Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/flYk8269x-BBepQnkj2KG_Y8bIg.roa
File: flYk8269x-BBepQnkj2KG_Y8bIg.roa (raw, json)
Hash identifier: ysY+1gHtaZ3PD89W0H44BmCyH5uhGvrlSpM3mL8frrw=
Subject key identifier: 7E:56:24:F3:6E:BD:C7:E0:41:7A:94:27:92:3D:8A:1B:F6:3C:6C:88
Certificate issuer: /CN=5e1bf6a319da2489816aedba1b4fd0cc7ddf3e1e
Certificate serial: 018765AEBA7ED93A1ABCB4B396802A0CA6A1
Authority key identifier: 5E:1B:F6:A3:19:DA:24:89:81:6A:ED:BA:1B:4F:D0:CC:7D:DF:3E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xhv2oxnaJImBau26G0_QzH3fPh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/flYk8269x-BBepQnkj2KG_Y8bIg.roa
Signing time: Sun 09 Apr 2023 11:02:42 +0000
ROA not before: Sun 09 Apr 2023 11:02:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39891
IP address blocks: 188.55.13.0/24 maxlen: 24
188.53.111.0/24 maxlen: 24
188.53.116.0/24 maxlen: 24
188.53.230.0/24 maxlen: 24
188.53.19.0/24 maxlen: 24
188.53.24.0/24 maxlen: 24
188.53.29.0/24 maxlen: 24
188.53.32.0/22 maxlen: 22
188.53.202.0/24 maxlen: 24
188.53.212.0/24 maxlen: 24
188.53.207.0/24 maxlen: 24
188.53.1.0/24 maxlen: 24
188.53.4.0/22 maxlen: 22
188.53.11.0/24 maxlen: 24
188.53.225.0/24 maxlen: 24
188.53.220.0/24 maxlen: 24
188.53.6.0/24 maxlen: 24
188.53.121.0/24 maxlen: 24
188.53.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Apr 2023 11:03:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:65:ae:ba:7e:d9:3a:1a:bc:b4:b3:96:80:2a:0c:a6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e1bf6a319da2489816aedba1b4fd0cc7ddf3e1e
Validity
Not Before: Apr 9 11:02:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e5624f36ebdc7e0417a9427923d8a1bf63c6c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:06:be:fd:9a:5a:43:f9:3d:5a:c6:6f:69:fb:
16:27:49:16:1b:87:9f:ea:44:14:4f:44:e3:91:3d:
ed:aa:ea:94:3c:6b:14:2c:3d:32:2c:c0:eb:1e:39:
82:9d:e1:c3:4c:45:cb:ad:62:35:8c:dd:c2:db:5d:
72:b5:44:f3:52:55:80:e5:8e:eb:bc:08:25:bf:15:
0d:a7:33:f4:31:eb:ad:7c:b6:50:17:24:3a:ee:c5:
e1:ca:28:f0:85:26:1e:2c:29:56:36:27:4b:1c:56:
d8:63:55:48:49:d1:a4:c9:4e:df:17:3d:59:9f:d7:
99:dd:a6:40:f8:e7:b2:e2:f6:37:51:f3:84:59:7c:
8d:b0:bb:0f:ba:f9:94:5c:7f:cb:ec:07:c7:dd:12:
8b:7d:ae:54:52:31:7f:73:64:1c:ed:2c:8c:da:9c:
dc:0d:01:07:31:e4:fa:25:d2:cb:e3:31:f3:01:d1:
48:13:a5:3d:fc:9e:f5:95:12:81:50:0f:d0:68:2e:
9b:81:df:a9:23:c5:04:5a:b5:c2:ac:ba:84:f7:0d:
4c:ef:95:86:58:f3:f5:08:b5:2a:c1:5c:6b:16:20:
36:11:b5:0a:06:43:8c:4d:ad:8f:92:c3:49:5f:42:
5e:cc:14:bb:7d:cc:b6:92:7a:82:5e:ce:5c:a4:26:
8a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:56:24:F3:6E:BD:C7:E0:41:7A:94:27:92:3D:8A:1B:F6:3C:6C:88
X509v3 Authority Key Identifier:
keyid:5E:1B:F6:A3:19:DA:24:89:81:6A:ED:BA:1B:4F:D0:CC:7D:DF:3E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xhv2oxnaJImBau26G0_QzH3fPh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/flYk8269x-BBepQnkj2KG_Y8bIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/Xhv2oxnaJImBau26G0_QzH3fPh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.53.1.0/24
188.53.4.0/22
188.53.11.0/24
188.53.19.0/24
188.53.24.0/24
188.53.29.0/24
188.53.32.0/22
188.53.111.0/24
188.53.116.0/24
188.53.121.0/24
188.53.125.0/24
188.53.202.0/24
188.53.207.0/24
188.53.212.0/24
188.53.220.0/24
188.53.225.0/24
188.53.230.0/24
188.55.13.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:d3:24:b6:7f:64:32:33:e1:4c:fe:e6:95:df:3b:28:fb:fb:
7c:dc:76:6a:95:ff:ec:d1:69:63:2a:b0:a3:8e:70:3f:97:9e:
c9:4d:7f:bd:4f:17:36:f5:1f:93:d2:0a:ec:33:fb:ca:49:e8:
14:8e:23:b1:0d:6e:28:54:87:57:53:93:07:6c:43:40:26:b9:
b9:5e:cd:e2:b7:0a:c5:22:e6:c1:de:bf:62:7f:ae:62:67:c1:
0c:d0:02:a0:35:b7:68:60:4b:0e:10:b6:fe:5d:b5:e0:d8:ce:
7f:1f:d9:dc:10:a7:e8:b7:ce:ff:b6:c8:09:57:ba:a4:b5:f1:
e5:26:90:99:a6:22:71:d9:d6:70:49:fd:db:77:b2:6d:f0:8f:
9b:11:e2:a0:7c:c4:df:3c:a1:1f:23:e3:00:58:ac:f5:ca:03:
cc:94:56:a5:a2:03:60:76:49:10:81:e7:64:8e:12:6f:cc:d2:
f7:4f:19:89:61:08:de:d4:4d:78:32:4a:9d:d3:3b:18:85:07:
42:a8:d4:7f:16:1c:76:05:a8:26:b4:2d:ff:19:87:8a:73:71:
d8:5b:c6:6b:a1:3c:7f:d7:89:47:53:03:96:b2:8b:1a:4b:7b:
bd:0d:48:d0:63:b2:d1:a7:71:67:5a:e9:9c:55:a1:0c:4e:73:
ae:0e:35:4e
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAYdlrrp+2ToavLSzloAqDKahMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMWJmNmEzMTlkYTI0ODk4MTZhZWRiYTFiNGZkMGNjN2Rk
ZjNlMWUwHhcNMjMwNDA5MTEwMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTU2MjRmMzZlYmRjN2UwNDE3YTk0Mjc5MjNkOGExYmY2M2M2Yzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmAa+/ZpaQ/k9WsZvafsWJ0kWG4ef
6kQUT0TjkT3tquqUPGsULD0yLMDrHjmCneHDTEXLrWI1jN3C211ytUTzUlWA5Y7r
vAglvxUNpzP0MeutfLZQFyQ67sXhyijwhSYeLClWNidLHFbYY1VISdGkyU7fFz1Z
n9eZ3aZA+Oey4vY3UfOEWXyNsLsPuvmUXH/L7AfH3RKLfa5UUjF/c2Qc7SyM2pzc
DQEHMeT6JdLL4zHzAdFIE6U9/J71lRKBUA/QaC6bgd+pI8UEWrXCrLqE9w1M75WG
WPP1CLUqwVxrFiA2EbUKBkOMTa2PksNJX0JezBS7fcy2knqCXs5cpCaKvwIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFH5WJPNuvcfgQXqUJ5I9ihv2PGyIMB8GA1UdIwQY
MBaAFF4b9qMZ2iSJgWrtuhtP0Mx93z4eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGh2Mm94bmFKSW1CYXUyNkcwX1F6SDNmUGg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84OGZkZDEtOGI3Yi00MTAxLWFjNjYt
YjU5MDk1N2Q5NDE1LzEvZmxZazgyNjl4LUJCZXBRbmtqMktHX1k4YklnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84OGZkZDEtOGI3Yi00MTAxLWFjNjYtYjU5MDk1N2Q5NDE1
LzEvWGh2Mm94bmFKSW1CYXUyNkcwX1F6SDNmUGg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEALw1AQME
Arw1BAMEALw1CwMEALw1EwMEALw1GAMEALw1HQMEArw1IAMEALw1bwMEALw1dAME
ALw1eQMEALw1fQMEALw1ygMEALw1zwMEALw11AMEALw13AMEALw14QMEALw15gME
ALw3DTANBgkqhkiG9w0BAQsFAAOCAQEAbdMktn9kMjPhTP7mld87KPv7fNx2apX/
7NFpYyqwo45wP5eeyU1/vU8XNvUfk9IK7DP7yknoFI4jsQ1uKFSHV1OTB2xDQCa5
uV7N4rcKxSLmwd6/Yn+uYmfBDNACoDW3aGBLDhC2/l214NjOfx/Z3BCn6LfO/7bI
CVe6pLXx5SaQmaYicdnWcEn923eybfCPmxHioHzE3zyhHyPjAFis9coDzJRWpaID
YHZJEIHnZI4Sb8zS908ZiWEI3tRNeDJKndM7GIUHQqjUfxYcdgWoJrQt/xmHinNx
2FvGa6E8f9eJR1MDlrKLGkt7vQ1I0GOy0adxZ1rpnFWhDE5zrg41Tg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:10 2024 by rpki-client on console-fra.rpki-client.org