Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/qaeCus2G7B94sHanCO27qLsK9DY.roa
File: qaeCus2G7B94sHanCO27qLsK9DY.roa (raw, json)
Hash identifier: HMUnUGXzmMNuyySFflW/aimdLMSaO04pTSZkguHqnSU=
Subject key identifier: A9:A7:82:BA:CD:86:EC:1F:78:B0:76:A7:08:ED:BB:A8:BB:0A:F4:36
Certificate issuer: /CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Certificate serial: 01856EA697B3A8093CD708061AC122735CD3
Authority key identifier: A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/qaeCus2G7B94sHanCO27qLsK9DY.roa
Signing time: Sun 01 Jan 2023 18:44:49 +0000
ROA not before: Sun 01 Jan 2023 18:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 188.214.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:97:b3:a8:09:3c:d7:08:06:1a:c1:22:73:5c:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2088e06d553cff293d277f4d76c3a710bd8b2f7
Validity
Not Before: Jan 1 18:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9a782bacd86ec1f78b076a708edbba8bb0af436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:65:35:a5:a3:81:58:5a:42:11:20:9b:cd:e3:
97:22:df:84:7e:b4:ae:e3:d8:19:e3:a8:be:1c:24:
fd:0f:2d:fa:eb:c5:bc:81:d0:eb:78:c9:36:18:bd:
0d:9d:5f:e7:00:3f:5c:fc:73:a4:77:c6:d2:4f:17:
36:b8:6c:4b:11:2f:ec:4a:70:25:2e:15:a0:b5:fc:
3d:06:2a:34:00:3f:74:bc:e0:c4:a9:0d:6e:47:12:
36:a0:03:31:26:d9:74:b1:eb:28:7c:a3:61:1a:6a:
81:25:df:5a:ec:ad:8b:b5:b0:11:b9:52:61:34:08:
ea:68:fe:01:ef:d3:46:ca:b3:ff:35:c0:df:31:df:
d5:13:27:b2:c9:b3:db:cc:b7:66:65:86:87:f7:e5:
38:80:94:27:a3:e5:3a:33:b2:f8:06:b9:2a:c4:62:
16:c4:8b:1c:08:f6:dd:0e:6e:0e:75:c7:02:af:55:
f8:cd:22:41:b5:b0:a5:a5:3c:e8:93:7b:f9:df:0a:
b2:93:12:40:b2:11:87:3e:60:45:65:c3:1b:d0:23:
d5:28:b2:2a:0d:e4:75:0c:df:2c:9d:6b:16:e0:f8:
92:5f:e6:56:37:21:d9:e2:f8:f2:84:79:e8:8a:19:
37:61:5a:49:d6:03:db:f6:ff:e6:ff:b8:e5:22:c6:
88:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A7:82:BA:CD:86:EC:1F:78:B0:76:A7:08:ED:BB:A8:BB:0A:F4:36
X509v3 Authority Key Identifier:
keyid:A2:08:8E:06:D5:53:CF:F2:93:D2:77:F4:D7:6C:3A:71:0B:D8:B2:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogiOBtVTz_KT0nf012w6cQvYsvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/qaeCus2G7B94sHanCO27qLsK9DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b45d79-a4d7-4460-bfe7-bbea2918e102/1/ogiOBtVTz_KT0nf012w6cQvYsvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.144.0/24
Signature Algorithm: sha256WithRSAEncryption
68:f1:ce:a2:a8:4d:30:b6:e0:35:40:62:72:4b:c8:26:58:42:
39:76:72:4b:ef:cd:7e:47:6a:87:ff:36:53:b7:1e:e3:bb:92:
2c:29:47:07:4a:1c:70:b9:25:b7:9e:39:d8:49:48:ca:b0:9b:
b5:86:02:08:e0:eb:6d:8c:c6:73:2e:2d:ee:be:94:31:91:bd:
ea:91:5a:db:3b:c3:f1:b6:86:64:36:af:7c:52:0a:76:b6:f8:
cb:1f:f3:c9:1a:ab:17:c2:63:50:d5:26:84:45:3b:d1:21:f5:
37:f3:46:e5:1c:27:46:a1:45:23:93:21:1c:3e:6f:11:41:44:
e7:b2:fb:b7:9f:4b:fb:12:c7:52:34:be:c3:c6:fd:c2:0d:56:
81:71:53:99:ef:2c:c2:00:60:21:2c:5e:12:ba:01:23:2e:1b:
62:32:8d:39:3f:72:b8:4f:5d:3e:d3:a2:c3:d5:aa:82:fe:40:
88:c2:39:82:a0:47:e0:bf:fe:f4:93:8f:b4:b8:8f:3e:15:6c:
e6:67:f6:07:7c:aa:f0:f7:78:60:ed:1d:55:f0:d5:9a:d4:b4:
d0:2a:52:ae:1e:cb:99:b3:03:4b:cb:a6:cc:77:63:bd:83:d7:
7a:a5:2d:4a:b9:dc:0d:cd:17:09:19:2e:e7:a4:32:1b:74:3e:
88:13:7a:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuppezqAk81wgGGsEic1zTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMDg4ZTA2ZDU1M2NmZjI5M2QyNzdmNGQ3NmMzYTcxMGJk
OGIyZjcwHhcNMjMwMTAxMTg0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOWE3ODJiYWNkODZlYzFmNzhiMDc2YTcwOGVkYmJhOGJiMGFmNDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGU1paOBWFpCESCbzeOXIt+EfrSu
49gZ46i+HCT9Dy3668W8gdDreMk2GL0NnV/nAD9c/HOkd8bSTxc2uGxLES/sSnAl
LhWgtfw9Bio0AD90vODEqQ1uRxI2oAMxJtl0sesofKNhGmqBJd9a7K2LtbARuVJh
NAjqaP4B79NGyrP/NcDfMd/VEyeyybPbzLdmZYaH9+U4gJQno+U6M7L4BrkqxGIW
xIscCPbdDm4OdccCr1X4zSJBtbClpTzok3v53wqykxJAshGHPmBFZcMb0CPVKLIq
DeR1DN8snWsW4PiSX+ZWNyHZ4vjyhHnoihk3YVpJ1gPb9v/m/7jlIsaIjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKmngrrNhuwfeLB2pwjtu6i7CvQ2MB8GA1UdIwQY
MBaAFKIIjgbVU8/yk9J39NdsOnEL2LL3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2dpT0J0VlR6X0tUMG5mMDEydzZjUXZZc3ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iNDVkNzktYTRkNy00NDYwLWJmZTct
YmJlYTI5MThlMTAyLzEvcWFlQ3VzMkc3Qjk0c0hhbkNPMjdxTHNLOURZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9iNDVkNzktYTRkNy00NDYwLWJmZTctYmJlYTI5MThlMTAy
LzEvb2dpT0J0VlR6X0tUMG5mMDEydzZjUXZZc3ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNaQMA0G
CSqGSIb3DQEBCwUAA4IBAQBo8c6iqE0wtuA1QGJyS8gmWEI5dnJL781+R2qH/zZT
tx7ju5IsKUcHShxwuSW3njnYSUjKsJu1hgII4OttjMZzLi3uvpQxkb3qkVrbO8Px
toZkNq98Ugp2tvjLH/PJGqsXwmNQ1SaERTvRIfU380blHCdGoUUjkyEcPm8RQUTn
svu3n0v7EsdSNL7Dxv3CDVaBcVOZ7yzCAGAhLF4SugEjLhtiMo05P3K4T10+06LD
1aqC/kCIwjmCoEfgv/70k4+0uI8+FWzmZ/YHfKrw93hg7R1V8NWa1LTQKlKuHsuZ
swNLy6bMd2O9g9d6pS1KudwNzRcJGS7npDIbdD6IE3rb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:01 2024 by rpki-client on console-ams.rpki-client.org