Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/yQI7Y9C1ka4rvTv1O9huugWsjkk.roa
File: yQI7Y9C1ka4rvTv1O9huugWsjkk.roa (raw, json)
Hash identifier: feaQ00KcSpwT23llxc4IdUCDT0GtL6XKa70lWaxgklE=
Subject key identifier: C9:02:3B:63:D0:B5:91:AE:2B:BD:3B:F5:3B:D8:6E:BA:05:AC:8E:49
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018A506CD682A925A4BE9AE9A447062D478B
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/yQI7Y9C1ka4rvTv1O9huugWsjkk.roa
Signing time: Fri 01 Sep 2023 11:07:04 +0000
ROA not before: Fri 01 Sep 2023 11:07:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.191.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 04:18:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:50:6c:d6:82:a9:25:a4:be:9a:e9:a4:47:06:2d:47:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Sep 1 11:07:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9023b63d0b591ae2bbd3bf53bd86eba05ac8e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:78:00:a7:43:5e:0d:83:a3:00:9a:81:df:
66:48:77:7c:68:ac:d1:35:96:fd:7f:b7:33:60:e1:
22:b5:0e:98:b4:da:6b:07:9a:1e:53:43:02:b5:f4:
83:0c:74:d5:41:c5:61:ab:ff:21:9c:04:16:3b:b6:
74:6e:64:60:fe:46:fd:7e:f6:8e:8c:7c:7e:b4:8d:
94:54:e9:3d:a2:12:57:42:c4:6b:c9:a3:db:fe:8f:
ea:93:ec:25:46:6e:52:e1:90:fc:6c:b9:94:c9:b5:
64:3b:ae:b1:3d:da:f1:95:ce:bf:7e:0e:56:8e:9d:
77:5e:11:da:81:53:26:a3:66:6e:03:7d:b6:b3:b0:
d8:8c:99:44:6b:ca:ab:8c:42:03:3a:76:a5:16:03:
3d:33:ac:ca:5f:cb:ea:3f:3a:07:bd:84:c5:85:94:
0f:81:fe:e4:6b:b0:90:5a:e3:17:aa:1c:1d:a9:c6:
98:c9:ef:0d:19:ef:21:81:90:6e:d0:90:df:38:51:
fd:4e:42:55:76:39:9e:7a:42:d5:45:c7:c2:eb:69:
78:be:48:43:15:77:0c:4a:a3:e5:b4:13:79:86:2e:
4f:ac:ed:aa:62:7e:36:1d:24:f3:ae:ee:61:fb:85:
51:e0:75:1c:4d:cb:03:c1:f2:c7:5f:38:95:1e:5c:
c4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:02:3B:63:D0:B5:91:AE:2B:BD:3B:F5:3B:D8:6E:BA:05:AC:8E:49
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/yQI7Y9C1ka4rvTv1O9huugWsjkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.97.0/24
Signature Algorithm: sha256WithRSAEncryption
38:61:48:7d:64:51:66:2c:d5:ff:6a:77:95:16:39:31:1b:9f:
a9:1d:c3:1b:5a:5f:cb:48:30:02:db:51:81:64:04:a6:3e:72:
ce:b2:0d:dd:5a:e0:2e:fe:d7:73:90:d7:a5:aa:72:74:f7:95:
2e:1c:03:6c:6b:46:cf:5a:2a:46:95:d8:19:58:15:c8:61:4c:
93:b3:6c:58:5e:a7:56:b0:e3:79:75:f9:0c:04:f4:a3:cd:b4:
da:73:46:fb:ce:8e:2d:9e:18:0b:6e:46:0a:31:87:75:49:f8:
4c:7d:ae:19:5c:3f:0b:e7:2d:78:3b:16:cd:22:23:86:6a:59:
74:6a:fc:20:42:4a:3f:64:1b:03:f1:35:3f:64:76:ca:0d:bf:
ae:9c:97:7c:eb:d8:6e:09:8a:02:d2:8c:fc:16:6d:16:92:a0:
2e:4b:49:3c:36:66:f2:e6:c6:03:e9:1e:cc:24:e7:e0:6b:59:
f6:fa:40:4f:e6:d6:02:1d:43:00:d8:b1:bc:49:a2:48:d2:22:
d8:82:1f:e1:a1:34:19:21:11:74:4b:e7:dc:2c:0e:94:98:b4:
de:40:ce:c3:a3:38:76:48:a8:9e:42:55:34:b1:ca:37:a5:80:
6c:0c:a5:4f:70:96:b3:d6:92:c7:28:23:f7:ae:25:f2:54:a7:
42:0d:18:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpQbNaCqSWkvprppEcGLUeLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjMwOTAxMTEwNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTAyM2I2M2QwYjU5MWFlMmJiZDNiZjUzYmQ4NmViYTA1YWM4ZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOB4AKdDXg2DowCagd9mSHd8aKzR
NZb9f7czYOEitQ6YtNprB5oeU0MCtfSDDHTVQcVhq/8hnAQWO7Z0bmRg/kb9fvaO
jHx+tI2UVOk9ohJXQsRryaPb/o/qk+wlRm5S4ZD8bLmUybVkO66xPdrxlc6/fg5W
jp13XhHagVMmo2ZuA322s7DYjJlEa8qrjEIDOnalFgM9M6zKX8vqPzoHvYTFhZQP
gf7ka7CQWuMXqhwdqcaYye8NGe8hgZBu0JDfOFH9TkJVdjmeekLVRcfC62l4vkhD
FXcMSqPltBN5hi5PrO2qYn42HSTzru5h+4VR4HUcTcsDwfLHXziVHlzE4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMkCO2PQtZGuK7079TvYbroFrI5JMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEveVFJN1k5QzFrYTRydlR2MU85aHV1Z1dzamtrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL9hMA0G
CSqGSIb3DQEBCwUAA4IBAQA4YUh9ZFFmLNX/aneVFjkxG5+pHcMbWl/LSDAC21GB
ZASmPnLOsg3dWuAu/tdzkNelqnJ095UuHANsa0bPWipGldgZWBXIYUyTs2xYXqdW
sON5dfkMBPSjzbTac0b7zo4tnhgLbkYKMYd1SfhMfa4ZXD8L5y14OxbNIiOGall0
avwgQko/ZBsD8TU/ZHbKDb+unJd869huCYoC0oz8Fm0WkqAuS0k8Nmby5sYD6R7M
JOfga1n2+kBP5tYCHUMA2LG8SaJI0iLYgh/hoTQZIRF0S+fcLA6UmLTeQM7Dozh2
SKieQlU0sco3pYBsDKVPcJaz1pLHKCP3riXyVKdCDRgB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org