Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DKGuN0IyE9K9fsg89wsUODQxfac.roa
File: DKGuN0IyE9K9fsg89wsUODQxfac.roa (raw, json)
Hash identifier: Yii4CcGnerSzy7JHKsCzrWDHlaJ1hibwZ+kFUlFczRQ=
Subject key identifier: 0C:A1:AE:37:42:32:13:D2:BD:7E:C8:3C:F7:0B:14:38:34:31:7D:A7
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D35FB33AC008F4D55CD81CDF28B877DB4
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DKGuN0IyE9K9fsg89wsUODQxfac.roa
Signing time: Tue 23 Jan 2024 11:01:11 +0000
ROA not before: Tue 23 Jan 2024 11:01:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216200
IP address blocks: 188.208.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Apr 2024 10:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:35:fb:33:ac:00:8f:4d:55:cd:81:cd:f2:8b:87:7d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 23 11:01:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ca1ae37423213d2bd7ec83cf70b143834317da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:69:b0:02:fb:12:7f:5b:e2:4a:65:0f:c5:a6:
e9:35:0b:42:9c:7c:86:03:19:cf:40:9e:89:75:94:
e8:e9:9d:f0:17:f2:e2:a1:32:2b:67:c8:6a:c4:d3:
5a:92:52:68:f7:f4:48:ee:ec:9a:9b:36:32:97:6e:
4c:7f:8e:0f:05:41:48:23:11:c8:92:75:16:8f:39:
3b:35:c2:45:72:19:c3:f8:e3:78:b2:19:ac:f9:42:
d3:75:45:09:92:6e:4a:43:43:99:37:bf:d1:25:0a:
9a:21:7a:ca:b0:d4:43:2b:1a:e9:a3:41:d4:09:6c:
a0:61:9f:90:63:56:7d:a8:0a:5a:fa:b9:94:12:12:
a1:8b:a7:7b:37:37:85:4f:1c:0e:58:0b:dc:56:fb:
b4:33:db:45:04:11:2f:9a:4a:88:da:10:86:25:b2:
14:fa:f9:02:a4:bf:86:0a:86:50:f9:a4:aa:d0:04:
b5:d9:49:2f:c9:6f:24:10:22:f8:8f:b3:5c:d1:97:
48:2e:8d:62:2b:95:99:25:55:20:b3:c7:34:d2:2d:
05:3e:9f:15:f1:fc:b0:be:44:97:d7:75:16:5d:2b:
02:3a:dc:30:ba:ae:8b:1b:33:88:0c:2b:af:c4:20:
b4:b6:03:4e:1b:f4:17:34:82:c3:99:5e:6a:3b:86:
87:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A1:AE:37:42:32:13:D2:BD:7E:C8:3C:F7:0B:14:38:34:31:7D:A7
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/DKGuN0IyE9K9fsg89wsUODQxfac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.103.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d1:ba:58:9e:77:ae:36:6a:e7:18:70:e9:84:d0:27:f3:e7:
e7:ba:1a:21:ea:18:ba:dd:de:7b:64:e2:c4:01:cc:c7:80:bc:
15:88:d3:2d:d5:b5:91:71:4a:b3:45:2a:a0:28:8e:43:6d:93:
46:ff:68:5d:21:4c:47:e7:74:72:78:2e:2f:e4:88:39:d2:a1:
ee:f6:cd:70:a8:36:4c:55:da:85:de:ce:6c:87:ce:ec:60:fa:
af:24:04:74:02:38:54:d3:09:9a:65:4b:93:50:a4:32:16:f9:
13:7d:df:e9:6e:24:05:22:88:9f:31:a3:81:84:d3:a7:59:3c:
a1:e8:0c:7b:41:bb:44:b7:2c:9e:99:dd:88:2c:14:21:0b:62:
4b:51:1b:ed:63:9e:10:ea:97:6c:45:cb:41:fa:cc:f1:d0:c8:
b6:78:c9:2d:c3:79:90:d3:4c:9f:ad:6f:c0:f8:e8:28:be:5d:
13:86:ff:99:3b:f2:ca:12:6e:65:40:25:08:ac:ba:e4:58:6b:
49:ab:15:70:aa:d2:24:7a:18:c0:96:f0:68:50:82:31:f7:9e:
10:01:03:00:37:97:91:56:c8:9b:0a:cc:c1:d9:09:b5:f0:d2:
02:29:2f:a7:81:9a:12:63:2c:37:12:42:8a:de:41:f7:71:00:
0d:5d:8a:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY01+zOsAI9NVc2BzfKLh320MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMTIzMTEwMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2ExYWUzNzQyMzIxM2QyYmQ3ZWM4M2NmNzBiMTQzODM0MzE3ZGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2mwAvsSf1viSmUPxabpNQtCnHyG
AxnPQJ6JdZTo6Z3wF/LioTIrZ8hqxNNaklJo9/RI7uyamzYyl25Mf44PBUFIIxHI
knUWjzk7NcJFchnD+ON4shms+ULTdUUJkm5KQ0OZN7/RJQqaIXrKsNRDKxrpo0HU
CWygYZ+QY1Z9qApa+rmUEhKhi6d7NzeFTxwOWAvcVvu0M9tFBBEvmkqI2hCGJbIU
+vkCpL+GCoZQ+aSq0AS12UkvyW8kECL4j7Nc0ZdILo1iK5WZJVUgs8c00i0FPp8V
8fywvkSX13UWXSsCOtwwuq6LGzOIDCuvxCC0tgNOG/QXNILDmV5qO4aHdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAyhrjdCMhPSvX7IPPcLFDg0MX2nMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvREtHdU4wSXlFOUs5ZnNnODl3c1VPRFF4ZmFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNBnMA0G
CSqGSIb3DQEBCwUAA4IBAQBX0bpYnneuNmrnGHDphNAn8+fnuhoh6hi63d57ZOLE
AczHgLwViNMt1bWRcUqzRSqgKI5DbZNG/2hdIUxH53RyeC4v5Ig50qHu9s1wqDZM
VdqF3s5sh87sYPqvJAR0AjhU0wmaZUuTUKQyFvkTfd/pbiQFIoifMaOBhNOnWTyh
6Ax7QbtEtyyemd2ILBQhC2JLURvtY54Q6pdsRctB+szx0Mi2eMktw3mQ00yfrW/A
+Ogovl0Thv+ZO/LKEm5lQCUIrLrkWGtJqxVwqtIkehjAlvBoUIIx954QAQMAN5eR
VsibCszB2Qm18NICKS+ngZoSYyw3EkKK3kH3cQANXYqr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org