Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/F3qLwx8F_lNY7zV9mLzDgTxrTZg.roa
File: F3qLwx8F_lNY7zV9mLzDgTxrTZg.roa (raw, json)
Hash identifier: S8wFB17eSo4kPe+TTof1kd075eKKUBgkSMjaLu6Vz6o=
Subject key identifier: 17:7A:8B:C3:1F:05:FE:53:58:EF:35:7D:98:BC:C3:81:3C:6B:4D:98
Certificate issuer: /CN=84f824d32df1a5113d82101345d785a38addbde5
Certificate serial: 018CC2DABB59218A6F1EB0B20E0AC23D8709
Authority key identifier: 84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/F3qLwx8F_lNY7zV9mLzDgTxrTZg.roa
Signing time: Mon 01 Jan 2024 02:29:23 +0000
ROA not before: Mon 01 Jan 2024 02:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 188.214.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 14:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:bb:59:21:8a:6f:1e:b0:b2:0e:0a:c2:3d:87:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f824d32df1a5113d82101345d785a38addbde5
Validity
Not Before: Jan 1 02:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=177a8bc31f05fe5358ef357d98bcc3813c6b4d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4a:f3:2c:b4:8d:d8:45:73:a0:1b:11:09:51:
08:fd:4c:b3:52:ac:5c:3e:4d:fc:0a:5a:89:3f:71:
2a:95:31:f3:f7:3d:76:46:3c:6f:3a:fd:fc:90:91:
f3:8c:6f:04:95:e9:f5:75:93:74:41:d6:6a:5d:1d:
20:eb:d2:95:33:4e:0c:23:c0:1c:ed:c9:79:e6:ce:
72:6c:94:35:48:1a:36:9f:11:3d:79:9a:8f:9b:e6:
1f:b8:af:7d:5f:62:c2:76:16:aa:8f:bc:68:18:ae:
17:d8:67:7c:f2:07:98:04:fa:33:6a:47:45:48:54:
19:42:49:2e:5c:1d:3f:bc:49:90:cd:36:ad:ab:ca:
1c:a3:f4:52:af:18:86:19:8f:fd:62:0e:f8:8f:ec:
92:7f:54:4b:aa:8e:f9:d5:f8:b4:8e:e6:72:f9:f2:
42:d9:e8:3a:00:7f:c5:d7:7b:d4:59:db:90:4d:ab:
78:eb:95:2c:fc:9a:c9:c9:0f:46:11:b2:a6:c1:f8:
5e:6e:b4:da:08:9e:63:6a:c2:35:ab:ac:76:f1:fb:
18:db:5d:3b:e2:5a:43:35:c4:fe:69:23:eb:31:eb:
25:03:90:ca:7b:bd:64:e9:ad:83:6a:dc:9b:b2:2f:
24:f9:ea:d2:41:8e:98:6e:6e:7d:16:85:2e:a9:25:
34:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7A:8B:C3:1F:05:FE:53:58:EF:35:7D:98:BC:C3:81:3C:6B:4D:98
X509v3 Authority Key Identifier:
keyid:84:F8:24:D3:2D:F1:A5:11:3D:82:10:13:45:D7:85:A3:8A:DD:BD:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPgk0y3xpRE9ghATRdeFo4rdveU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/F3qLwx8F_lNY7zV9mLzDgTxrTZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/9d65bb-ab4f-43aa-bba8-437394938c52/1/hPgk0y3xpRE9ghATRdeFo4rdveU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.94.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:55:8f:22:be:c8:34:4d:26:68:dd:ac:22:42:74:d2:53:12:
74:c1:e5:8d:bb:cf:bc:8c:5a:b8:b1:13:a7:1a:b5:5e:d8:da:
73:b3:1a:79:eb:40:8d:bf:e1:d3:43:ee:c4:42:52:1f:7c:64:
57:ea:ca:2c:49:19:69:63:b9:df:09:b6:28:f6:22:27:55:ce:
61:29:e4:45:6f:7a:19:67:93:3d:1d:c6:ae:25:3d:c2:74:d1:
37:79:b4:0e:fd:03:b5:2e:06:f8:41:cd:c4:4e:0f:d0:5c:04:
dc:8c:0a:28:ed:5f:9c:f7:51:d2:c7:6b:d6:0d:de:c6:9c:40:
1b:e2:dd:f8:ba:00:bf:9a:af:c6:f9:e6:c9:a0:8e:65:fc:63:
58:15:9a:53:ac:4e:77:03:06:fb:c7:af:10:b5:2a:e2:3c:54:
91:bc:86:6e:ff:8a:b8:4f:94:17:27:5d:21:19:24:45:fa:c2:
1f:6f:17:3a:fc:53:59:03:12:06:12:96:e8:8e:60:be:21:bc:
51:fc:49:1d:64:9a:e6:62:51:38:dc:bd:ec:88:10:e1:a3:80:
74:7e:e3:f9:cc:93:05:ca:e4:22:b1:43:42:ad:42:f7:a1:bb:
fd:24:13:04:f4:b5:51:bb:bd:63:d7:84:40:33:90:98:8f:fd:
3f:3c:20:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2rtZIYpvHrCyDgrCPYcJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZjgyNGQzMmRmMWE1MTEzZDgyMTAxMzQ1ZDc4NWEzOGFk
ZGJkZTUwHhcNMjQwMTAxMDIyOTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzdhOGJjMzFmMDVmZTUzNThlZjM1N2Q5OGJjYzM4MTNjNmI0ZDk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0rzLLSN2EVzoBsRCVEI/UyzUqxc
Pk38ClqJP3EqlTHz9z12RjxvOv38kJHzjG8Elen1dZN0QdZqXR0g69KVM04MI8Ac
7cl55s5ybJQ1SBo2nxE9eZqPm+YfuK99X2LCdhaqj7xoGK4X2Gd88geYBPozakdF
SFQZQkkuXB0/vEmQzTatq8oco/RSrxiGGY/9Yg74j+ySf1RLqo751fi0juZy+fJC
2eg6AH/F13vUWduQTat465Us/JrJyQ9GEbKmwfhebrTaCJ5jasI1q6x28fsY2107
4lpDNcT+aSPrMeslA5DKe71k6a2Datybsi8k+erSQY6Ybm59FoUuqSU03QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBd6i8MfBf5TWO81fZi8w4E8a02YMB8GA1UdIwQY
MBaAFIT4JNMt8aURPYIQE0XXhaOK3b3lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFBnazB5M3hwUkU5Z2hBVFJkZUZvNHJkdmVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85ZDY1YmItYWI0Zi00M2FhLWJiYTgt
NDM3Mzk0OTM4YzUyLzEvRjNxTHd4OEZfbE5ZN3pWOW1MekRnVHhyVFpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85ZDY1YmItYWI0Zi00M2FhLWJiYTgtNDM3Mzk0OTM4YzUy
LzEvaFBnazB5M3hwUkU5Z2hBVFJkZUZvNHJkdmVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNZeMA0G
CSqGSIb3DQEBCwUAA4IBAQBuVY8ivsg0TSZo3awiQnTSUxJ0weWNu8+8jFq4sROn
GrVe2Npzsxp560CNv+HTQ+7EQlIffGRX6sosSRlpY7nfCbYo9iInVc5hKeRFb3oZ
Z5M9HcauJT3CdNE3ebQO/QO1Lgb4Qc3ETg/QXATcjAoo7V+c91HSx2vWDd7GnEAb
4t34ugC/mq/G+ebJoI5l/GNYFZpTrE53Awb7x68QtSriPFSRvIZu/4q4T5QXJ10h
GSRF+sIfbxc6/FNZAxIGEpbojmC+IbxR/EkdZJrmYlE43L3siBDho4B0fuP5zJMF
yuQisUNCrUL3obv9JBME9LVRu71j14RAM5CYj/0/PCD9
-----END CERTIFICATE-----
Generated at Fri Feb 23 19:25:54 2024 by rpki-client on console-ams.rpki-client.org