Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bRfDKboftnB4WZ0vaNIASN-ice8.roa
File: bRfDKboftnB4WZ0vaNIASN-ice8.roa (raw, json)
Hash identifier: wRhZBRuHiDMRpMBv6P1JyjGEiGmGY6r4fqSqcRLTE8w=
Subject key identifier: 6D:17:C3:29:BA:1F:B6:70:78:59:9D:2F:68:D2:00:48:DF:A2:71:EF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192DC7524EC6711FB0E5EB8F33B15BA7645
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bRfDKboftnB4WZ0vaNIASN-ice8.roa
Signing time: Wed 30 Oct 2024 08:05:17 +0000
ROA not before: Wed 30 Oct 2024 08:05:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198510
IP address blocks: 188.208.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 13:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dc:75:24:ec:67:11:fb:0e:5e:b8:f3:3b:15:ba:76:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 30 08:05:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d17c329ba1fb67078599d2f68d20048dfa271ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:d4:a1:71:63:49:8b:85:da:a6:fa:2a:16:64:
66:aa:f0:18:ae:de:8a:2b:57:81:fa:fb:51:c1:ca:
0a:6c:c3:61:5d:a6:17:ac:0b:b7:83:35:6e:ba:7d:
2f:c6:b6:17:48:42:39:9d:9e:a5:6d:78:88:01:0d:
d7:47:2d:b0:a4:15:14:a6:92:88:77:fc:8d:09:d7:
a9:fe:73:73:18:a1:d1:d2:ff:09:b2:7a:ae:32:6f:
2c:35:41:12:fc:a2:81:27:df:c7:dc:88:6a:c8:ef:
21:e1:e6:a0:3c:31:44:ee:55:17:58:ce:0d:97:09:
50:5a:54:fa:3a:56:1c:fa:95:bc:af:d4:92:eb:5b:
6b:c1:76:38:b2:98:b1:c8:a3:99:1e:2a:d2:45:3f:
f3:02:44:d3:5b:03:62:34:8f:78:ee:f7:84:f1:3e:
58:c4:ca:74:45:b8:e8:e4:b0:bf:5c:8a:7d:ed:02:
e9:85:69:66:f3:5b:4e:78:7d:ef:3d:9c:b0:dd:af:
7f:db:25:97:7d:57:15:47:14:99:62:54:15:b4:27:
8c:50:aa:5e:01:7b:b2:0a:d2:7d:1e:48:1c:1a:c4:
56:0e:ec:fa:82:10:cb:9f:ef:41:5e:cb:ff:88:d1:
0d:c2:d8:4c:48:04:79:af:80:a6:76:a2:68:40:46:
70:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:17:C3:29:BA:1F:B6:70:78:59:9D:2F:68:D2:00:48:DF:A2:71:EF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bRfDKboftnB4WZ0vaNIASN-ice8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.208.103.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:d2:d7:6b:e3:08:13:3e:c0:a4:44:61:e4:43:a4:69:d7:16:
db:c0:6d:b5:7c:53:dc:05:6b:f4:ea:e9:66:3f:3f:9b:82:7a:
32:cc:55:f1:56:70:51:12:f2:b2:75:ed:81:5d:f4:0c:de:cf:
0f:bc:8a:86:50:84:f7:32:9a:f4:5a:3b:fd:e7:8d:1f:3a:a1:
f2:97:60:51:9a:e3:d1:56:63:67:f5:bd:ac:a0:a0:6a:b5:8b:
e9:b5:a7:3d:92:79:77:45:59:6b:83:f2:4c:77:0f:fb:65:98:
90:a1:4a:c7:f4:dc:a1:2d:84:14:2e:f0:ff:a7:e0:ac:a3:79:
d7:76:85:ef:f9:8a:e7:26:42:2f:c9:2a:34:45:95:1f:f1:08:
ed:b6:f7:d3:bb:03:f5:95:1b:69:f7:46:45:8f:27:bb:ca:a4:
dc:63:a1:13:10:69:42:f4:09:03:82:ec:38:5d:50:6c:df:e6:
a2:c5:44:66:1d:66:0a:1b:25:df:d6:c8:a5:2a:2d:15:fa:47:
77:48:bb:49:b3:f3:b0:b7:1c:99:d8:8f:6a:c5:33:62:43:e3:
b3:37:c9:24:18:70:4c:a5:c6:25:4b:4d:be:22:3c:a2:5f:7f:
77:b1:5f:f1:fd:28:0f:47:4a:12:c9:89:6f:1e:17:9e:df:45:
a1:1c:cd:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZLcdSTsZxH7Dl648zsVunZFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQxMDMwMDgwNTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDE3YzMyOWJhMWZiNjcwNzg1OTlkMmY2OGQyMDA0OGRmYTI3MWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9tShcWNJi4XapvoqFmRmqvAYrt6K
K1eB+vtRwcoKbMNhXaYXrAu3gzVuun0vxrYXSEI5nZ6lbXiIAQ3XRy2wpBUUppKI
d/yNCdep/nNzGKHR0v8JsnquMm8sNUES/KKBJ9/H3IhqyO8h4eagPDFE7lUXWM4N
lwlQWlT6OlYc+pW8r9SS61trwXY4spixyKOZHirSRT/zAkTTWwNiNI947veE8T5Y
xMp0Rbjo5LC/XIp97QLphWlm81tOeH3vPZyw3a9/2yWXfVcVRxSZYlQVtCeMUKpe
AXuyCtJ9HkgcGsRWDuz6ghDLn+9BXsv/iNENwthMSAR5r4CmdqJoQEZwHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG0Xwym6H7ZweFmdL2jSAEjfonHvMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvYlJmREtib2Z0bkI0V1owdmFOSUFTTi1pY2U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNBnMA0G
CSqGSIb3DQEBCwUAA4IBAQCM0tdr4wgTPsCkRGHkQ6Rp1xbbwG21fFPcBWv06ulm
Pz+bgnoyzFXxVnBREvKyde2BXfQM3s8PvIqGUIT3Mpr0Wjv9540fOqHyl2BRmuPR
VmNn9b2soKBqtYvptac9knl3RVlrg/JMdw/7ZZiQoUrH9NyhLYQULvD/p+Cso3nX
doXv+YrnJkIvySo0RZUf8QjttvfTuwP1lRtp90ZFjye7yqTcY6ETEGlC9AkDguw4
XVBs3+aixURmHWYKGyXf1silKi0V+kd3SLtJs/OwtxyZ2I9qxTNiQ+OzN8kkGHBM
pcYlS02+IjyiX393sV/x/SgPR0oSyYlvHhee30WhHM3L
-----END CERTIFICATE-----
Generated at Mon Nov 4 17:34:01 2024 by rpki-client on console-ams.rpki-client.org