Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/VHioDtYCazeSodNyLqwc95W3QiU.roa
File: VHioDtYCazeSodNyLqwc95W3QiU.roa (raw, json)
Hash identifier: +GtxEuWDRV6odB0ii4g6mQhGUdTIWcZB47I6NeiMLow=
Subject key identifier: 54:78:A8:0E:D6:02:6B:37:92:A1:D3:72:2E:AC:1C:F7:95:B7:42:25
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01856F14EBD6D444BC76F07CE87D459547D8
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/VHioDtYCazeSodNyLqwc95W3QiU.roa
Signing time: Sun 01 Jan 2023 20:45:20 +0000
ROA not before: Sun 01 Jan 2023 20:45:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199296
IP address blocks: 88.199.144.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:eb:d6:d4:44:bc:76:f0:7c:e8:7d:45:95:47:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 20:45:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5478a80ed6026b3792a1d3722eac1cf795b74225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e0:8b:b4:71:f6:0e:d7:7f:aa:e3:83:a9:da:
6b:13:54:dc:be:8f:31:41:83:2e:7d:d7:ed:63:d1:
4c:d3:8b:d0:7e:ac:d6:95:dd:00:4d:82:6d:2c:0f:
63:a1:a9:52:73:62:cc:ea:15:ef:74:de:2a:2a:52:
1f:4a:9e:78:05:99:a7:e8:f9:1d:b1:38:ee:bf:b9:
fd:bc:69:9b:44:b3:e2:c4:d4:97:a8:21:75:02:e5:
2b:00:3e:86:cf:07:9a:9f:63:8b:0c:44:e7:4a:18:
30:a0:ea:0c:05:20:b4:f0:7b:78:7b:00:1a:2a:5e:
21:1e:97:88:ac:ef:9f:f3:32:df:ca:7b:50:f2:3a:
3e:44:d1:b5:d9:ce:39:ae:aa:a4:4d:a9:00:16:52:
d9:8d:32:28:22:73:94:7a:63:ad:f3:19:10:e5:3e:
3d:cb:38:8d:97:65:ff:6e:25:b1:65:39:bc:84:41:
a4:bf:30:a9:72:7f:e8:86:ec:91:af:45:48:a4:14:
ef:06:f8:cf:1f:d6:03:cd:ed:0b:70:d6:f7:1d:03:
96:74:3f:1f:bf:85:32:ba:49:b8:d8:1f:88:85:c7:
4d:c0:3f:d0:37:31:f0:4c:f4:b7:8e:7e:e2:3b:12:
52:20:2c:f3:3a:5c:bf:f6:fb:0b:6f:1a:40:ee:27:
19:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:78:A8:0E:D6:02:6B:37:92:A1:D3:72:2E:AC:1C:F7:95:B7:42:25
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/VHioDtYCazeSodNyLqwc95W3QiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.199.144.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:dc:19:72:5e:79:08:84:1a:58:fa:fb:d7:aa:12:89:13:44:
d7:20:7f:a6:be:5d:7d:db:57:dc:79:ff:ca:1b:c6:c0:07:9c:
0a:0d:00:0e:e3:d6:59:06:8c:fa:ae:78:e5:23:85:ef:c8:19:
e6:ed:7e:1a:46:52:fe:8a:26:ea:69:d7:81:eb:e4:30:4e:8b:
a5:1c:f2:15:10:bf:46:40:96:08:b2:4b:2b:8a:bc:6f:89:d0:
e4:a1:c9:d4:91:a6:ff:60:70:06:02:06:78:6c:82:62:c1:b8:
fd:56:a6:0d:d5:f6:26:e4:fa:9d:a2:d6:f6:38:e6:62:97:b9:
13:8e:33:f8:3e:22:0b:38:03:a7:dc:bc:d0:45:46:86:2d:d1:
7f:f9:d7:3c:8e:82:a8:61:72:e5:06:35:be:d2:0c:70:7a:eb:
53:88:02:0c:63:95:3c:f5:fc:a5:b3:25:23:66:65:31:23:dd:
73:f2:76:54:9a:07:98:82:be:85:99:95:30:e9:c9:23:10:01:
41:ab:60:7a:10:6c:fc:de:6b:a0:56:13:ae:0f:33:7d:af:1e:
d1:7b:f5:aa:2b:5f:a1:02:3e:e2:83:69:66:4b:03:38:1c:89:
95:7d:ef:9c:01:35:7f:7c:5d:66:68:63:fc:fe:38:72:01:69:
aa:8e:af:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFOvW1ES8dvB86H1FlUfYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3OTMwMWRjYzdmYWU0ZjdjZTAxZTQ5ODdhNzdjYjgyYTMz
NmFiZmYwHhcNMjMwMTAxMjA0NTIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NDc4YTgwZWQ2MDI2YjM3OTJhMWQzNzIyZWFjMWNmNzk1Yjc0MjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneCLtHH2Dtd/quODqdprE1Tcvo8x
QYMufdftY9FM04vQfqzWld0ATYJtLA9joalSc2LM6hXvdN4qKlIfSp54BZmn6Pkd
sTjuv7n9vGmbRLPixNSXqCF1AuUrAD6Gzwean2OLDETnShgwoOoMBSC08Ht4ewAa
Kl4hHpeIrO+f8zLfyntQ8jo+RNG12c45rqqkTakAFlLZjTIoInOUemOt8xkQ5T49
yziNl2X/biWxZTm8hEGkvzCpcn/ohuyRr0VIpBTvBvjPH9YDze0LcNb3HQOWdD8f
v4Uyukm42B+IhcdNwD/QNzHwTPS3jn7iOxJSICzzOly/9vsLbxpA7icZ3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFR4qA7WAms3kqHTci6sHPeVt0IlMB8GA1UdIwQY
MBaAFBeTAdzH+uT3zgHkmHp3y4KjNqv/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjVNQjNNZjY1UGZPQWVTWWVuZkxncU0ycV84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9lZDc5NjMtNzJlYS00YzFkLWFkZGQt
YWZmOTJjMTZkOGUzLzEvVkhpb0R0WUNhemVTb2ROeUxxd2M5NVczUWlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9lZDc5NjMtNzJlYS00YzFkLWFkZGQtYWZmOTJjMTZkOGUz
LzEvRjVNQjNNZjY1UGZPQWVTWWVuZkxncU0ycV84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWMeQMA0G
CSqGSIb3DQEBCwUAA4IBAQBa3BlyXnkIhBpY+vvXqhKJE0TXIH+mvl1921fcef/K
G8bAB5wKDQAO49ZZBoz6rnjlI4XvyBnm7X4aRlL+iibqadeB6+QwToulHPIVEL9G
QJYIsksrirxvidDkocnUkab/YHAGAgZ4bIJiwbj9VqYN1fYm5Pqdotb2OOZil7kT
jjP4PiILOAOn3LzQRUaGLdF/+dc8joKoYXLlBjW+0gxweutTiAIMY5U89fylsyUj
ZmUxI91z8nZUmgeYgr6FmZUw6ckjEAFBq2B6EGz83mugVhOuDzN9rx7Re/WqK1+h
Aj7ig2lmSwM4HImVfe+cATV/fF1maGP8/jhyAWmqjq8y
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:21 2024 by rpki-client on console-fra.rpki-client.org