Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/lplyZsgV0GWHSu_YCEDl8NYymWs.roa
File: lplyZsgV0GWHSu_YCEDl8NYymWs.roa (raw, json)
Hash identifier: hf10rb2Xqd0zkRY8P0vvMh0fqKRihsMFgcq0PM09mXo=
Subject key identifier: 96:99:72:66:C8:15:D0:65:87:4A:EF:D8:08:40:E5:F0:D6:32:99:6B
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018C83552F3F21619D2BB24CD79907BD7AA8
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/lplyZsgV0GWHSu_YCEDl8NYymWs.roa
Signing time: Tue 19 Dec 2023 18:27:27 +0000
ROA not before: Tue 19 Dec 2023 18:27:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8342
IP address blocks: 188.130.200.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:83:55:2f:3f:21:61:9d:2b:b2:4c:d7:99:07:bd:7a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Dec 19 18:27:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96997266c815d065874aefd80840e5f0d632996b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ca:5b:8f:00:b5:a8:b3:45:23:e2:d3:cf:b9:
95:31:7b:70:ac:b7:d3:94:2f:5b:42:e2:3b:57:e8:
30:59:d3:f8:3f:ab:5d:1b:9e:e0:cf:f1:db:de:dd:
8a:a3:1e:6e:23:d8:8e:f4:e7:d6:c0:54:07:3e:74:
5f:b0:37:17:9d:97:75:63:cd:0b:c5:eb:61:79:48:
29:f5:bb:2e:dc:54:b7:55:0f:20:2e:df:ae:cf:27:
45:d8:25:85:89:4f:27:ce:a6:a0:96:e0:15:dc:96:
05:f4:b0:f1:20:96:60:23:24:4b:b2:f6:02:c8:8d:
7c:a2:6f:69:7e:4b:02:32:42:e4:00:61:7a:d2:7c:
1d:1a:2f:d0:68:95:f1:8e:f2:a9:e7:99:11:14:c4:
4b:16:d6:1e:8a:98:69:75:e1:f7:d8:29:15:32:59:
cb:63:b2:87:99:5f:da:d8:fa:49:5f:23:b6:50:09:
ef:c2:11:68:58:1e:2d:cc:a5:3e:a9:f8:fd:f7:83:
ec:f3:88:ca:43:5a:6b:2c:1d:68:28:50:4e:1d:8f:
22:87:f5:c8:08:88:2c:7e:f9:ba:ba:a2:ad:c7:21:
33:ea:1a:7c:27:dd:67:55:b8:6a:b3:26:04:1c:43:
49:12:4a:02:01:09:7f:f2:6d:81:62:cf:46:c6:bf:
c3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:99:72:66:C8:15:D0:65:87:4A:EF:D8:08:40:E5:F0:D6:32:99:6B
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/lplyZsgV0GWHSu_YCEDl8NYymWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.200.0/22
Signature Algorithm: sha256WithRSAEncryption
47:c2:fa:d5:8e:52:7c:1b:2c:e5:52:1f:e1:3a:5c:ed:ef:0b:
0a:49:84:7a:99:c3:f7:58:5b:de:c5:7a:93:f1:32:60:12:93:
c5:ff:35:00:c2:06:9e:a3:11:fd:1b:67:d3:8d:69:0b:6a:14:
42:18:0c:82:e8:aa:1c:b9:23:f1:7c:cd:e8:04:92:6c:69:d3:
0e:da:07:c1:76:dc:b0:29:ee:15:4c:61:78:1f:6a:dc:76:f3:
96:61:38:15:9d:ac:83:e3:c9:a6:5d:a5:78:a3:9f:94:00:7b:
5f:4f:ec:f4:e6:a8:ab:e8:c1:fe:d6:f9:50:26:6a:e5:9c:9f:
ff:a7:54:cb:8c:63:13:86:4c:19:99:4c:0a:8d:df:db:ee:57:
e3:c1:4d:7b:3b:72:69:83:80:13:ce:e7:81:40:96:40:61:48:
6a:20:28:4b:a1:d5:23:5b:04:d3:1e:74:a4:5f:0a:29:e1:77:
e0:19:5a:14:91:ec:51:3a:99:c3:b1:cc:f5:78:8a:c9:ef:89:
bd:eb:5f:f7:d8:69:f6:1d:42:54:3c:d4:ba:32:79:78:6c:ca:
32:29:08:31:12:c4:7f:13:de:ed:91:cc:5c:ea:57:7e:3d:4d:
80:34:c9:40:1b:f1:2a:82:a4:e1:7a:68:3a:78:83:42:1c:c8:
f5:f1:cc:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyDVS8/IWGdK7JM15kHvXqoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NWI4NTc3MDZkYWM1NGUyMGNhMGQxMWJkNjQxNmNiNjM0
MjAzYjQwHhcNMjMxMjE5MTgyNzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Njk5NzI2NmM4MTVkMDY1ODc0YWVmZDgwODQwZTVmMGQ2MzI5OTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgspbjwC1qLNFI+LTz7mVMXtwrLfT
lC9bQuI7V+gwWdP4P6tdG57gz/Hb3t2Kox5uI9iO9OfWwFQHPnRfsDcXnZd1Y80L
xetheUgp9bsu3FS3VQ8gLt+uzydF2CWFiU8nzqagluAV3JYF9LDxIJZgIyRLsvYC
yI18om9pfksCMkLkAGF60nwdGi/QaJXxjvKp55kRFMRLFtYeiphpdeH32CkVMlnL
Y7KHmV/a2PpJXyO2UAnvwhFoWB4tzKU+qfj994Ps84jKQ1prLB1oKFBOHY8ih/XI
CIgsfvm6uqKtxyEz6hp8J91nVbhqsyYEHENJEkoCAQl/8m2BYs9Gxr/DfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJaZcmbIFdBlh0rv2AhA5fDWMplrMB8GA1UdIwQY
MBaAFIhbhXcG2sVOIMoNEb1kFstjQgO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMt
MTY2OTljOTZkZDVlLzEvbHBseVpzZ1YwR1dIU3VfWUNFRGw4Tll5bVdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMtMTY2OTljOTZkZDVl
LzEvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvILIMA0G
CSqGSIb3DQEBCwUAA4IBAQBHwvrVjlJ8GyzlUh/hOlzt7wsKSYR6mcP3WFvexXqT
8TJgEpPF/zUAwgaeoxH9G2fTjWkLahRCGAyC6KocuSPxfM3oBJJsadMO2gfBdtyw
Ke4VTGF4H2rcdvOWYTgVnayD48mmXaV4o5+UAHtfT+z05qir6MH+1vlQJmrlnJ//
p1TLjGMThkwZmUwKjd/b7lfjwU17O3Jpg4ATzueBQJZAYUhqIChLodUjWwTTHnSk
Xwop4XfgGVoUkexROpnDscz1eIrJ74m961/32Gn2HUJUPNS6Mnl4bMoyKQgxEsR/
E97tkcxc6ld+PU2ANMlAG/EqgqThemg6eINCHMj18czf
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:45 2024 by rpki-client on console-fra.rpki-client.org