Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/hCJq78GRvozZGP3WtS6Sl4xg9so.roa
File: hCJq78GRvozZGP3WtS6Sl4xg9so.roa (raw, json)
Hash identifier: CvAGZSoyx34WKP8MmN6w5CVtn+0PikzHxchvil/2aNY=
Subject key identifier: 84:22:6A:EF:C1:91:BE:8C:D9:18:FD:D6:B5:2E:92:97:8C:60:F6:CA
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018FB7E0039ACE32156D2AC219B0A70FF626
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/hCJq78GRvozZGP3WtS6Sl4xg9so.roa
Signing time: Mon 27 May 2024 02:27:42 +0000
ROA not before: Mon 27 May 2024 02:27:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 88.80.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 12:58:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b7:e0:03:9a:ce:32:15:6d:2a:c2:19:b0:a7:0f:f6:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: May 27 02:27:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84226aefc191be8cd918fdd6b52e92978c60f6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:de:d1:4f:66:77:15:a6:f9:8c:d1:ce:6a:ac:
23:f6:1d:18:71:94:1c:53:69:8f:ff:2a:94:7e:df:
2a:89:01:6e:f3:8d:ef:39:41:37:af:8a:94:be:f2:
7a:33:35:5c:8b:84:b0:e3:c4:09:e7:dd:9b:36:66:
e4:86:bb:af:93:12:59:32:74:3d:01:64:10:16:54:
ca:b0:6f:8f:d5:e1:db:09:87:4d:38:70:3f:b7:78:
cc:84:9e:61:6d:21:30:7f:25:7f:3e:1b:08:20:ae:
35:f3:ce:a5:16:b1:a8:44:7b:bd:04:12:7f:4f:57:
80:6c:71:7c:74:a6:87:93:4c:04:e1:8a:0a:a5:f5:
81:75:d0:3e:bb:2e:ee:3e:b1:57:fc:5e:80:25:aa:
83:4c:42:06:96:56:fd:9a:70:44:44:4e:a3:94:a1:
a9:57:8e:81:c9:c7:37:84:ff:1a:91:af:a6:33:04:
6e:3d:1c:cf:39:48:a1:52:5e:41:61:37:96:8d:7a:
77:29:98:4a:7e:f2:12:4c:d3:c4:c4:f3:59:a2:40:
f5:93:2d:e0:1e:76:c2:45:bc:a4:98:e9:07:21:7d:
07:de:bf:b1:b1:a0:51:78:3e:8f:0d:58:67:30:2b:
b9:d1:05:c8:ca:94:5b:91:8a:f8:93:bd:97:72:e6:
50:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:22:6A:EF:C1:91:BE:8C:D9:18:FD:D6:B5:2E:92:97:8C:60:F6:CA
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/hCJq78GRvozZGP3WtS6Sl4xg9so.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.139.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:3c:80:d2:f7:f1:a4:04:3f:5b:c4:64:d0:fb:b9:59:ce:9b:
1f:bb:91:db:d4:d7:a9:10:3d:04:70:85:a3:94:4b:77:d6:d0:
05:f5:82:04:ae:ba:b0:40:a5:41:91:23:b3:45:40:2f:52:39:
9e:8e:d1:f8:b0:e6:6b:f0:ea:49:13:8f:ab:b5:39:11:97:bc:
33:1c:d4:71:46:b5:a6:04:49:d1:e5:f4:59:54:25:3e:e3:3a:
ff:44:74:e0:99:92:7d:af:cd:8c:1a:8c:42:53:29:a7:c6:d7:
07:58:91:de:82:f7:ac:91:30:d7:7c:ff:e7:4e:8b:35:e2:89:
41:ee:92:63:60:93:4a:2e:9b:ee:48:52:5e:f9:b6:d8:5e:1b:
ff:63:7d:ce:2f:3f:a2:bf:20:e5:db:e2:42:08:b0:51:e2:07:
b4:ff:69:de:9e:a0:f0:0d:e5:07:7d:48:03:4a:b3:d2:82:33:
65:05:44:69:83:97:66:f8:53:4b:cb:19:41:00:85:09:30:62:
3c:40:9a:8f:69:58:20:df:8b:a4:31:47:2e:f8:e4:5f:92:04:
86:1c:da:c4:6f:2e:74:f9:a1:3c:3d:a6:57:cd:65:f2:7c:a7:
f8:fe:0a:e4:58:e9:a8:94:00:64:e2:42:df:64:2f:81:d0:da:
b9:aa:38:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+34AOazjIVbSrCGbCnD/YmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2
MzFiZmIwHhcNMjQwNTI3MDIyNzQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDIyNmFlZmMxOTFiZThjZDkxOGZkZDZiNTJlOTI5NzhjNjBmNmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlt7RT2Z3Fab5jNHOaqwj9h0YcZQc
U2mP/yqUft8qiQFu843vOUE3r4qUvvJ6MzVci4Sw48QJ592bNmbkhruvkxJZMnQ9
AWQQFlTKsG+P1eHbCYdNOHA/t3jMhJ5hbSEwfyV/PhsIIK41886lFrGoRHu9BBJ/
T1eAbHF8dKaHk0wE4YoKpfWBddA+uy7uPrFX/F6AJaqDTEIGllb9mnBERE6jlKGp
V46Bycc3hP8aka+mMwRuPRzPOUihUl5BYTeWjXp3KZhKfvISTNPExPNZokD1ky3g
HnbCRbykmOkHIX0H3r+xsaBReD6PDVhnMCu50QXIypRbkYr4k72XcuZQrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIQiau/Bkb6M2Rj91rUukpeMYPbKMB8GA1UdIwQY
MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt
YWI4ZjFmMzM4N2VlLzEvaENKcTc4R1J2b3paR1AzV3RTNlNsNHhnOXNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl
LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWFCLMA0G
CSqGSIb3DQEBCwUAA4IBAQCMPIDS9/GkBD9bxGTQ+7lZzpsfu5Hb1NepED0EcIWj
lEt31tAF9YIErrqwQKVBkSOzRUAvUjmejtH4sOZr8OpJE4+rtTkRl7wzHNRxRrWm
BEnR5fRZVCU+4zr/RHTgmZJ9r82MGoxCUymnxtcHWJHegveskTDXfP/nTos14olB
7pJjYJNKLpvuSFJe+bbYXhv/Y33OLz+ivyDl2+JCCLBR4ge0/2nenqDwDeUHfUgD
SrPSgjNlBURpg5dm+FNLyxlBAIUJMGI8QJqPaVgg34ukMUcu+ORfkgSGHNrEby50
+aE8PaZXzWXyfKf4/grkWOmolABk4kLfZC+B0Nq5qjjv
-----END CERTIFICATE-----
Generated at Wed Jun 12 15:47:33 2024 by rpki-client on console-fra.rpki-client.org