Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/zIMsTk0d2hZiY20XcWYQs7iFNQE.roa
File: zIMsTk0d2hZiY20XcWYQs7iFNQE.roa (raw, json)
Hash identifier: quoKTJjmuWaaQgjTfaCk9SQOOm0WNrqoXQS/6EHcmn0=
Subject key identifier: CC:83:2C:4E:4D:1D:DA:16:62:63:6D:17:71:66:10:B3:B8:85:35:01
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0190B774F81BFA2636B88608AE99C8E24BD7
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/zIMsTk0d2hZiY20XcWYQs7iFNQE.roa
Signing time: Mon 15 Jul 2024 17:33:34 +0000
ROA not before: Mon 15 Jul 2024 17:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215480
IP address blocks: 188.240.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 11:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b7:74:f8:1b:fa:26:36:b8:86:08:ae:99:c8:e2:4b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jul 15 17:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc832c4e4d1dda1662636d17716610b3b8853501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:98:e2:1f:d3:58:0b:96:c0:95:3d:cf:eb:90:
7a:53:74:1b:ae:60:76:09:f6:a1:cb:dd:77:c6:ae:
ef:f7:9e:f8:9c:3c:69:7e:82:3e:44:0a:5b:45:e0:
ec:26:ea:3b:8d:7a:b4:00:8d:a2:40:d2:c8:99:57:
bb:80:2e:f2:50:4e:46:70:69:20:fa:4d:a9:c4:0e:
e5:8a:be:9c:8c:5a:42:a6:3c:27:f3:80:04:28:c9:
ec:60:8d:aa:ea:4d:fa:11:89:b9:61:1e:47:40:a3:
8c:65:1f:b7:fd:6d:12:34:66:46:af:ec:d4:bc:8c:
8f:72:a1:22:fb:a1:2e:d4:2c:4d:19:4a:d6:19:b0:
2b:9e:c6:62:71:54:59:c1:d9:d9:57:d0:f6:8d:13:
c3:ac:d0:7c:d9:74:93:62:19:1f:a9:35:4b:6f:2f:
48:f4:6f:49:c8:7f:f2:1a:c5:70:e7:89:52:d8:9b:
34:ea:28:e3:c6:34:8d:52:2f:13:60:fd:14:e9:70:
5d:db:64:f7:8f:d5:3e:42:39:c5:b2:20:e5:96:30:
1e:b6:2f:05:6f:3c:5d:29:0f:f3:0b:3e:c8:d1:53:
5c:1f:32:5a:96:bc:a8:a3:8a:d7:26:0e:dd:ef:01:
01:09:e7:98:64:2e:38:d3:9d:2e:ab:82:5e:74:6f:
6c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:83:2C:4E:4D:1D:DA:16:62:63:6D:17:71:66:10:B3:B8:85:35:01
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/zIMsTk0d2hZiY20XcWYQs7iFNQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.240.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:7d:ea:16:58:40:42:fe:08:19:d4:27:3b:d3:39:9e:ba:86:
45:13:5a:67:03:47:0f:30:1e:2a:f5:b5:c2:d2:a9:d0:b8:49:
9a:fd:3b:de:85:cb:75:6c:d5:8d:6d:08:21:0b:47:b0:f2:2f:
17:88:ac:21:7b:7b:b7:0e:3f:75:1e:f9:84:10:04:56:97:e6:
ea:3c:9e:68:d4:41:23:ee:83:98:f2:ca:ff:09:54:03:eb:93:
2f:26:21:13:d4:11:2f:e2:6f:37:9a:a9:e7:4c:5f:2d:53:78:
ad:21:65:92:5f:9e:e3:e2:1c:30:7a:42:54:83:cd:27:74:58:
29:5d:29:94:60:3d:be:76:bf:b2:30:6f:61:00:36:1d:94:c0:
13:28:1f:88:76:6a:d3:eb:42:35:7b:6d:f6:1e:5c:af:31:5f:
85:b2:9f:28:93:0f:09:ad:27:3c:d1:98:bb:dd:c8:7b:a8:da:
74:29:16:37:af:22:9b:34:37:f2:85:1d:8e:ed:ae:a0:7f:35:
cf:de:3b:1b:b4:c0:75:f7:f1:a7:00:2a:56:ea:ec:21:28:ef:
56:e6:02:7e:da:d5:dd:04:86:f7:64:8d:f6:94:9f:f1:90:24:
6e:43:da:f5:91:34:f0:56:17:c7:32:5d:0f:8a:23:7c:e2:c4:
99:c6:8e:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZC3dPgb+iY2uIYIrpnI4kvXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjQwNzE1MTczMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzgzMmM0ZTRkMWRkYTE2NjI2MzZkMTc3MTY2MTBiM2I4ODUzNTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5jiH9NYC5bAlT3P65B6U3QbrmB2
Cfahy913xq7v9574nDxpfoI+RApbReDsJuo7jXq0AI2iQNLImVe7gC7yUE5GcGkg
+k2pxA7lir6cjFpCpjwn84AEKMnsYI2q6k36EYm5YR5HQKOMZR+3/W0SNGZGr+zU
vIyPcqEi+6Eu1CxNGUrWGbArnsZicVRZwdnZV9D2jRPDrNB82XSTYhkfqTVLby9I
9G9JyH/yGsVw54lS2Js06ijjxjSNUi8TYP0U6XBd22T3j9U+QjnFsiDlljAeti8F
bzxdKQ/zCz7I0VNcHzJalryoo4rXJg7d7wEBCeeYZC44050uq4JedG9svQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMyDLE5NHdoWYmNtF3FmELO4hTUBMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEveklNc1RrMGQyaFppWTIwWGNXWVFzN2lGTlFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvPDEMA0G
CSqGSIb3DQEBCwUAA4IBAQAffeoWWEBC/ggZ1Cc70zmeuoZFE1pnA0cPMB4q9bXC
0qnQuEma/Tvehct1bNWNbQghC0ew8i8XiKwhe3u3Dj91HvmEEARWl+bqPJ5o1EEj
7oOY8sr/CVQD65MvJiET1BEv4m83mqnnTF8tU3itIWWSX57j4hwwekJUg80ndFgp
XSmUYD2+dr+yMG9hADYdlMATKB+IdmrT60I1e232HlyvMV+Fsp8okw8JrSc80Zi7
3ch7qNp0KRY3ryKbNDfyhR2O7a6gfzXP3jsbtMB19/GnACpW6uwhKO9W5gJ+2tXd
BIb3ZI32lJ/xkCRuQ9r1kTTwVhfHMl0PiiN84sSZxo6l
-----END CERTIFICATE-----
Generated at Thu Jul 18 16:37:41 2024 by rpki-client on console-fra.rpki-client.org