Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/eCD0C1HRFZmceEttTZDwEO6XcLU.roa
File: eCD0C1HRFZmceEttTZDwEO6XcLU.roa (raw, json)
Hash identifier: nrCUN3t6P45kLC2Bd03RhtN9ITjPMSYgjqqQrwsYe2I=
Subject key identifier: 78:20:F4:0B:51:D1:15:99:9C:78:4B:6D:4D:90:F0:10:EE:97:70:B5
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0186CF88C88DC8126336D5FBF5A75EC2554E
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/eCD0C1HRFZmceEttTZDwEO6XcLU.roa
Signing time: Sat 11 Mar 2023 07:18:12 +0000
ROA not before: Sat 11 Mar 2023 07:18:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399045
IP address blocks: 188.191.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 04:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cf:88:c8:8d:c8:12:63:36:d5:fb:f5:a7:5e:c2:55:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Mar 11 07:18:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7820f40b51d115999c784b6d4d90f010ee9770b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:ab:2e:de:a6:14:08:fc:be:6b:1c:0a:82:
15:9d:71:22:5d:d1:c4:fe:9c:22:6c:bf:86:7b:61:
24:c9:a5:62:0f:2e:1f:cc:7d:e5:bd:60:c3:e4:2f:
4d:76:a2:66:4d:ed:1f:4e:1f:ec:e0:9a:1d:91:27:
58:ab:a0:a0:1b:d4:8a:37:d7:20:c9:a3:c9:fe:dd:
67:b2:9e:4f:a6:92:d9:46:6b:79:9c:60:af:5b:bc:
db:01:dc:1a:ba:3f:fa:27:42:1d:b4:07:af:52:70:
04:87:6d:8c:cf:0c:b5:5d:a4:9d:1b:3b:34:94:ce:
d2:a5:cd:86:14:ab:21:22:a9:ff:b6:4e:70:bd:aa:
56:fc:29:63:3a:c6:43:aa:91:1f:a7:34:a3:de:de:
f5:41:62:cb:b7:54:1a:25:38:b4:e8:41:90:aa:89:
98:8b:de:63:0f:3b:0a:4c:f8:e0:0b:95:aa:19:ad:
4e:3e:87:db:1d:cc:5b:a3:16:87:c0:62:1d:b5:8b:
71:57:ce:99:c5:9d:b3:a6:56:c7:3f:c8:f3:f5:e6:
70:e9:2f:c0:77:5e:c0:d3:9c:a7:49:dd:41:87:e6:
f5:7b:b4:63:c3:78:83:05:2a:8f:07:a8:91:b4:a8:
b7:ed:dd:d9:0a:6b:77:60:c6:17:02:9e:bf:f7:5a:
05:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:20:F4:0B:51:D1:15:99:9C:78:4B:6D:4D:90:F0:10:EE:97:70:B5
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/eCD0C1HRFZmceEttTZDwEO6XcLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.107.0/24
Signature Algorithm: sha256WithRSAEncryption
49:cf:08:fa:c0:e8:c2:45:6c:e7:06:61:74:02:f3:68:dc:e2:
6c:68:4d:b0:09:21:20:c4:4b:8e:2e:77:4f:7d:a2:25:ae:b0:
58:f3:08:56:35:7a:e0:2a:ba:0e:e2:d9:e8:4a:78:86:b4:89:
c3:e7:29:ed:3a:06:e3:ae:87:cf:e3:26:89:fd:fd:ac:53:10:
54:3b:40:46:40:78:13:fd:4e:22:5d:04:f9:d7:df:75:a3:2a:
8d:ab:3b:90:cf:b9:a3:32:ba:8a:f4:9d:76:d6:32:45:94:2a:
bd:2e:8a:7e:f3:b9:6a:66:63:5e:63:d0:43:57:4a:c7:ca:d9:
ae:32:da:3f:61:06:a7:ab:8e:99:7f:7c:07:fc:89:b7:12:45:
08:40:8b:84:3a:b3:29:c2:87:84:be:92:23:d6:3d:4e:0e:a1:
23:a1:d3:fe:c5:b4:f7:e4:3a:78:39:1b:04:f0:aa:fa:f2:0c:
af:91:6b:c8:7a:13:19:57:6b:d2:92:47:83:41:cc:2d:6c:44:
73:50:de:5e:9f:5b:48:01:8f:d3:2b:55:a8:55:05:30:7c:1f:
dc:30:41:7e:ee:35:95:e1:7e:aa:a7:6e:48:e8:f6:4e:59:fd:
91:bf:a0:bb:38:2c:15:4b:71:ba:e1:ab:8b:c0:ee:4f:7a:ff:
3f:0f:dd:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbPiMiNyBJjNtX79adewlVOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjMwMzExMDcxODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODIwZjQwYjUxZDExNTk5OWM3ODRiNmQ0ZDkwZjAxMGVlOTc3MGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAerLt6mFAj8vmscCoIVnXEiXdHE
/pwibL+Ge2EkyaViDy4fzH3lvWDD5C9NdqJmTe0fTh/s4JodkSdYq6CgG9SKN9cg
yaPJ/t1nsp5PppLZRmt5nGCvW7zbAdwauj/6J0IdtAevUnAEh22Mzwy1XaSdGzs0
lM7Spc2GFKshIqn/tk5wvapW/CljOsZDqpEfpzSj3t71QWLLt1QaJTi06EGQqomY
i95jDzsKTPjgC5WqGa1OPofbHcxboxaHwGIdtYtxV86ZxZ2zplbHP8jz9eZw6S/A
d17A05ynSd1Bh+b1e7Rjw3iDBSqPB6iRtKi37d3ZCmt3YMYXAp6/91oFWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHgg9AtR0RWZnHhLbU2Q8BDul3C1MB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvZUNEMEMxSFJGWm1jZUV0dFRaRHdFTzZYY0xVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL9rMA0G
CSqGSIb3DQEBCwUAA4IBAQBJzwj6wOjCRWznBmF0AvNo3OJsaE2wCSEgxEuOLndP
faIlrrBY8whWNXrgKroO4tnoSniGtInD5yntOgbjrofP4yaJ/f2sUxBUO0BGQHgT
/U4iXQT51991oyqNqzuQz7mjMrqK9J121jJFlCq9Lop+87lqZmNeY9BDV0rHytmu
Mto/YQanq46Zf3wH/Im3EkUIQIuEOrMpwoeEvpIj1j1ODqEjodP+xbT35Dp4ORsE
8Kr68gyvkWvIehMZV2vSkkeDQcwtbERzUN5en1tIAY/TK1WoVQUwfB/cMEF+7jWV
4X6qp25I6PZOWf2Rv6C7OCwVS3G64auLwO5Pev8/D913
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org