Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/XiunTUZCDc6yoSdEBHRM7Xs08Z4.roa
File: XiunTUZCDc6yoSdEBHRM7Xs08Z4.roa (raw, json)
Hash identifier: zeRyXO2hJrGbP/OtEFBkuHwYOaSca6JHJaBE/2m9ess=
Subject key identifier: 5E:2B:A7:4D:46:42:0D:CE:B2:A1:27:44:04:74:4C:ED:7B:34:F1:9E
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0186EA00CF9AA22BD39C88141404CAD1E517
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/XiunTUZCDc6yoSdEBHRM7Xs08Z4.roa
Signing time: Thu 16 Mar 2023 10:39:27 +0000
ROA not before: Thu 16 Mar 2023 10:39:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200590
IP address blocks: 188.116.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:00:cf:9a:a2:2b:d3:9c:88:14:14:04:ca:d1:e5:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Mar 16 10:39:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e2ba74d46420dceb2a1274404744ced7b34f19e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:58:dc:25:03:ef:5e:02:a9:ab:10:f4:5a:34:
48:3d:5d:c8:98:01:ce:74:a4:c6:3c:30:ea:b3:c1:
3c:ac:2e:92:43:da:9e:1d:a1:79:46:34:6c:ed:aa:
76:14:cf:3b:3d:ff:d5:7e:71:28:9e:32:e3:c3:9e:
aa:c1:98:8d:f2:04:22:a2:17:97:f3:c0:3a:56:a0:
fa:c0:30:84:6c:a8:16:ed:53:ba:2d:bd:f5:16:f0:
93:c6:2c:88:fa:df:b0:d9:ef:0b:1f:c6:66:c6:75:
ca:55:5a:bb:38:45:33:a6:e5:71:60:58:c7:3a:e9:
21:ee:4c:f8:28:07:4f:07:81:8e:04:ed:74:2b:c9:
5b:0a:48:fd:63:1b:f5:2b:03:33:3d:a8:d0:30:83:
c3:37:25:25:c4:c3:46:65:9e:21:8b:c2:84:96:91:
a2:e3:fa:1b:47:9b:15:a9:92:3f:2e:45:e5:d2:df:
90:66:9a:23:4b:84:0b:80:3d:95:45:2d:27:26:e9:
01:d7:54:60:41:f7:43:d8:c8:ba:c3:37:e6:5f:6c:
35:41:f5:82:63:a1:77:6a:95:8d:4b:c9:30:fb:9a:
9e:38:e5:40:b9:7c:29:c1:0e:84:14:56:51:0e:f5:
fe:bc:0c:64:53:21:d9:9b:2e:8a:73:4d:d1:98:58:
b3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2B:A7:4D:46:42:0D:CE:B2:A1:27:44:04:74:4C:ED:7B:34:F1:9E
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/XiunTUZCDc6yoSdEBHRM7Xs08Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.116.20.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a9:f4:63:46:df:4f:60:c1:23:57:32:90:1d:c6:3b:f2:92:
c4:b1:8f:eb:fa:2c:89:bc:6d:e3:7e:fe:d7:64:73:a0:58:62:
7b:e5:f5:bd:93:cb:c4:f9:91:3f:11:f0:4e:c9:5c:8c:e4:d9:
69:00:ac:f7:86:0c:fb:4e:6b:51:3b:77:5e:c5:bd:5e:04:08:
da:0d:85:94:9c:68:86:13:a5:b3:7e:9b:d9:50:b1:50:d4:af:
ed:11:6f:35:11:51:8b:72:ed:51:d0:52:5c:58:3c:9a:2e:66:
f7:e7:b3:2f:de:a4:9f:77:b4:8c:88:f3:cf:2c:d3:a4:75:10:
02:7e:71:5c:78:24:02:d3:cd:cf:94:27:0b:87:7e:72:cc:4c:
1d:26:d0:73:ae:f5:50:d8:d0:a8:ab:f8:3e:5f:d5:0f:96:6a:
25:a9:4a:43:05:6b:01:9d:9e:0e:72:25:3d:0d:44:c8:0e:fa:
27:fc:cd:05:40:6d:51:af:29:77:72:3a:a7:2d:ee:6b:83:34:
c4:b3:39:1c:94:55:94:12:de:5f:0a:ac:52:d8:f3:16:c9:71:
2b:cc:51:eb:fd:63:38:d9:bb:16:e9:18:24:36:bb:82:0b:16:
4f:d7:69:86:d8:ab:68:e1:02:b9:43:f6:4d:f2:bf:71:54:c0:
6b:78:5a:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbqAM+aoivTnIgUFATK0eUXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlZjVjYjJmNTkwZDA0MTY1NGY0ZGZkYjYwYTI4ZjlhMTU0
NGY0NDQwHhcNMjMwMzE2MTAzOTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTJiYTc0ZDQ2NDIwZGNlYjJhMTI3NDQwNDc0NGNlZDdiMzRmMTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmljcJQPvXgKpqxD0WjRIPV3ImAHO
dKTGPDDqs8E8rC6SQ9qeHaF5RjRs7ap2FM87Pf/VfnEonjLjw56qwZiN8gQioheX
88A6VqD6wDCEbKgW7VO6Lb31FvCTxiyI+t+w2e8LH8ZmxnXKVVq7OEUzpuVxYFjH
Oukh7kz4KAdPB4GOBO10K8lbCkj9Yxv1KwMzPajQMIPDNyUlxMNGZZ4hi8KElpGi
4/obR5sVqZI/LkXl0t+QZpojS4QLgD2VRS0nJukB11RgQfdD2Mi6wzfmX2w1QfWC
Y6F3apWNS8kw+5qeOOVAuXwpwQ6EFFZRDvX+vAxkUyHZmy6Kc03RmFizzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF4rp01GQg3OsqEnRAR0TO17NPGeMB8GA1UdIwQY
MBaAFA71yy9ZDQQWVPTf22Cij5oVRPREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHZYTEwxa05CQlpVOU5fYllLS1BtaFZFOUVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8yMjZmMDQtZjdkYi00OTFhLWJhZmIt
ZWU0MzVkM2NkNTg1LzEvWGl1blRVWkNEYzZ5b1NkRUJIUk03WHMwOFo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny8yMjZmMDQtZjdkYi00OTFhLWJhZmItZWU0MzVkM2NkNTg1
LzEvRHZYTEwxa05CQlpVOU5fYllLS1BtaFZFOUVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvHQUMA0G
CSqGSIb3DQEBCwUAA4IBAQBAqfRjRt9PYMEjVzKQHcY78pLEsY/r+iyJvG3jfv7X
ZHOgWGJ75fW9k8vE+ZE/EfBOyVyM5NlpAKz3hgz7TmtRO3dexb1eBAjaDYWUnGiG
E6WzfpvZULFQ1K/tEW81EVGLcu1R0FJcWDyaLmb357Mv3qSfd7SMiPPPLNOkdRAC
fnFceCQC083PlCcLh35yzEwdJtBzrvVQ2NCoq/g+X9UPlmolqUpDBWsBnZ4OciU9
DUTIDvon/M0FQG1Rryl3cjqnLe5rgzTEszkclFWUEt5fCqxS2PMWyXErzFHr/WM4
2bsW6RgkNruCCxZP12mG2Kto4QK5Q/ZN8r9xVMBreFp6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:44 2024 by rpki-client on console-fra.rpki-client.org