Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/o8ytC-sL1AWDsPZNTLZvIUGVq-Q.roa
File: o8ytC-sL1AWDsPZNTLZvIUGVq-Q.roa (raw, json)
Hash identifier: SayMBd4qtq2QwTXG3zdoBSttddcn6bZdjRhYd/VmgzQ=
Subject key identifier: A3:CC:AD:0B:EB:0B:D4:05:83:B0:F6:4D:4C:B6:6F:21:41:95:AB:E4
Certificate issuer: /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial: 018F596C3D28535595CEAFD355FE67D26F22
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/o8ytC-sL1AWDsPZNTLZvIUGVq-Q.roa
Signing time: Wed 08 May 2024 18:16:56 +0000
ROA not before: Wed 08 May 2024 18:16:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.214.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 22:15:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:59:6c:3d:28:53:55:95:ce:af:d3:55:fe:67:d2:6f:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Validity
Not Before: May 8 18:16:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3ccad0beb0bd40583b0f64d4cb66f214195abe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d9:87:af:36:10:52:7b:4c:c5:ab:02:09:78:
20:b7:e2:77:47:26:d8:96:17:cf:95:95:00:2c:14:
b9:11:d4:65:8b:a3:5c:90:49:93:77:7f:54:69:03:
0b:a8:a5:da:55:70:9d:f3:3d:14:ff:11:cc:27:6e:
d3:d7:ed:1d:b6:dc:56:c0:7b:03:1a:31:e4:d8:34:
dc:f1:87:2e:fb:ec:fa:7e:59:ca:5e:cf:9f:95:fd:
b6:ec:b1:5c:69:40:11:0b:3e:87:d4:cf:29:fa:18:
22:67:97:c4:2d:40:88:e4:02:84:6c:c0:06:6d:da:
87:a8:67:d9:57:00:b1:f3:96:81:ef:e5:02:1c:d1:
92:89:df:cb:2b:ed:54:63:fa:2f:68:b7:14:61:1f:
a4:3f:81:a6:34:ca:84:f5:f1:35:78:b2:30:64:91:
f0:d3:93:ce:f9:aa:cc:b2:ea:f3:a7:57:42:6f:da:
b6:71:db:c6:7d:78:be:6c:e5:ed:fe:d5:51:92:d0:
f0:46:c7:d1:c2:c9:05:8f:87:d7:08:2e:1f:e3:93:
f9:56:0c:6b:c6:f7:ce:af:3d:d8:9a:1b:1f:c8:f3:
15:44:ec:a6:7b:f7:3b:9c:b4:23:9e:9e:79:47:db:
b4:c4:a5:05:92:e9:62:45:e2:69:06:1e:9d:be:5c:
1d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:CC:AD:0B:EB:0B:D4:05:83:B0:F6:4D:4C:B6:6F:21:41:95:AB:E4
X509v3 Authority Key Identifier:
keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/o8ytC-sL1AWDsPZNTLZvIUGVq-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.234.0/23
Signature Algorithm: sha256WithRSAEncryption
76:98:13:ff:c7:24:f7:4d:7e:2e:9c:e3:15:ac:df:57:be:df:
d8:92:86:e6:e6:f6:00:bd:b1:15:e0:e4:e0:c6:ae:33:6a:72:
5e:ee:87:5f:6a:fd:d7:1e:5f:da:d2:ea:02:83:56:f7:73:1c:
9b:91:74:0a:fd:4b:b1:e8:4b:28:c3:97:45:f6:a4:80:a7:9f:
db:bb:a1:28:3f:32:21:cb:f9:7c:3a:fe:45:02:fa:77:7f:f9:
b1:ac:bf:1b:1e:6f:30:dd:77:6e:98:98:4d:2d:3d:45:6a:91:
12:19:aa:39:0c:23:5f:b4:ea:d4:f7:3a:13:4c:da:80:3d:10:
83:81:ec:27:65:70:99:b5:88:bd:d0:39:eb:c2:4b:11:0b:c0:
2d:3e:86:8b:63:91:3c:0a:28:30:19:eb:55:51:18:2c:38:6b:
ad:b1:4f:d1:cd:07:52:e6:5e:84:88:34:04:de:35:3a:31:94:
af:8c:2c:be:ca:fb:9f:b9:5b:d2:f3:8f:bc:b2:d8:3f:c9:49:
f6:37:3b:9d:85:ca:23:9a:6d:d3:f9:e5:52:00:b4:c3:86:06:
fe:d9:1e:e0:c6:fd:d8:95:b6:cb:43:7d:24:78:24:97:59:e3:
96:97:9f:21:f0:5e:c1:09:02:65:7a:fc:80:9c:85:d0:cc:03:
6e:20:68:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY9ZbD0oU1WVzq/TVf5n0m8iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwNTA4MTgxNjU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhM2NjYWQwYmViMGJkNDA1ODNiMGY2NGQ0Y2I2NmYyMTQxOTVhYmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9mHrzYQUntMxasCCXggt+J3RybY
lhfPlZUALBS5EdRli6NckEmTd39UaQMLqKXaVXCd8z0U/xHMJ27T1+0dttxWwHsD
GjHk2DTc8Ycu++z6flnKXs+flf227LFcaUARCz6H1M8p+hgiZ5fELUCI5AKEbMAG
bdqHqGfZVwCx85aB7+UCHNGSid/LK+1UY/ovaLcUYR+kP4GmNMqE9fE1eLIwZJHw
05PO+arMsurzp1dCb9q2cdvGfXi+bOXt/tVRktDwRsfRwskFj4fXCC4f45P5Vgxr
xvfOrz3YmhsfyPMVROyme/c7nLQjnp55R9u0xKUFkuliReJpBh6dvlwdXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKPMrQvrC9QFg7D2TUy2byFBlavkMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvbzh5dEMtc0wxQVdEc1BaTlRMWnZJVUdWcS1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBvNbqMA0G
CSqGSIb3DQEBCwUAA4IBAQB2mBP/xyT3TX4unOMVrN9Xvt/Ykobm5vYAvbEV4OTg
xq4zanJe7odfav3XHl/a0uoCg1b3cxybkXQK/Uux6Esow5dF9qSAp5/bu6EoPzIh
y/l8Ov5FAvp3f/mxrL8bHm8w3XdumJhNLT1FapESGao5DCNftOrU9zoTTNqAPRCD
gewnZXCZtYi90DnrwksRC8AtPoaLY5E8CigwGetVURgsOGutsU/RzQdS5l6EiDQE
3jU6MZSvjCy+yvufuVvS84+8stg/yUn2Nzudhcojmm3T+eVSALTDhgb+2R7gxv3Y
lbbLQ30keCSXWeOWl58h8F7BCQJlevyAnIXQzANuIGh9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org