Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d63f7-e4b6-4d3c-8044-3c93bb6cfee1/1/DN-YyBjN9LzUp5-FPuOIERKeO1E.roa
File: DN-YyBjN9LzUp5-FPuOIERKeO1E.roa (raw, json)
Hash identifier: ObLWJlnf60KNdyo6fdPFIxWDpJelM+dPlsoR63YPPDY=
Subject key identifier: 0C:DF:98:C8:18:CD:F4:BC:D4:A7:9F:85:3E:E3:88:11:12:9E:3B:51
Certificate issuer: /CN=8a7150074ea6fdd1e84dd95e0b06836407e9411b
Certificate serial: 018A5F8A0891DF52EE695EA62BF206AFAE08
Authority key identifier: 8A:71:50:07:4E:A6:FD:D1:E8:4D:D9:5E:0B:06:83:64:07:E9:41:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/inFQB06m_dHoTdleCwaDZAfpQRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d63f7-e4b6-4d3c-8044-3c93bb6cfee1/1/DN-YyBjN9LzUp5-FPuOIERKeO1E.roa
Signing time: Mon 04 Sep 2023 09:33:16 +0000
ROA not before: Mon 04 Sep 2023 09:33:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60631
IP address blocks: 195.88.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:8a:08:91:df:52:ee:69:5e:a6:2b:f2:06:af:ae:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a7150074ea6fdd1e84dd95e0b06836407e9411b
Validity
Not Before: Sep 4 09:33:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cdf98c818cdf4bcd4a79f853ee38811129e3b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:81:ee:d3:b3:68:08:8e:6d:3f:f2:8a:39:57:
08:06:3b:cf:64:60:7d:66:1f:a0:24:b4:c6:83:1c:
49:a1:78:49:15:54:25:5c:6f:86:45:89:28:47:10:
a6:ea:6c:d0:74:77:02:05:d1:20:44:91:36:7a:1d:
de:40:67:e4:9a:70:0e:68:e9:b1:4b:93:cd:1d:70:
dd:a6:0e:f5:0d:80:bc:ea:3b:03:d0:90:6c:99:39:
19:d5:e8:0c:4e:1c:42:48:11:d7:39:69:8f:76:2f:
b4:5a:78:87:b8:bd:01:5d:e4:38:dd:16:8a:6a:41:
12:f8:f4:9f:f6:53:28:03:e9:79:32:0c:04:72:b1:
ca:cc:ee:90:21:d0:7e:f1:fe:7a:e1:32:51:89:ea:
3d:ee:1b:0a:08:3f:0d:52:3d:71:f3:2c:08:70:0c:
b5:8e:01:80:4c:17:73:70:f4:7a:69:df:c1:38:0b:
a6:6e:39:9d:bf:db:eb:7e:9b:ab:0a:c3:f3:87:00:
b6:ec:97:4d:8d:fb:bb:7c:33:e8:20:4a:61:6f:b4:
51:b2:75:c9:e8:a8:7a:0a:2d:ef:8f:8f:52:84:db:
29:bf:90:03:5d:1f:e6:f5:62:c9:27:ab:de:cf:78:
bd:5a:b0:33:2c:a5:1d:28:17:22:de:b1:0d:0b:06:
5a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DF:98:C8:18:CD:F4:BC:D4:A7:9F:85:3E:E3:88:11:12:9E:3B:51
X509v3 Authority Key Identifier:
keyid:8A:71:50:07:4E:A6:FD:D1:E8:4D:D9:5E:0B:06:83:64:07:E9:41:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/inFQB06m_dHoTdleCwaDZAfpQRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d63f7-e4b6-4d3c-8044-3c93bb6cfee1/1/DN-YyBjN9LzUp5-FPuOIERKeO1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d63f7-e4b6-4d3c-8044-3c93bb6cfee1/1/inFQB06m_dHoTdleCwaDZAfpQRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.208.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e4:bb:40:27:cd:8f:04:41:64:27:a5:30:45:4b:32:ba:cd:
f9:81:ec:52:22:3d:2c:12:32:9a:c3:61:28:48:46:44:6b:f7:
98:38:02:21:69:7f:fb:14:dc:81:f3:8b:75:b6:29:fa:53:08:
db:a0:5c:4c:4f:3c:2a:8a:ab:a2:9a:61:66:6c:ce:51:e1:4e:
0a:12:40:13:45:f1:8b:62:59:72:14:48:d6:af:e7:c8:fb:8c:
84:78:fd:f6:62:54:88:28:a8:ca:7f:b5:5c:94:85:fc:af:28:
92:ee:5c:c4:d6:ea:a9:de:58:2c:c8:e6:28:9e:76:79:e8:4e:
ee:38:99:2c:bf:33:6c:a6:52:c2:13:af:94:e4:ec:20:e6:b5:
25:7e:3c:c9:9f:80:56:6e:b3:fe:fe:26:20:22:15:93:df:43:
a6:35:20:de:4a:23:c0:4e:54:f0:d5:c2:68:1f:97:17:de:3e:
5b:1e:9b:cf:a4:65:ec:d0:ae:6a:35:28:f7:08:3d:ed:7d:90:
04:d8:e4:77:bf:45:d3:b3:2d:fe:e9:99:ad:b9:66:ae:12:7e:
58:6c:d8:d3:32:13:85:18:cc:2c:59:c9:b6:69:ab:5b:1d:c5:
b9:f4:b4:e3:20:7a:70:3a:98:57:65:40:b8:25:41:a4:ba:00:
8d:03:6b:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpfigiR31LuaV6mK/IGr64IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNzE1MDA3NGVhNmZkZDFlODRkZDk1ZTBiMDY4MzY0MDdl
OTQxMWIwHhcNMjMwOTA0MDkzMzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2RmOThjODE4Y2RmNGJjZDRhNzlmODUzZWUzODgxMTEyOWUzYjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoHu07NoCI5tP/KKOVcIBjvPZGB9
Zh+gJLTGgxxJoXhJFVQlXG+GRYkoRxCm6mzQdHcCBdEgRJE2eh3eQGfkmnAOaOmx
S5PNHXDdpg71DYC86jsD0JBsmTkZ1egMThxCSBHXOWmPdi+0WniHuL0BXeQ43RaK
akES+PSf9lMoA+l5MgwEcrHKzO6QIdB+8f564TJRieo97hsKCD8NUj1x8ywIcAy1
jgGATBdzcPR6ad/BOAumbjmdv9vrfpurCsPzhwC27JdNjfu7fDPoIEphb7RRsnXJ
6Kh6Ci3vj49ShNspv5ADXR/m9WLJJ6vez3i9WrAzLKUdKBci3rENCwZaMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAzfmMgYzfS81KefhT7jiBESnjtRMB8GA1UdIwQY
MBaAFIpxUAdOpv3R6E3ZXgsGg2QH6UEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW5GUUIwNm1fZEhvVGRsZUN3YURaQWZwUVJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni85ZDYzZjctZTRiNi00ZDNjLTgwNDQt
M2M5M2JiNmNmZWUxLzEvRE4tWXlCak45THpVcDUtRlB1T0lFUktlTzFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni85ZDYzZjctZTRiNi00ZDNjLTgwNDQtM2M5M2JiNmNmZWUx
LzEvaW5GUUIwNm1fZEhvVGRsZUN3YURaQWZwUVJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1jQMA0G
CSqGSIb3DQEBCwUAA4IBAQBj5LtAJ82PBEFkJ6UwRUsyus35gexSIj0sEjKaw2Eo
SEZEa/eYOAIhaX/7FNyB84t1tin6UwjboFxMTzwqiquimmFmbM5R4U4KEkATRfGL
YllyFEjWr+fI+4yEeP32YlSIKKjKf7VclIX8ryiS7lzE1uqp3lgsyOYonnZ56E7u
OJksvzNsplLCE6+U5Owg5rUlfjzJn4BWbrP+/iYgIhWT30OmNSDeSiPATlTw1cJo
H5cX3j5bHpvPpGXs0K5qNSj3CD3tfZAE2OR3v0XTsy3+6ZmtuWauEn5YbNjTMhOF
GMwsWcm2aatbHcW59LTjIHpwOphXZUC4JUGkugCNA2tZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:22 2024 by rpki-client on console-fra.rpki-client.org