:f3:0e:8f:6a:bd:bc:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 18 04:44:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4cb15f9aab828f5b01d1e6fe15fb5c08100e101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8b:cf:34:f5:ee:c8:23:9f:10:3f:a9:08:1b:
0f:1f:2c:7b:a8:89:94:4b:8a:75:1f:11:dc:c8:b5:
68:2e:89:4a:91:0d:4e:08:5b:0e:ce:74:fb:a0:b8:
8f:13:01:f4:32:01:b5:08:21:65:5a:55:27:d2:51:
b4:63:f7:d2:36:f3:e8:b8:e8:46:24:46:89:3f:02:
50:90:e2:f8:9b:3a:58:b1:cd:68:f3:81:13:1a:d3:
0b:91:54:96:b9:9e:f2:bb:ef:82:57:51:92:2c:79:
bd:bc:6a:5a:68:ac:5d:ae:da:d0:b5:57:1a:03:fe:
77:8c:73:16:e4:a1:65:d3:ce:d3:c3:cd:ae:33:8c:
d3:c0:6a:b8:a4:6d:5f:91:bc:58:85:a5:b4:3a:ba:
0b:4d:1c:2f:f5:cb:09:aa:34:d1:af:b7:90:94:77:
ea:b6:e1:3e:e6:d8:f2:4d:6d:6f:e0:5a:c0:4a:86:
c8:09:f0:ba:13:6e:2a:56:7c:03:41:48:87:3b:01:
11:6a:1d:09:67:40:c6:e9:ec:e7:ea:aa:99:3d:e4:
bc:f5:ab:eb:8b:5f:2c:1a:de:61:b5:8c:5d:73:9d:
9a:a9:27:ad:e4:52:6e:60:47:63:e8:dd:49:9b:0c:
a1:2c:cb:1c:d1:93:99:8b:8e:58:1b:c3:15:02:84:
f2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:CB:15:F9:AA:B8:28:F5:B0:1D:1E:6F:E1:5F:B5:C0:81:00:E1:01
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/5MsV-aq4KPWwHR5v4V-1wIEA4QE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.98.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:a0:59:ac:3b:19:c0:b3:8a:14:c9:e5:d3:59:70:94:cf:2e:
c4:7e:54:c1:dd:13:a5:9d:c2:12:82:7d:40:e4:5b:b9:a7:e7:
fd:3c:58:6d:16:a6:85:a3:e8:bd:17:ad:f0:b4:6d:30:84:d9:
e4:4b:cc:d8:64:d6:5e:88:2e:0c:f5:21:69:53:61:b5:7e:89:
3a:5a:67:88:20:47:bb:31:d2:69:69:f8:26:bf:1b:d8:1e:a0:
49:fa:5f:d0:66:93:27:0c:a2:19:fa:fa:27:d1:5e:f4:fa:98:
b9:32:37:13:7f:50:fd:ee:e6:16:e0:d7:20:18:3e:04:42:1c:
29:f8:a0:1d:9a:6d:fb:8f:eb:68:cc:9f:7f:59:a2:39:2d:3d:
e8:31:0a:7f:6b:2c:bf:7b:0b:08:49:56:ec:39:d4:c3:bb:9d:
03:6c:8f:33:e5:f7:29:f7:8b:2b:0f:dd:40:e8:2f:8d:00:c6:
88:b7:53:67:05:2f:41:0b:d8:4f:62:ef:c2:4c:e5:23:4c:a7:
f3:a9:1b:01:8b:b1:cc:4a:f4:59:53:bc:3c:1a:2c:87:89:f6:
4c:59:58:f3:35:40:01:a2:9e:44:3d:70:cc:89:8f:95:d3:a4:
3b:22:17:9b:d3:9d:40:49:ba:62:26:d7:54:0e:4f:80:b3:f6:
91:b9:3b:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0a4j/TQsnYJmzzDo9qvbzwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjQwMTE4MDQ0NDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGNiMTVmOWFhYjgyOGY1YjAxZDFlNmZlMTVmYjVjMDgxMDBlMTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIvPNPXuyCOfED+pCBsPHyx7qImU
S4p1HxHcyLVoLolKkQ1OCFsOznT7oLiPEwH0MgG1CCFlWlUn0lG0Y/fSNvPouOhG
JEaJPwJQkOL4mzpYsc1o84ETGtMLkVSWuZ7yu++CV1GSLHm9vGpaaKxdrtrQtVca
A/53jHMW5KFl087Tw82uM4zTwGq4pG1fkbxYhaW0OroLTRwv9csJqjTRr7eQlHfq
tuE+5tjyTW1v4FrASobICfC6E24qVnwDQUiHOwERah0JZ0DG6ezn6qqZPeS89avr
i18sGt5htYxdc52aqSet5FJuYEdj6N1JmwyhLMsc0ZOZi45YG8MVAoTyzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOTLFfmquCj1sB0eb+FftcCBAOEBMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvNU1zVi1hcTRLUFd3SFI1djRWLTF3SUVBNFFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNRiMA0G
CSqGSIb3DQEBCwUAA4IBAQAPoFmsOxnAs4oUyeXTWXCUzy7EflTB3ROlncISgn1A
5Fu5p+f9PFhtFqaFo+i9F63wtG0whNnkS8zYZNZeiC4M9SFpU2G1fok6WmeIIEe7
MdJpafgmvxvYHqBJ+l/QZpMnDKIZ+von0V70+pi5MjcTf1D97uYW4NcgGD4EQhwp
+KAdmm37j+tozJ9/WaI5LT3oMQp/ayy/ewsISVbsOdTDu50DbI8z5fcp94srD91A
6C+NAMaIt1NnBS9BC9hPYu/CTOUjTKfzqRsBi7HMSvRZU7w8GiyHifZMWVjzNUAB
op5EPXDMiY+V06Q7Iheb051ASbpiJtdUDk+As/aRuTuC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org