Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/WQ7ykNsYujwMSLYtVRDmvyy1ZAQ.roa
File: WQ7ykNsYujwMSLYtVRDmvyy1ZAQ.roa (raw, json)
Hash identifier: DlBY1sPc8gX9uGxEQu9bhTPqCeqWOuY9g3iQnvn3Gw4=
Subject key identifier: 59:0E:F2:90:DB:18:BA:3C:0C:48:B6:2D:55:10:E6:BF:2C:B5:64:04
Certificate issuer: /CN=dc0bde1467895c6f3a47197eac58ca13ae4bb78d
Certificate serial: 01901189FE8A001E8A6DCD9899C6FA114697
Authority key identifier: DC:0B:DE:14:67:89:5C:6F:3A:47:19:7E:AC:58:CA:13:AE:4B:B7:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AveFGeJXG86Rxl-rFjKE65Lt40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/WQ7ykNsYujwMSLYtVRDmvyy1ZAQ.roa
Signing time: Thu 13 Jun 2024 12:19:34 +0000
ROA not before: Thu 13 Jun 2024 12:19:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 212.23.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 11:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:89:fe:8a:00:1e:8a:6d:cd:98:99:c6:fa:11:46:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc0bde1467895c6f3a47197eac58ca13ae4bb78d
Validity
Not Before: Jun 13 12:19:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=590ef290db18ba3c0c48b62d5510e6bf2cb56404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c3:f0:4f:22:c3:ee:c1:7c:06:8f:27:e6:15:
e8:fd:f8:ff:d9:d6:ac:e0:b7:d7:97:8c:e8:5e:77:
ce:75:dc:38:4c:48:3f:4e:e8:36:a5:a2:52:18:ec:
aa:83:38:5d:0b:78:a5:3e:24:fc:6a:f7:15:ce:e3:
ef:0a:45:db:ec:c9:41:72:c9:f2:ef:d4:42:ba:72:
bd:50:d0:8b:bc:d0:96:5e:4a:34:30:cf:c9:1f:82:
45:bf:9b:79:bf:21:6c:e7:c8:0d:1c:a5:d7:d6:ef:
44:29:b0:d3:65:a3:37:8f:0f:a5:39:08:10:cb:09:
4b:d0:d2:4f:09:a2:c0:5a:e0:7b:a9:3b:e7:42:a6:
b2:d3:d0:dc:1e:ff:69:34:25:ea:4a:30:e2:06:77:
f6:12:e9:08:36:f2:55:30:9e:5a:bb:e2:80:43:4f:
47:68:70:1d:a4:bd:d1:af:0f:d6:3c:8f:3a:32:31:
c4:85:30:d0:71:41:fb:e4:6b:b3:8e:d6:2b:00:08:
e0:b4:85:34:51:14:62:77:8e:24:8b:b5:23:5d:4c:
95:35:a5:2f:b4:11:e0:5b:1a:09:b9:d1:15:df:72:
77:b9:cb:29:b8:91:8d:88:3c:bf:c7:40:77:6d:23:
73:2b:82:b6:8b:6a:c1:3b:d8:ff:9c:9b:ad:c4:ef:
43:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0E:F2:90:DB:18:BA:3C:0C:48:B6:2D:55:10:E6:BF:2C:B5:64:04
X509v3 Authority Key Identifier:
keyid:DC:0B:DE:14:67:89:5C:6F:3A:47:19:7E:AC:58:CA:13:AE:4B:B7:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AveFGeJXG86Rxl-rFjKE65Lt40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/WQ7ykNsYujwMSLYtVRDmvyy1ZAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/cf063f-9493-46f1-acd1-31c7fb4715f6/1/3AveFGeJXG86Rxl-rFjKE65Lt40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.203.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d6:2e:52:c2:7b:70:0c:06:af:17:81:55:63:38:ad:33:ea:
b7:98:7b:9a:d6:7e:ff:c3:db:43:9c:13:86:cd:c3:89:65:91:
e0:7f:bd:77:66:a4:ae:96:b1:9f:7e:ea:52:03:1c:1d:b8:6e:
a3:75:cb:a2:34:ce:7e:b4:a0:1b:26:01:a3:94:2d:a1:eb:30:
69:55:4c:3c:81:1c:e4:67:3a:77:2a:80:d2:4f:82:41:2f:c5:
ea:4d:a7:5b:5b:7f:9e:a6:bd:4f:0b:f2:da:8a:01:8a:4c:f1:
9d:49:8f:b6:62:e6:ce:57:4e:c4:8b:ef:b9:ae:00:9e:93:87:
9e:9d:a2:c4:6f:bc:8e:53:0d:ab:0a:59:9e:6f:f0:58:a6:ef:
01:64:3f:cf:72:05:56:d0:c1:a1:b9:b2:0c:45:a2:23:5d:4e:
b6:07:9f:bc:36:d8:15:d1:0b:18:0d:c5:74:38:7f:d8:73:4c:
b7:63:2b:56:35:5e:e8:df:6e:67:05:fc:80:e9:74:2d:a9:72:
b4:d2:2b:f9:4a:ee:ac:58:0a:aa:52:f2:54:43:63:5c:4c:38:
06:70:c8:f5:fc:da:cc:6d:0c:b3:0a:f4:75:00:6a:52:d5:10:
88:19:32:ba:d8:df:a4:83:56:3d:b6:74:c0:0b:28:eb:c0:ff:
df:79:48:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZARif6KAB6Kbc2Ymcb6EUaXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMGJkZTE0Njc4OTVjNmYzYTQ3MTk3ZWFjNThjYTEzYWU0
YmI3OGQwHhcNMjQwNjEzMTIxOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTBlZjI5MGRiMThiYTNjMGM0OGI2MmQ1NTEwZTZiZjJjYjU2NDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cPwTyLD7sF8Bo8n5hXo/fj/2das
4LfXl4zoXnfOddw4TEg/Tug2paJSGOyqgzhdC3ilPiT8avcVzuPvCkXb7MlBcsny
79RCunK9UNCLvNCWXko0MM/JH4JFv5t5vyFs58gNHKXX1u9EKbDTZaM3jw+lOQgQ
ywlL0NJPCaLAWuB7qTvnQqay09DcHv9pNCXqSjDiBnf2EukINvJVMJ5au+KAQ09H
aHAdpL3Rrw/WPI86MjHEhTDQcUH75GuzjtYrAAjgtIU0URRid44ki7UjXUyVNaUv
tBHgWxoJudEV33J3ucspuJGNiDy/x0B3bSNzK4K2i2rBO9j/nJutxO9DOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFkO8pDbGLo8DEi2LVUQ5r8stWQEMB8GA1UdIwQY
MBaAFNwL3hRniVxvOkcZfqxYyhOuS7eNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0F2ZUZHZUpYRzg2UnhsLXJGaktFNjVMdDQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9jZjA2M2YtOTQ5My00NmYxLWFjZDEt
MzFjN2ZiNDcxNWY2LzEvV1E3eWtOc1l1andNU0xZdFZSRG12eXkxWkFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9jZjA2M2YtOTQ5My00NmYxLWFjZDEtMzFjN2ZiNDcxNWY2
LzEvM0F2ZUZHZUpYRzg2UnhsLXJGaktFNjVMdDQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfLMA0G
CSqGSIb3DQEBCwUAA4IBAQA01i5SwntwDAavF4FVYzitM+q3mHua1n7/w9tDnBOG
zcOJZZHgf713ZqSulrGffupSAxwduG6jdcuiNM5+tKAbJgGjlC2h6zBpVUw8gRzk
Zzp3KoDST4JBL8XqTadbW3+epr1PC/LaigGKTPGdSY+2YubOV07Ei++5rgCek4ee
naLEb7yOUw2rClmeb/BYpu8BZD/PcgVW0MGhubIMRaIjXU62B5+8NtgV0QsYDcV0
OH/Yc0y3YytWNV7o325nBfyA6XQtqXK00iv5Su6sWAqqUvJUQ2NcTDgGcMj1/NrM
bQyzCvR1AGpS1RCIGTK62N+kg1Y9tnTACyjrwP/feUiR
-----END CERTIFICATE-----
Generated at Tue Sep 17 15:54:04 2024 by rpki-client on console-fra.rpki-client.org