Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tuYqooG53whkdLbpVqoJU4kS21k.roa
File: tuYqooG53whkdLbpVqoJU4kS21k.roa (raw, json)
Hash identifier: MApTFnSD/tRm7JMeekqKQkFcKPvGbTZtvAXekdTp974=
Subject key identifier: B6:E6:2A:A2:81:B9:DF:08:64:74:B6:E9:56:AA:09:53:89:12:DB:59
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018881AC49BE32D90FC39DC7E94A1247CC3A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tuYqooG53whkdLbpVqoJU4kS21k.roa
Signing time: Sat 03 Jun 2023 14:32:11 +0000
ROA not before: Sat 03 Jun 2023 14:32:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 188.212.121.0/24 maxlen: 24
94.176.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 16:53:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:81:ac:49:be:32:d9:0f:c3:9d:c7:e9:4a:12:47:cc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 3 14:32:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6e62aa281b9df086474b6e956aa09538912db59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:58:f6:70:d1:92:0e:ab:2b:11:55:a1:09:
02:8b:ef:79:27:39:28:a1:f9:48:92:c5:85:f2:46:
47:e0:ff:98:95:0f:37:3e:a1:fb:6e:1f:e8:18:b3:
f3:72:1d:97:c5:d0:35:6e:d7:42:c7:3d:fe:db:46:
86:52:7b:36:55:77:e2:43:97:e1:8a:3f:2a:df:27:
85:3f:5f:41:8a:81:03:df:b1:eb:0b:1b:09:fc:8a:
37:e9:e7:ae:22:5f:3d:0d:0c:2d:71:1f:c8:51:56:
b1:19:c5:0a:0b:8b:d6:c1:e9:46:3a:55:a7:58:ef:
54:02:2a:2c:8b:bd:cc:4b:7d:60:ec:60:ce:43:3a:
b0:b3:34:67:1d:35:6d:d0:b5:45:ab:10:d8:a6:58:
a5:bd:52:9f:a7:ca:35:55:40:1c:84:14:56:33:28:
03:02:92:c4:c1:36:57:48:4c:49:0e:bd:70:16:f1:
b2:05:d8:25:9c:b1:77:e3:32:56:33:11:25:a1:ae:
95:79:fd:2b:90:9d:e3:3c:84:9a:5b:02:c1:f3:5a:
cc:e6:37:a7:25:5a:0d:68:60:4a:10:cd:0f:9a:ed:
00:6b:42:89:5a:85:d0:a4:04:bf:b6:be:37:ad:a5:
da:6d:eb:5a:23:fe:10:17:e3:fb:9e:ef:d0:df:db:
52:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E6:2A:A2:81:B9:DF:08:64:74:B6:E9:56:AA:09:53:89:12:DB:59
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tuYqooG53whkdLbpVqoJU4kS21k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.215.0/24
188.212.121.0/24
Signature Algorithm: sha256WithRSAEncryption
68:70:1d:b6:82:c1:db:bd:c2:53:fe:6a:d3:db:49:4c:74:65:
0f:7c:78:90:8a:3c:1b:74:27:34:e2:50:5c:c4:48:a1:7f:e7:
0e:23:0e:a5:d9:5d:d8:27:71:37:3a:e6:46:98:0d:f9:b8:7f:
83:d7:fd:02:e0:33:7c:34:ae:fb:49:47:69:9a:65:ef:47:7f:
80:67:a8:34:c4:c8:36:a4:f4:b6:c4:2b:bd:ad:fb:a2:d2:48:
5b:fd:5a:f6:a9:67:86:12:2c:ca:dd:e3:0b:a3:b6:75:63:bd:
12:a8:89:09:7e:f9:c4:ec:fb:0b:63:78:9d:50:2f:c0:fb:88:
34:30:e9:f7:fc:fb:e3:dd:6d:d5:0a:4f:d8:e5:5c:d9:fc:29:
0f:f1:f1:2c:ce:9a:4d:d7:19:16:8e:43:92:ad:ee:3b:04:75:
a2:54:5f:25:65:d0:e6:47:8f:7e:02:ff:af:85:27:7a:fa:ad:
cb:ae:02:6f:4b:56:3c:6c:72:3a:07:3d:94:92:19:3a:91:af:
ef:7f:6f:58:ba:aa:32:46:87:ca:d2:f1:ea:fd:6e:f2:0f:f8:
44:1e:f2:47:ab:72:62:6a:67:98:86:dd:89:e4:13:47:88:22:
05:2f:33:ae:6b:23:24:04:75:0b:d2:f8:13:73:a3:9a:78:28:
c2:55:be:6a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYiBrEm+MtkPw53H6UoSR8w6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNjAzMTQzMjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmU2MmFhMjgxYjlkZjA4NjQ3NGI2ZTk1NmFhMDk1Mzg5MTJkYjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztFY9nDRkg6rKxFVoQkCi+95Jzko
oflIksWF8kZH4P+YlQ83PqH7bh/oGLPzch2XxdA1btdCxz3+20aGUns2VXfiQ5fh
ij8q3yeFP19BioED37HrCxsJ/Io36eeuIl89DQwtcR/IUVaxGcUKC4vWwelGOlWn
WO9UAiosi73MS31g7GDOQzqwszRnHTVt0LVFqxDYplilvVKfp8o1VUAchBRWMygD
ApLEwTZXSExJDr1wFvGyBdglnLF34zJWMxEloa6Vef0rkJ3jPISaWwLB81rM5jen
JVoNaGBKEM0Pmu0Aa0KJWoXQpAS/tr43raXabetaI/4QF+P7nu/Q39tStQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLbmKqKBud8IZHS26VaqCVOJEttZMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvdHVZcW9vRzUzd2hrZExicFZxb0pVNGtTMjFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXrDXAwQA
vNR5MA0GCSqGSIb3DQEBCwUAA4IBAQBocB22gsHbvcJT/mrT20lMdGUPfHiQijwb
dCc04lBcxEihf+cOIw6l2V3YJ3E3OuZGmA35uH+D1/0C4DN8NK77SUdpmmXvR3+A
Z6g0xMg2pPS2xCu9rfui0khb/Vr2qWeGEizK3eMLo7Z1Y70SqIkJfvnE7PsLY3id
UC/A+4g0MOn3/Pvj3W3VCk/Y5VzZ/CkP8fEszppN1xkWjkOSre47BHWiVF8lZdDm
R49+Av+vhSd6+q3LrgJvS1Y8bHI6Bz2Ukhk6ka/vf29YuqoyRofK0vHq/W7yD/hE
HvJHq3JiameYht2J5BNHiCIFLzOuayMkBHUL0vgTc6OaeCjCVb5q
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org