Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/d9qAdmGY8ZjepP7fJulcB9SVpac.roa
File: d9qAdmGY8ZjepP7fJulcB9SVpac.roa (raw, json)
Hash identifier: l7qjqw+VR86y76Jr5vEF7BvBh45xYRtCtKB/Zh8PtcQ=
Subject key identifier: 77:DA:80:76:61:98:F1:98:DE:A4:FE:DF:26:E9:5C:07:D4:95:A5:A7
Certificate issuer: /CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Certificate serial: 0186E06DF40D0FFDD464BBADBD06CEE08260
Authority key identifier: 0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/d9qAdmGY8ZjepP7fJulcB9SVpac.roa
Signing time: Tue 14 Mar 2023 14:02:27 +0000
ROA not before: Tue 14 Mar 2023 14:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201089
IP address blocks: 188.72.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:6d:f4:0d:0f:fd:d4:64:bb:ad:bd:06:ce:e0:82:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c5140282591f9912f9639ee1412b6d1dcff0861
Validity
Not Before: Mar 14 14:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77da80766198f198dea4fedf26e95c07d495a5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1e:d2:c8:a2:51:ac:b2:fd:9b:61:94:a7:eb:
5f:fd:98:33:72:c3:5b:4d:e4:68:1d:20:e7:e8:ee:
97:75:a2:ae:81:50:45:5f:35:c9:d4:b8:23:7c:77:
3a:07:36:58:9b:ac:f1:5c:4d:16:7f:40:29:cf:57:
a5:70:86:08:a2:cc:d4:bb:fb:da:4e:bb:62:c5:ef:
95:05:5f:47:6d:a3:7f:e6:f4:39:f2:69:31:84:37:
2d:ad:2e:93:2a:7c:1b:1e:a6:7f:a4:7e:f3:0b:b1:
44:da:3f:23:36:d2:40:68:b5:e7:27:ac:74:ae:a9:
e7:6b:48:ad:ec:52:cd:1d:c8:ce:96:3f:bc:16:96:
c7:24:4d:5c:85:f3:81:5d:a5:47:ef:80:9b:24:75:
e9:84:26:b3:05:8b:1c:b1:d8:ae:95:83:0e:9a:2b:
2e:2b:6f:8b:36:76:6b:78:7f:7b:2d:4b:f9:3b:94:
cc:8e:b9:30:12:7b:f9:5d:b4:38:96:cf:9b:5e:3a:
ac:00:ea:66:9a:cd:99:8e:0f:c4:6b:f7:63:00:de:
a6:ec:e0:9d:a3:ef:59:b4:9d:c6:5c:a4:08:c7:7a:
7d:79:9e:62:db:91:ed:93:ab:d2:53:53:1a:3a:c6:
0e:6a:60:63:34:09:66:db:2b:d9:2e:4d:5a:05:97:
08:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:80:76:61:98:F1:98:DE:A4:FE:DF:26:E9:5C:07:D4:95:A5:A7
X509v3 Authority Key Identifier:
keyid:0C:51:40:28:25:91:F9:91:2F:96:39:EE:14:12:B6:D1:DC:FF:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DFFAKCWR-ZEvljnuFBK20dz_CGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/d9qAdmGY8ZjepP7fJulcB9SVpac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0554a2-d3d9-4fc4-8ed5-de91469d3772/1/DFFAKCWR-ZEvljnuFBK20dz_CGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.72.40.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:b8:1e:b8:99:6c:24:93:be:7f:27:a2:65:4f:f4:57:5f:13:
b5:63:c1:0a:da:b4:66:4e:63:ff:df:a7:fd:97:de:e7:f6:1e:
0d:ba:8a:6d:be:a1:6a:45:96:c5:33:d9:12:cf:d7:00:92:5c:
32:c8:d1:31:9c:8f:24:eb:95:a5:0f:f1:7d:2a:5d:f9:70:a6:
c4:a0:6d:37:d2:62:54:1e:a1:d4:5b:0a:0e:52:5d:30:17:96:
6f:92:9c:89:a5:e4:c2:c9:72:ee:8c:00:1c:38:09:e6:2f:c4:
06:51:18:8e:d9:94:3a:d8:ca:6b:68:c8:06:65:e3:55:b5:ac:
eb:90:b2:be:f1:3a:d0:2e:0b:af:2a:6c:b3:12:c0:49:0f:9c:
f2:39:0b:5b:1e:be:b1:51:c0:30:0d:30:83:06:3b:fa:d7:ca:
1a:b5:3a:cd:15:87:83:d8:7f:6f:f3:1b:cd:40:4f:8d:e5:6a:
03:87:ed:d1:c3:69:6a:c2:93:a3:6f:8a:01:fc:a3:54:36:91:
e1:d5:24:64:b2:1a:60:b7:60:f1:60:e7:9e:d9:a0:c8:5c:e2:
21:10:69:7f:ec:f7:07:ff:c8:35:17:9d:37:de:bd:9e:c9:4d:
cd:fd:c1:e9:57:e8:81:38:80:1b:f0:08:9b:03:e4:8d:c9:df:
63:23:dd:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbgbfQND/3UZLutvQbO4IJgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjNTE0MDI4MjU5MWY5OTEyZjk2MzllZTE0MTJiNmQxZGNm
ZjA4NjEwHhcNMjMwMzE0MTQwMjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2RhODA3NjYxOThmMTk4ZGVhNGZlZGYyNmU5NWMwN2Q0OTVhNWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlx7SyKJRrLL9m2GUp+tf/ZgzcsNb
TeRoHSDn6O6XdaKugVBFXzXJ1LgjfHc6BzZYm6zxXE0Wf0Apz1elcIYIoszUu/va
Trtixe+VBV9HbaN/5vQ58mkxhDctrS6TKnwbHqZ/pH7zC7FE2j8jNtJAaLXnJ6x0
rqnna0it7FLNHcjOlj+8FpbHJE1chfOBXaVH74CbJHXphCazBYscsdiulYMOmisu
K2+LNnZreH97LUv5O5TMjrkwEnv5XbQ4ls+bXjqsAOpmms2Zjg/Ea/djAN6m7OCd
o+9ZtJ3GXKQIx3p9eZ5i25Htk6vSU1MaOsYOamBjNAlm2yvZLk1aBZcIXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHfagHZhmPGY3qT+3ybpXAfUlaWnMB8GA1UdIwQY
MBaAFAxRQCglkfmRL5Y57hQSttHc/whhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREZGQUtDV1ItWkV2bGpudUZCSzIwZHpfQ0dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wNTU0YTItZDNkOS00ZmM0LThlZDUt
ZGU5MTQ2OWQzNzcyLzEvZDlxQWRtR1k4WmplcFA3Zkp1bGNCOVNWcGFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy8wNTU0YTItZDNkOS00ZmM0LThlZDUtZGU5MTQ2OWQzNzcy
LzEvREZGQUtDV1ItWkV2bGpudUZCSzIwZHpfQ0dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvEgoMA0G
CSqGSIb3DQEBCwUAA4IBAQC5uB64mWwkk75/J6JlT/RXXxO1Y8EK2rRmTmP/36f9
l97n9h4NuoptvqFqRZbFM9kSz9cAklwyyNExnI8k65WlD/F9Kl35cKbEoG030mJU
HqHUWwoOUl0wF5ZvkpyJpeTCyXLujAAcOAnmL8QGURiO2ZQ62MpraMgGZeNVtazr
kLK+8TrQLguvKmyzEsBJD5zyOQtbHr6xUcAwDTCDBjv618oatTrNFYeD2H9v8xvN
QE+N5WoDh+3Rw2lqwpOjb4oB/KNUNpHh1SRkshpgt2DxYOee2aDIXOIhEGl/7PcH
/8g1F5033r2eyU3N/cHpV+iBOIAb8AibA+SNyd9jI93C
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:06 2024 by rpki-client on console-fra.rpki-client.org