Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/27HkHFVzwmhLL4-Iq7cY0GU8KwY.roa
File: 27HkHFVzwmhLL4-Iq7cY0GU8KwY.roa (raw, json)
Hash identifier: E2yryFcJcU5g9FoHrr+xziEd4BEYYkL+rr/6/v3Ye8g=
Subject key identifier: DB:B1:E4:1C:55:73:C2:68:4B:2F:8F:88:AB:B7:18:D0:65:3C:2B:06
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018571BA125BBA64B4A8988CE037093BF0B1
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/27HkHFVzwmhLL4-Iq7cY0GU8KwY.roa
Signing time: Mon 02 Jan 2023 09:04:57 +0000
ROA not before: Mon 02 Jan 2023 09:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51824
IP address blocks: 188.191.105.0/24 maxlen: 24
188.191.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 06:45:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:12:5b:ba:64:b4:a8:98:8c:e0:37:09:3b:f0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 2 09:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbb1e41c5573c2684b2f8f88abb718d0653c2b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6d:89:f6:55:43:7b:b0:c9:f0:c0:3e:d8:72:
e5:bf:2a:6b:df:37:aa:7a:07:47:c2:73:9d:32:31:
d0:52:05:62:de:75:a4:1b:27:43:50:56:ec:64:52:
47:8d:99:5c:3a:4f:53:d8:bc:0f:ff:27:90:e8:13:
3a:bc:f8:7b:75:6a:12:86:05:83:33:e6:77:5a:5b:
50:a8:62:92:dd:17:b0:ec:40:5a:b7:e1:80:cb:5d:
1b:0e:7b:b8:dc:26:5a:e1:27:fe:54:b0:95:c8:cb:
db:65:73:71:95:a3:3e:df:21:f4:8f:b4:24:df:aa:
16:31:f9:cd:87:6a:ec:ae:07:8e:f7:18:f6:21:6c:
b4:28:f0:18:40:ed:80:a7:56:fe:42:4f:23:19:33:
8b:1b:77:3e:54:b2:e1:e7:d2:6f:0c:21:1a:b6:d2:
8e:f8:c1:ca:04:bb:b5:b2:5d:e4:a8:12:e7:b9:17:
3d:a6:03:b1:20:5b:cc:97:7f:86:ea:54:e9:cc:b0:
92:f9:c3:cb:d4:0c:f5:eb:19:16:b7:fc:76:5d:2d:
63:cf:ae:e4:0a:22:f9:03:75:d7:47:c9:b9:b3:da:
f9:97:f3:1f:be:6e:8b:cb:9b:60:f5:77:a2:ff:b1:
8a:f9:64:69:1e:9d:56:f1:c8:43:b7:20:c5:f1:a3:
54:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B1:E4:1C:55:73:C2:68:4B:2F:8F:88:AB:B7:18:D0:65:3C:2B:06
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/27HkHFVzwmhLL4-Iq7cY0GU8KwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.104.0/23
Signature Algorithm: sha256WithRSAEncryption
47:87:49:1d:82:81:64:d3:cb:8b:39:e1:e6:88:22:21:ab:c7:
f3:af:3f:f5:a3:d9:93:6e:3e:a0:dd:39:5c:89:0c:36:4e:8c:
7d:85:8a:c8:33:5d:36:73:29:b1:d2:c7:41:59:6f:bc:93:d6:
f6:6a:98:f8:78:1f:d4:06:a0:d1:eb:db:b4:8b:02:70:86:47:
eb:74:be:d0:08:50:59:bf:80:68:a6:93:4d:a3:f2:0d:fe:58:
52:a9:4e:1d:2f:68:42:df:1b:1f:c6:91:fe:69:5c:eb:31:df:
c6:89:cb:9d:33:cc:b5:08:1d:7f:7e:8e:d7:a4:62:ba:7b:36:
0d:0f:d6:67:ba:84:25:09:cb:06:50:34:0a:6c:83:84:8d:ed:
1d:36:80:69:34:d5:e2:c0:87:1c:40:e6:0a:fc:7a:05:9a:1b:
46:0c:e4:a5:e5:eb:01:4b:74:c0:ec:55:69:51:9c:eb:03:dd:
33:db:28:ab:37:12:00:59:fd:5b:25:22:04:50:f9:02:eb:8e:
21:a9:f7:c2:1b:59:e2:69:2b:d5:81:fa:76:de:7e:26:05:e5:
8a:65:63:80:f5:2e:87:38:14:99:ff:6e:39:eb:d2:7b:31:03:
4b:67:49:25:5c:f3:20:d4:65:d4:b5:3c:6e:b5:e5:69:f2:3d:
de:68:f8:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxuhJbumS0qJiM4DcJO/CxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjMwMTAyMDkwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmIxZTQxYzU1NzNjMjY4NGIyZjhmODhhYmI3MThkMDY1M2MyYjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6W2J9lVDe7DJ8MA+2HLlvypr3zeq
egdHwnOdMjHQUgVi3nWkGydDUFbsZFJHjZlcOk9T2LwP/yeQ6BM6vPh7dWoShgWD
M+Z3WltQqGKS3Rew7EBat+GAy10bDnu43CZa4Sf+VLCVyMvbZXNxlaM+3yH0j7Qk
36oWMfnNh2rsrgeO9xj2IWy0KPAYQO2Ap1b+Qk8jGTOLG3c+VLLh59JvDCEattKO
+MHKBLu1sl3kqBLnuRc9pgOxIFvMl3+G6lTpzLCS+cPL1Az16xkWt/x2XS1jz67k
CiL5A3XXR8m5s9r5l/Mfvm6Ly5tg9Xei/7GK+WRpHp1W8chDtyDF8aNUFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNux5BxVc8JoSy+PiKu3GNBlPCsGMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvMjdIa0hGVnp3bWhMTDQtSXE3Y1kwR1U4S3dZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBvL9oMA0G
CSqGSIb3DQEBCwUAA4IBAQBHh0kdgoFk08uLOeHmiCIhq8fzrz/1o9mTbj6g3Tlc
iQw2Tox9hYrIM102cymx0sdBWW+8k9b2apj4eB/UBqDR69u0iwJwhkfrdL7QCFBZ
v4BoppNNo/IN/lhSqU4dL2hC3xsfxpH+aVzrMd/GicudM8y1CB1/fo7XpGK6ezYN
D9ZnuoQlCcsGUDQKbIOEje0dNoBpNNXiwIccQOYK/HoFmhtGDOSl5esBS3TA7FVp
UZzrA90z2yirNxIAWf1bJSIEUPkC644hqffCG1niaSvVgfp23n4mBeWKZWOA9S6H
OBSZ/24569J7MQNLZ0klXPMg1GXUtTxuteVp8j3eaPj4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:48 2024 by rpki-client on console-ams.rpki-client.org