Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/s7YHbcNSB1X1Jm9nZxqyv0FZK4c.roa
File: s7YHbcNSB1X1Jm9nZxqyv0FZK4c.roa (raw, json)
Hash identifier: oZqbzwQz8vYigorqpHiqUdLbd6rE1gJAsJkopGEUqBA=
Subject key identifier: B3:B6:07:6D:C3:52:07:55:F5:26:6F:67:67:1A:B2:BF:41:59:2B:87
Certificate issuer: /CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Certificate serial: 018BECC1BC7AF6D03684B564C6D92101EBF7
Authority key identifier: 54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/s7YHbcNSB1X1Jm9nZxqyv0FZK4c.roa
Signing time: Mon 20 Nov 2023 12:43:21 +0000
ROA not before: Mon 20 Nov 2023 12:43:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204457
IP address blocks: 188.125.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:c1:bc:7a:f6:d0:36:84:b5:64:c6:d9:21:01:eb:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=542f633f76e8d8aaeaa32b5ace16a3db3943d80c
Validity
Not Before: Nov 20 12:43:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3b6076dc3520755f5266f67671ab2bf41592b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:56:8f:c2:47:b0:43:e8:65:e3:1d:38:2a:75:
b6:cd:91:13:7a:1a:8f:75:a9:2f:ab:9e:23:1e:cc:
bc:89:8e:a2:29:6f:9a:d5:ea:fc:36:59:06:9e:6c:
31:21:3b:28:f3:50:d8:b3:55:aa:eb:8e:6c:81:6f:
91:7e:31:0a:f6:41:9e:08:4e:76:fe:f4:13:f4:fd:
cb:64:5c:f3:46:dd:2e:c6:28:8b:0f:2a:75:fa:37:
6e:76:38:23:f4:67:6f:04:02:01:8c:dd:e5:4e:41:
30:f4:c3:44:f9:52:e3:30:b5:55:c5:20:30:02:2d:
40:77:0d:2e:4b:75:9b:25:f9:7f:7e:37:97:b9:4b:
18:b3:d9:aa:c5:80:34:77:bb:be:b8:fd:8a:e6:f9:
03:08:75:fa:a3:03:29:04:ec:de:75:fd:22:4e:9f:
9c:66:b7:44:a3:e6:12:f5:16:5d:08:d8:fd:dc:31:
47:9e:45:4c:3f:96:31:1a:13:9f:83:e5:e8:32:13:
58:d2:a9:7f:81:3d:91:2a:72:0e:8a:4d:e7:aa:83:
7a:ae:d2:4c:8d:d9:a2:3a:c2:2e:7b:9a:c3:47:76:
9a:cc:a7:55:22:41:6d:27:b6:24:4d:fe:df:1b:98:
e6:2e:5b:d2:2d:cf:ba:d0:8e:2b:60:ac:ae:ad:7f:
53:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B6:07:6D:C3:52:07:55:F5:26:6F:67:67:1A:B2:BF:41:59:2B:87
X509v3 Authority Key Identifier:
keyid:54:2F:63:3F:76:E8:D8:AA:EA:A3:2B:5A:CE:16:A3:DB:39:43:D8:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VC9jP3bo2Krqoytazhaj2zlD2Aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/s7YHbcNSB1X1Jm9nZxqyv0FZK4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/d6b874-aea8-4b7e-b0d2-69b953c9d5aa/1/VC9jP3bo2Krqoytazhaj2zlD2Aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.125.170.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:e3:66:e4:28:a2:d1:12:96:2e:d7:f2:cd:86:be:d1:57:67:
2d:6c:62:f9:54:71:d0:13:3d:73:ba:4d:63:cd:01:02:5b:7d:
8c:af:e9:c9:8e:63:92:d4:36:3d:c1:94:b7:f5:30:5a:3c:45:
9c:f1:6d:d8:c5:a6:4e:46:97:fd:6e:b8:23:d3:2f:d7:c6:08:
f5:a6:87:99:82:54:60:46:45:81:b1:34:9d:cd:8d:b3:4a:a5:
76:a5:8e:64:bf:9b:b3:87:61:5f:22:9e:da:16:79:91:6e:64:
c2:70:ba:29:b3:dc:b4:8e:84:90:34:c9:1f:ce:3f:e6:83:15:
bb:7d:37:dd:5c:75:ac:b5:89:b8:08:7f:ea:d8:71:78:fc:e5:
a7:52:b4:03:96:0e:96:4b:f1:8b:7d:36:ce:78:78:42:6a:28:
68:82:5f:8b:0c:2c:0c:9c:a5:84:74:d4:3d:67:e6:99:3a:2e:
81:b9:66:b4:f0:20:bf:de:96:87:7e:ce:a8:70:f6:12:01:79:
0d:67:cc:09:45:1f:0f:1c:cf:ff:df:56:0d:92:89:44:82:11:
ab:16:88:14:e2:19:06:b2:a6:87:cd:a5:98:14:f5:93:bf:12:
36:48:75:e3:de:6e:2b:3b:6d:7a:d1:cc:e0:fb:ec:e6:8a:4d:
36:72:d3:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvswbx69tA2hLVkxtkhAev3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MmY2MzNmNzZlOGQ4YWFlYWEzMmI1YWNlMTZhM2RiMzk0
M2Q4MGMwHhcNMjMxMTIwMTI0MzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2I2MDc2ZGMzNTIwNzU1ZjUyNjZmNjc2NzFhYjJiZjQxNTkyYjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFaPwkewQ+hl4x04KnW2zZETehqP
dakvq54jHsy8iY6iKW+a1er8NlkGnmwxITso81DYs1Wq645sgW+RfjEK9kGeCE52
/vQT9P3LZFzzRt0uxiiLDyp1+jdudjgj9GdvBAIBjN3lTkEw9MNE+VLjMLVVxSAw
Ai1Adw0uS3WbJfl/fjeXuUsYs9mqxYA0d7u+uP2K5vkDCHX6owMpBOzedf0iTp+c
ZrdEo+YS9RZdCNj93DFHnkVMP5YxGhOfg+XoMhNY0ql/gT2RKnIOik3nqoN6rtJM
jdmiOsIue5rDR3aazKdVIkFtJ7YkTf7fG5jmLlvSLc+60I4rYKyurX9TNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLO2B23DUgdV9SZvZ2casr9BWSuHMB8GA1UdIwQY
MBaAFFQvYz926Niq6qMrWs4Wo9s5Q9gMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkM5alAzYm8yS3Jxb3l0YXpoYWoyemxEMkF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9kNmI4NzQtYWVhOC00YjdlLWIwZDIt
NjliOTUzYzlkNWFhLzEvczdZSGJjTlNCMVgxSm05blp4cXl2MEZaSzRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9kNmI4NzQtYWVhOC00YjdlLWIwZDItNjliOTUzYzlkNWFh
LzEvVkM5alAzYm8yS3Jxb3l0YXpoYWoyemxEMkF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvH2qMA0G
CSqGSIb3DQEBCwUAA4IBAQDL42bkKKLREpYu1/LNhr7RV2ctbGL5VHHQEz1zuk1j
zQECW32Mr+nJjmOS1DY9wZS39TBaPEWc8W3YxaZORpf9brgj0y/Xxgj1poeZglRg
RkWBsTSdzY2zSqV2pY5kv5uzh2FfIp7aFnmRbmTCcLops9y0joSQNMkfzj/mgxW7
fTfdXHWstYm4CH/q2HF4/OWnUrQDlg6WS/GLfTbOeHhCaihogl+LDCwMnKWEdNQ9
Z+aZOi6BuWa08CC/3paHfs6ocPYSAXkNZ8wJRR8PHM//31YNkolEghGrFogU4hkG
sqaHzaWYFPWTvxI2SHXj3m4rO2160czg++zmik02ctOp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:25 2024 by rpki-client on console-ams.rpki-client.org