Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/PSzp8tCHmn-hDHPG1suIxIu-m34.roa
File: PSzp8tCHmn-hDHPG1suIxIu-m34.roa (raw, json)
Hash identifier: 9f601dEz8fWUR+f5Wjx8h/kTjYh5EOdFxDPMU5A/EWw=
Subject key identifier: 3D:2C:E9:F2:D0:87:9A:7F:A1:0C:73:C6:D6:CB:88:C4:8B:BE:9B:7E
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A4182EF2E8C4F25E2692AD57FF06D
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/PSzp8tCHmn-hDHPG1suIxIu-m34.roa
Signing time: Sun 01 Jan 2023 03:05:06 +0000
ROA not before: Sun 01 Jan 2023 03:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205502
IP address blocks: 188.72.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:41:82:ef:2e:8c:4f:25:e2:69:2a:d5:7f:f0:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d2ce9f2d0879a7fa10c73c6d6cb88c48bbe9b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d0:a0:9e:92:e7:44:4b:d6:f1:d9:e7:8d:57:
e4:62:1c:3f:9b:d8:6b:c8:0c:49:7f:fb:81:aa:05:
6f:2d:eb:3d:44:dc:68:2f:96:4c:f4:5d:e2:1d:6e:
9d:dd:56:33:44:0f:f2:c0:2d:39:87:3c:04:06:6e:
fe:c8:3f:58:32:be:41:f2:4d:f7:ed:1f:20:e5:0e:
b6:57:ad:86:bd:d7:54:6c:8e:e1:ad:cc:a2:4f:79:
1d:12:9a:57:68:d7:af:97:da:a9:c4:4a:f0:9c:49:
26:b1:10:f6:18:3b:a5:41:c2:c5:bb:a7:1a:fc:c1:
63:01:50:02:7a:17:ad:e3:b8:6f:5e:05:fd:d7:11:
9e:5a:13:c2:b1:81:c1:31:0b:28:38:4c:e1:92:b2:
97:5c:e3:c3:8a:d8:44:08:08:cd:99:ca:db:8c:b5:
db:07:ba:19:d6:53:4e:03:a8:21:fb:e4:77:51:f7:
36:cb:cd:4c:b1:e5:df:14:eb:8a:b7:a5:61:0d:88:
10:0e:6d:84:dc:41:62:cf:48:69:cf:28:e7:b1:96:
93:02:6e:c7:c5:2f:e1:e7:3f:d6:0f:bc:f1:c0:39:
c2:7e:e5:84:a3:34:1c:d8:6d:9b:25:27:72:21:04:
d3:3f:62:de:c9:38:02:f4:75:8f:bf:46:65:23:b3:
8b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2C:E9:F2:D0:87:9A:7F:A1:0C:73:C6:D6:CB:88:C4:8B:BE:9B:7E
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/PSzp8tCHmn-hDHPG1suIxIu-m34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.93.0/24
Signature Algorithm: sha256WithRSAEncryption
26:fa:c7:82:85:c7:46:c1:13:75:cb:45:40:7b:29:8d:ac:fc:
03:b6:19:af:c1:3d:bf:33:9e:c9:d4:60:b0:fa:65:7c:d0:fb:
df:93:e1:7f:78:e5:af:a8:e7:07:de:42:af:cd:d6:6c:38:c6:
36:63:60:33:9e:ab:bc:90:fd:20:ea:19:fd:a4:94:95:83:4c:
39:13:85:e6:8a:06:24:ce:cb:10:ad:e6:08:82:94:09:c8:1d:
d2:3f:26:0b:81:5c:68:66:01:1e:12:5d:19:87:17:6d:01:85:
cb:3e:a4:18:ec:c0:9d:1a:1a:98:9c:55:88:f7:41:2d:dd:b7:
89:be:ea:e4:87:c1:ce:21:a9:b6:0a:b6:31:2a:9a:22:f3:e9:
8b:59:4f:51:dd:83:31:c1:36:2c:54:8d:b3:ac:12:ff:65:20:
1a:2d:43:9d:4c:ba:5b:5f:80:4c:51:67:35:b1:51:4b:41:01:
01:fe:16:82:3c:2b:5e:a2:b3:18:0f:dc:d6:0b:0b:72:e0:d9:
f3:9a:96:ad:8a:fb:6f:16:db:9b:0d:7c:95:69:4a:b7:62:d0:
70:13:5c:cb:5d:60:06:42:94:91:6a:6b:17:78:ab:58:81:b0:
01:ab:30:f9:43:6c:9c:1b:76:a9:c1:9e:a5:3d:08:ad:1a:50:
5f:78:08:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrSkGC7y6MTyXiaSrVf/BtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0
NzA2N2UwHhcNMjMwMTAxMDMwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDJjZTlmMmQwODc5YTdmYTEwYzczYzZkNmNiODhjNDhiYmU5YjdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNCgnpLnREvW8dnnjVfkYhw/m9hr
yAxJf/uBqgVvLes9RNxoL5ZM9F3iHW6d3VYzRA/ywC05hzwEBm7+yD9YMr5B8k33
7R8g5Q62V62GvddUbI7hrcyiT3kdEppXaNevl9qpxErwnEkmsRD2GDulQcLFu6ca
/MFjAVACehet47hvXgX91xGeWhPCsYHBMQsoOEzhkrKXXOPDithECAjNmcrbjLXb
B7oZ1lNOA6gh++R3Ufc2y81MseXfFOuKt6VhDYgQDm2E3EFiz0hpzyjnsZaTAm7H
xS/h5z/WD7zxwDnCfuWEozQc2G2bJSdyIQTTP2LeyTgC9HWPv0ZlI7OL2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD0s6fLQh5p/oQxzxtbLiMSLvpt+MB8GA1UdIwQY
MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt
OGM5NTgxZDk2ZDhmLzEvUFN6cDh0Q0htbi1oREhQRzFzdUl4SXUtbTM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm
LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvEhdMA0G
CSqGSIb3DQEBCwUAA4IBAQAm+seChcdGwRN1y0VAeymNrPwDthmvwT2/M57J1GCw
+mV80Pvfk+F/eOWvqOcH3kKvzdZsOMY2Y2Aznqu8kP0g6hn9pJSVg0w5E4XmigYk
zssQreYIgpQJyB3SPyYLgVxoZgEeEl0ZhxdtAYXLPqQY7MCdGhqYnFWI90Et3beJ
vurkh8HOIam2CrYxKpoi8+mLWU9R3YMxwTYsVI2zrBL/ZSAaLUOdTLpbX4BMUWc1
sVFLQQEB/haCPCteorMYD9zWCwty4NnzmpativtvFtubDXyVaUq3YtBwE1zLXWAG
QpSRamsXeKtYgbABqzD5Q2ycG3apwZ6lPQitGlBfeAiK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:38 2024 by rpki-client on console-fra.rpki-client.org