Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/gQ6jZs6Yjv2OOQbIn7iv7fr7w7c.roa
File: gQ6jZs6Yjv2OOQbIn7iv7fr7w7c.roa (raw, json)
Hash identifier: I3jh9WKKk+TySs5QIdwCc47+sylzclTT0otWFVBsiUY=
Subject key identifier: 81:0E:A3:66:CE:98:8E:FD:8E:39:06:C8:9F:B8:AF:ED:FA:FB:C3:B7
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018D225C9EF1B4A034458C08E3BD1FD6A623
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/gQ6jZs6Yjv2OOQbIn7iv7fr7w7c.roa
Signing time: Fri 19 Jan 2024 15:35:11 +0000
ROA not before: Fri 19 Jan 2024 15:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 88.214.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 23 Feb 2024 10:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:22:5c:9e:f1:b4:a0:34:45:8c:08:e3:bd:1f:d6:a6:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 19 15:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=810ea366ce988efd8e3906c89fb8afedfafbc3b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:61:4a:e1:33:24:c4:d6:ac:85:ab:50:c8:5b:
a5:18:a9:9c:5e:78:8a:60:c2:d5:25:28:de:be:0f:
e5:19:54:2f:14:f4:0c:be:ce:60:a1:47:a3:2e:e9:
79:da:37:b0:d4:de:bd:fd:69:cd:26:a6:10:7a:cd:
84:9d:95:0e:de:94:69:1f:2c:c4:b3:d6:4a:4a:7f:
69:cf:d1:ce:4f:82:26:eb:18:05:b6:71:5e:3e:15:
69:b1:9d:9c:7d:22:57:10:2c:f2:ac:d2:0d:4b:f3:
50:2a:3b:07:bc:82:c5:ee:0e:7b:bb:b3:be:8f:07:
d9:b1:eb:fb:a9:e9:ee:fe:d0:ee:c9:23:3a:5d:31:
f7:4d:33:29:d5:f4:62:09:98:6a:8c:fe:08:b9:b8:
97:f3:a0:f7:22:84:a4:88:5e:dc:9c:9b:20:a4:f4:
a3:2c:84:0f:10:f8:f9:23:4d:2b:bc:84:11:7e:db:
63:88:b8:9e:df:18:cb:cf:0e:6f:91:d1:9b:b2:3b:
ee:8f:f6:f0:bc:9a:2c:31:f4:f7:69:44:09:c7:10:
46:9c:c3:99:fd:41:d6:cc:d7:20:ae:27:98:84:e7:
46:1f:96:0e:3e:50:df:76:15:11:b9:c9:0e:7f:11:
25:42:0a:b1:0d:9f:a5:86:12:bf:e9:5f:cd:74:b9:
ee:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0E:A3:66:CE:98:8E:FD:8E:39:06:C8:9F:B8:AF:ED:FA:FB:C3:B7
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/gQ6jZs6Yjv2OOQbIn7iv7fr7w7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.52.0/22
Signature Algorithm: sha256WithRSAEncryption
05:52:bc:5a:b5:f7:07:d5:08:d7:b6:06:8e:f3:3e:79:58:ad:
32:e5:57:db:2a:85:3b:a3:f4:ca:8b:7d:64:85:df:0b:9b:04:
79:b4:ec:cb:c2:85:95:48:c4:a2:3a:33:72:a2:7f:71:40:22:
7b:ee:85:71:d7:d3:05:fa:7c:bf:88:eb:2a:86:b4:22:41:1d:
9f:51:c1:a8:fc:b8:1b:2d:fe:95:4c:19:84:6d:1d:bd:8b:27:
4a:53:fd:38:3f:2f:c4:d8:fc:cc:40:95:69:d8:df:0e:bb:6c:
35:5c:88:62:79:99:28:48:c1:2f:d7:ab:19:27:d1:ed:61:80:
7b:16:27:4f:36:d0:65:5b:75:87:ee:8c:b1:a9:a2:08:dc:df:
30:17:60:6f:9b:b8:20:5c:05:13:3d:76:fe:5c:85:6f:db:aa:
07:1b:c6:e1:0b:d2:34:2f:69:94:21:e3:6e:5b:87:9d:00:fa:
69:35:61:c4:6b:f2:08:cf:8b:36:a4:4c:bd:07:be:3d:c6:31:
60:98:a8:cc:64:51:c3:84:f4:8f:a9:c0:d0:e4:3b:c6:77:81:
b0:a5:fc:3e:7b:18:ea:bf:a8:da:4f:76:62:0f:2f:08:a4:c6:
f3:f1:12:13:70:0e:e6:38:c8:05:a9:64:2c:63:08:79:47:c7:
8e:03:21:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0iXJ7xtKA0RYwI470f1qYjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjQwMTE5MTUzNTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTBlYTM2NmNlOTg4ZWZkOGUzOTA2Yzg5ZmI4YWZlZGZhZmJjM2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmFK4TMkxNashatQyFulGKmcXniK
YMLVJSjevg/lGVQvFPQMvs5goUejLul52jew1N69/WnNJqYQes2EnZUO3pRpHyzE
s9ZKSn9pz9HOT4Im6xgFtnFePhVpsZ2cfSJXECzyrNINS/NQKjsHvILF7g57u7O+
jwfZsev7qenu/tDuySM6XTH3TTMp1fRiCZhqjP4IubiX86D3IoSkiF7cnJsgpPSj
LIQPEPj5I00rvIQRfttjiLie3xjLzw5vkdGbsjvuj/bwvJosMfT3aUQJxxBGnMOZ
/UHWzNcgrieYhOdGH5YOPlDfdhURuckOfxElQgqxDZ+lhhK/6V/NdLnuxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEOo2bOmI79jjkGyJ+4r+36+8O3MB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvZ1E2alpzNllqdjJPT1FiSW43aXY3ZnI3dzdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCWNY0MA0G
CSqGSIb3DQEBCwUAA4IBAQAFUrxatfcH1QjXtgaO8z55WK0y5VfbKoU7o/TKi31k
hd8LmwR5tOzLwoWVSMSiOjNyon9xQCJ77oVx19MF+ny/iOsqhrQiQR2fUcGo/Lgb
Lf6VTBmEbR29iydKU/04Py/E2PzMQJVp2N8Ou2w1XIhieZkoSMEv16sZJ9HtYYB7
FidPNtBlW3WH7oyxqaII3N8wF2Bvm7ggXAUTPXb+XIVv26oHG8bhC9I0L2mUIeNu
W4edAPppNWHEa/IIz4s2pEy9B749xjFgmKjMZFHDhPSPqcDQ5DvGd4Gwpfw+exjq
v6jaT3ZiDy8IpMbz8RITcA7mOMgFqWQsYwh5R8eOAyF1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org