Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ah6pa8fOTdrEZCAqtuKlVjdwpHk.roa
File: ah6pa8fOTdrEZCAqtuKlVjdwpHk.roa (raw, json)
Hash identifier: tWq6/IeLi/IYdNQJtMg1DiZH1NyIQQi5pSLxu0FvXl8=
Subject key identifier: 6A:1E:A9:6B:C7:CE:4D:DA:C4:64:20:2A:B6:E2:A5:56:37:70:A4:79
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 01856D5D1F92FA199F474BEEE281E094C0CC
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ah6pa8fOTdrEZCAqtuKlVjdwpHk.roa
Signing time: Sun 01 Jan 2023 12:44:57 +0000
ROA not before: Sun 01 Jan 2023 12:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 188.214.232.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 15 May 2023 15:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:1f:92:fa:19:9f:47:4b:ee:e2:81:e0:94:c0:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: Jan 1 12:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a1ea96bc7ce4ddac464202ab6e2a5563770a479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3e:ed:85:03:a8:1d:35:45:dd:2b:b9:5e:c3:
c1:f6:ac:df:2b:e1:32:89:97:cd:34:96:67:7b:57:
af:8b:0c:f7:7d:88:06:37:6f:2e:4d:5d:30:d9:11:
19:a3:5e:f4:5c:8a:4f:96:a0:68:78:34:c4:7c:fb:
b1:fc:dc:ab:1e:e0:92:c8:c1:2b:d4:ce:d7:6a:13:
97:a2:38:96:20:fc:fb:aa:f9:2c:56:7f:52:ed:7e:
55:0a:3c:05:38:2f:fb:52:bf:3b:56:94:c7:d1:e6:
56:cb:9e:d8:16:26:9f:ee:3a:42:0e:f4:5b:1b:83:
c1:79:bb:01:4e:2c:c8:db:ee:c3:78:e5:c6:df:00:
5a:62:54:01:06:e9:78:3d:8d:24:7c:72:78:f9:40:
3b:77:ac:78:b9:df:e8:ff:43:51:48:2a:3b:c2:7b:
76:a1:89:60:bc:38:5c:50:9a:37:8d:d9:0c:1a:b4:
25:0d:ed:23:08:88:89:73:74:8e:a7:a1:5a:ce:b2:
2c:45:16:e9:db:fb:e4:5e:68:a8:05:2d:f7:59:e8:
af:67:a4:03:37:80:fd:00:21:12:10:e9:44:5a:56:
d1:ed:ac:74:12:b5:21:32:d6:af:a7:94:f6:fd:97:
f2:1c:06:38:ae:dc:b9:9e:43:f2:ff:96:fe:79:2f:
b5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1E:A9:6B:C7:CE:4D:DA:C4:64:20:2A:B6:E2:A5:56:37:70:A4:79
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ah6pa8fOTdrEZCAqtuKlVjdwpHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.232.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:2d:55:99:9d:d7:74:fb:99:4c:35:cc:82:fb:a7:3b:af:3b:
66:8a:11:f1:40:34:58:c7:22:b2:3d:36:92:18:6b:d7:6c:c3:
58:41:56:46:98:43:85:55:fb:7f:88:e2:24:50:24:da:09:e5:
fa:03:46:aa:0f:14:a7:db:de:b8:48:a2:9d:29:7a:eb:e9:82:
51:e3:9c:9d:4d:cd:a2:66:04:d2:1a:1d:c4:bb:1f:96:82:4f:
84:78:02:8c:7e:14:48:4b:10:eb:ec:d7:7a:ea:62:0f:56:00:
ca:d3:d8:54:92:cd:bb:6c:d7:79:c1:1c:68:37:22:d1:63:cd:
b2:74:ae:e3:fc:ad:fd:31:6a:ce:29:16:3b:07:94:bb:3e:57:
e4:cf:df:73:bf:2a:6b:da:22:7a:02:97:f7:86:3d:5c:ba:02:
f0:0d:47:c4:47:8a:a3:80:d4:55:07:eb:8d:22:6e:a7:e9:3c:
43:ad:82:92:9d:c0:15:05:5d:6f:67:5b:15:cd:73:f6:ff:6b:
b7:1a:5f:66:4d:11:6e:ba:60:15:d4:17:dd:a4:2a:7a:b5:14:
55:3a:64:f7:9c:97:b5:e7:71:86:f5:cc:05:d3:37:8e:5f:ec:
39:8f:0d:27:ab:ca:e9:e3:76:4a:73:66:7c:84:1c:33:58:47:
58:1c:95:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtXR+S+hmfR0vu4oHglMDMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjMwMTAxMTI0NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTFlYTk2YmM3Y2U0ZGRhYzQ2NDIwMmFiNmUyYTU1NjM3NzBhNDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjD7thQOoHTVF3Su5XsPB9qzfK+Ey
iZfNNJZne1eviwz3fYgGN28uTV0w2REZo170XIpPlqBoeDTEfPux/NyrHuCSyMEr
1M7XahOXojiWIPz7qvksVn9S7X5VCjwFOC/7Ur87VpTH0eZWy57YFiaf7jpCDvRb
G4PBebsBTizI2+7DeOXG3wBaYlQBBul4PY0kfHJ4+UA7d6x4ud/o/0NRSCo7wnt2
oYlgvDhcUJo3jdkMGrQlDe0jCIiJc3SOp6FazrIsRRbp2/vkXmioBS33WeivZ6QD
N4D9ACESEOlEWlbR7ax0ErUhMtavp5T2/ZfyHAY4rty5nkPy/5b+eS+1+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGoeqWvHzk3axGQgKrbipVY3cKR5MB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvYWg2cGE4Zk9UZHJFWkNBcXR1S2xWamR3cEhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBvNboMA0G
CSqGSIb3DQEBCwUAA4IBAQBLLVWZndd0+5lMNcyC+6c7rztmihHxQDRYxyKyPTaS
GGvXbMNYQVZGmEOFVft/iOIkUCTaCeX6A0aqDxSn2964SKKdKXrr6YJR45ydTc2i
ZgTSGh3Eux+Wgk+EeAKMfhRISxDr7Nd66mIPVgDK09hUks27bNd5wRxoNyLRY82y
dK7j/K39MWrOKRY7B5S7Plfkz99zvypr2iJ6Apf3hj1cugLwDUfER4qjgNRVB+uN
Im6n6TxDrYKSncAVBV1vZ1sVzXP2/2u3Gl9mTRFuumAV1BfdpCp6tRRVOmT3nJe1
53GG9cwF0zeOX+w5jw0nq8rp43ZKc2Z8hBwzWEdYHJW3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org