Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lU2bkRptJZc15xFyRfz1PstCV90.roa
File: lU2bkRptJZc15xFyRfz1PstCV90.roa (raw, json)
Hash identifier: 1XtuvBgBPivhww57HnB54acEeUlrYCAT6zw6jMlnIcc=
Subject key identifier: 95:4D:9B:91:1A:6D:25:97:35:E7:11:72:45:FC:F5:3E:CB:42:57:DD
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018571BA147921BAA6EFEFF78943E5CC8694
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lU2bkRptJZc15xFyRfz1PstCV90.roa
Signing time: Mon 02 Jan 2023 09:04:58 +0000
ROA not before: Mon 02 Jan 2023 09:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 188.191.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:14:79:21:ba:a6:ef:ef:f7:89:43:e5:cc:86:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 2 09:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=954d9b911a6d259735e7117245fcf53ecb4257dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:73:62:ce:8f:4f:38:4d:ee:a0:a3:e3:bc:0c:
d7:ec:b5:82:45:ef:f0:c5:47:ee:fc:9f:e1:c9:c9:
a8:47:f5:35:ed:51:83:bc:75:a5:10:f6:d7:4f:b3:
62:44:f5:bd:cf:df:61:03:3b:69:1c:37:a7:49:3d:
c7:1d:8a:07:94:c0:29:97:14:46:4e:93:d8:7b:e7:
f8:54:a7:6b:97:ec:7a:5e:b6:d4:69:ab:69:34:c7:
0b:0e:90:53:70:06:a1:a8:93:3b:09:e3:a7:ad:9f:
93:a0:c5:2d:e5:e5:53:7b:f5:b3:48:e0:ca:10:e8:
78:0d:d2:a6:df:71:9a:91:cf:55:81:f8:5e:26:ee:
cb:ec:38:53:04:32:0e:01:f4:e2:41:d5:5a:83:3f:
18:ab:6b:f7:16:3c:f6:b7:ff:b8:51:9a:b2:94:3a:
2e:5a:8b:fc:02:bb:f8:db:7a:be:5c:e8:7f:52:58:
72:14:d8:53:a5:1a:39:01:23:44:67:83:09:77:eb:
fb:5a:29:f6:21:1b:f0:e6:b6:50:a4:b0:f6:d8:02:
54:d7:b6:a7:1f:31:62:12:c3:b0:85:c3:1a:06:68:
5e:3d:8a:c6:d5:73:6e:7d:66:22:69:fe:a9:62:8d:
b6:86:71:ca:1a:25:60:38:81:48:24:6d:b9:3a:b9:
ab:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4D:9B:91:1A:6D:25:97:35:E7:11:72:45:FC:F5:3E:CB:42:57:DD
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lU2bkRptJZc15xFyRfz1PstCV90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.102.0/24
Signature Algorithm: sha256WithRSAEncryption
23:25:5e:40:0d:e6:21:34:eb:a2:73:dc:de:c6:3a:1a:e1:65:
61:60:c0:bd:fb:48:34:6c:f3:d0:e5:9d:71:88:74:47:0d:03:
06:68:18:85:e0:36:ae:4f:8b:24:95:0a:b5:36:d4:ab:d9:f4:
34:5d:db:7d:cd:67:1b:a6:ba:33:a4:61:0b:2d:23:62:27:a7:
52:2b:17:82:39:95:59:4d:4d:c1:bb:d7:78:16:9f:b6:92:f7:
ee:c2:12:2e:0b:9f:59:b4:76:84:02:cf:a1:83:ee:29:3d:62:
5d:6c:60:1e:ec:f2:84:c0:a8:4b:84:d4:35:c0:e0:0a:08:68:
69:45:eb:73:00:9a:ba:40:3e:be:2a:32:8c:b5:22:37:73:74:
67:6c:5e:d4:bc:9c:52:ed:f2:16:8a:01:d6:66:d7:f6:6f:45:
24:d0:06:d6:8c:eb:91:a6:11:5a:dc:58:70:5e:57:90:c8:e8:
aa:55:d5:a5:31:d1:31:6d:b5:8c:30:a2:07:11:a8:f5:86:c5:
c2:1c:5d:9a:a1:ba:4b:98:4d:cb:0e:a3:95:a2:62:81:97:be:
69:1d:43:66:3c:42:e6:c3:13:b6:87:83:15:b5:cb:8d:1b:0d:
d7:1a:4f:23:1c:03:74:13:c9:a0:f6:b5:5e:4b:6e:7d:10:d6:
7d:b7:16:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxuhR5Ibqm7+/3iUPlzIaUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjMwMTAyMDkwNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTRkOWI5MTFhNmQyNTk3MzVlNzExNzI0NWZjZjUzZWNiNDI1N2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHNizo9POE3uoKPjvAzX7LWCRe/w
xUfu/J/hycmoR/U17VGDvHWlEPbXT7NiRPW9z99hAztpHDenST3HHYoHlMAplxRG
TpPYe+f4VKdrl+x6XrbUaatpNMcLDpBTcAahqJM7CeOnrZ+ToMUt5eVTe/WzSODK
EOh4DdKm33Gakc9VgfheJu7L7DhTBDIOAfTiQdVagz8Yq2v3Fjz2t/+4UZqylDou
Wov8Arv423q+XOh/UlhyFNhTpRo5ASNEZ4MJd+v7Win2IRvw5rZQpLD22AJU17an
HzFiEsOwhcMaBmhePYrG1XNufWYiaf6pYo22hnHKGiVgOIFIJG25Ormr3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVNm5EabSWXNecRckX89T7LQlfdMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvbFUyYmtScHRKWmMxNXhGeVJmejFQc3RDVjkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL9mMA0G
CSqGSIb3DQEBCwUAA4IBAQAjJV5ADeYhNOuic9zexjoa4WVhYMC9+0g0bPPQ5Z1x
iHRHDQMGaBiF4DauT4sklQq1NtSr2fQ0Xdt9zWcbprozpGELLSNiJ6dSKxeCOZVZ
TU3Bu9d4Fp+2kvfuwhIuC59ZtHaEAs+hg+4pPWJdbGAe7PKEwKhLhNQ1wOAKCGhp
RetzAJq6QD6+KjKMtSI3c3RnbF7UvJxS7fIWigHWZtf2b0Uk0AbWjOuRphFa3Fhw
XleQyOiqVdWlMdExbbWMMKIHEaj1hsXCHF2aobpLmE3LDqOVomKBl75pHUNmPELm
wxO2h4MVtcuNGw3XGk8jHAN0E8mg9rVeS259ENZ9txa8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org