Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/01_CgWHpigOojjp11EG8kGJmFvM.roa
File: 01_CgWHpigOojjp11EG8kGJmFvM.roa (raw, json)
Hash identifier: LkN9CeqTErchv3BGT94E9ZebWYkjiyXxUFq26sXCZvM=
Subject key identifier: D3:5F:C2:81:61:E9:8A:03:A8:8E:3A:75:D4:41:BC:90:62:66:16:F3
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018CC8DCDFC4AA92805BDFB81956813F774E
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/01_CgWHpigOojjp11EG8kGJmFvM.roa
Signing time: Tue 02 Jan 2024 06:29:27 +0000
ROA not before: Tue 02 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211824
IP address blocks: 94.188.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 06:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:df:c4:aa:92:80:5b:df:b8:19:56:81:3f:77:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Jan 2 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d35fc28161e98a03a88e3a75d441bc90626616f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:29:8b:a9:51:7a:6d:84:8a:b2:8f:34:03:96:
24:3d:a2:d6:97:4b:f6:fd:1c:e0:d5:73:0c:91:3a:
9b:8f:17:e9:03:6e:d9:01:ad:a9:10:00:39:86:49:
84:81:4b:89:91:3e:55:ab:06:28:63:a9:d1:fd:0b:
d9:76:47:33:24:1d:17:27:c5:69:01:80:8c:e2:01:
d3:6f:5c:cc:d5:64:0e:9f:c3:0d:58:ea:82:f0:be:
d5:f4:a0:76:34:55:36:27:d7:4a:e7:36:c7:20:75:
53:67:86:fe:20:ff:b9:2f:ee:de:fe:f2:6e:98:c3:
6c:df:98:1c:c6:92:8e:69:8c:36:42:a5:b8:84:22:
9b:22:4f:bf:08:d4:59:28:f4:57:a8:62:ab:35:be:
48:30:23:53:9e:3e:af:2b:c1:b7:2d:a9:be:3d:d1:
38:c3:f6:9c:32:c7:46:01:81:14:4c:85:be:57:ef:
d8:4c:01:94:71:b6:0c:f4:e5:e2:a4:06:63:e7:b2:
81:a5:26:ca:0c:4e:2c:f1:85:2b:86:e7:b4:6d:71:
ba:25:2f:ae:28:2e:be:f9:77:6f:11:da:a6:e8:5e:
e1:9f:3c:2d:e1:eb:0e:f7:c1:89:d1:7e:74:8c:a4:
06:85:6d:0f:9e:64:91:4c:6c:ef:17:47:48:b2:dd:
ae:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5F:C2:81:61:E9:8A:03:A8:8E:3A:75:D4:41:BC:90:62:66:16:F3
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/01_CgWHpigOojjp11EG8kGJmFvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.188.218.0/24
Signature Algorithm: sha256WithRSAEncryption
34:8d:f4:44:8f:d6:5c:2e:1b:c8:5c:18:37:05:68:29:b4:98:
0c:77:8a:1d:de:e6:7d:90:20:81:ed:5a:61:bd:22:41:49:e5:
04:7a:49:ba:a7:b0:d9:bd:ad:c5:e8:3d:cf:68:c6:43:35:ae:
14:e0:8e:c0:ae:c7:5d:6f:d2:b3:10:8b:b8:65:f9:a4:0f:0c:
fd:c2:40:31:37:06:39:dd:6d:9f:f3:9f:8b:cb:f1:6c:39:11:
b1:56:1c:94:52:4f:89:4c:7b:1c:76:95:e1:68:d8:55:9e:4e:
67:7d:24:de:a1:78:76:73:1e:0b:8a:3c:18:87:e0:63:ce:99:
0e:8d:78:1a:b5:6b:18:15:ad:84:e3:d0:2b:4c:22:12:6a:81:
e7:16:0b:b4:d2:e9:09:25:9f:e4:09:a9:42:33:ca:4a:a8:b5:
a7:02:62:d4:3e:a6:b8:7d:3d:6c:c7:b4:3a:44:29:38:79:fb:
b8:b1:44:5c:0d:b6:df:8c:8b:d4:d1:b3:57:18:0a:2c:6a:a8:
5a:00:8b:c5:5b:5a:ed:df:cf:72:6a:d5:a6:09:82:c0:c6:23:
55:b3:69:72:bf:ec:b6:22:07:89:60:4f:98:f0:18:cc:14:ea:
fa:5f:02:7f:e4:b9:f7:63:ec:9f:67:e9:8a:91:cb:86:d1:93:
4c:49:40:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3N/EqpKAW9+4GVaBP3dOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDViYjQwMTE4MGU1NWY1YzE2NWQ0NzkwOGRmZjRmZTI5
YTBkODYwHhcNMjQwMTAyMDYyOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzVmYzI4MTYxZTk4YTAzYTg4ZTNhNzVkNDQxYmM5MDYyNjYxNmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCmLqVF6bYSKso80A5YkPaLWl0v2
/Rzg1XMMkTqbjxfpA27ZAa2pEAA5hkmEgUuJkT5VqwYoY6nR/QvZdkczJB0XJ8Vp
AYCM4gHTb1zM1WQOn8MNWOqC8L7V9KB2NFU2J9dK5zbHIHVTZ4b+IP+5L+7e/vJu
mMNs35gcxpKOaYw2QqW4hCKbIk+/CNRZKPRXqGKrNb5IMCNTnj6vK8G3Lam+PdE4
w/acMsdGAYEUTIW+V+/YTAGUcbYM9OXipAZj57KBpSbKDE4s8YUrhue0bXG6JS+u
KC6++XdvEdqm6F7hnzwt4esO98GJ0X50jKQGhW0PnmSRTGzvF0dIst2uYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNNfwoFh6YoDqI46ddRBvJBiZhbzMB8GA1UdIwQY
MBaAFOLVu0ARgOVfXBZdR5CN/0/img2GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEt
NDIxZTZiYzdlMmU4LzEvMDFfQ2dXSHBpZ09vampwMTFFRzhrR0ptRnZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEtNDIxZTZiYzdlMmU4
LzEvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXrzaMA0G
CSqGSIb3DQEBCwUAA4IBAQA0jfREj9ZcLhvIXBg3BWgptJgMd4od3uZ9kCCB7Vph
vSJBSeUEekm6p7DZva3F6D3PaMZDNa4U4I7Arsddb9KzEIu4ZfmkDwz9wkAxNwY5
3W2f85+Ly/FsORGxVhyUUk+JTHscdpXhaNhVnk5nfSTeoXh2cx4LijwYh+BjzpkO
jXgatWsYFa2E49ArTCISaoHnFgu00ukJJZ/kCalCM8pKqLWnAmLUPqa4fT1sx7Q6
RCk4efu4sURcDbbfjIvU0bNXGAosaqhaAIvFW1rt389yatWmCYLAxiNVs2lyv+y2
IgeJYE+Y8BjMFOr6XwJ/5Ln3Y+yfZ+mKkcuG0ZNMSUDY
-----END CERTIFICATE-----
Generated at Tue Feb 6 07:11:19 2024 by rpki-client on console-fra.rpki-client.org