Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/wq8m6morjDs2zGJjLYes00FHSH0.roa
File: wq8m6morjDs2zGJjLYes00FHSH0.roa (raw, json)
Hash identifier: jhFyhaG6ToU/m0G2X3lYuk6bg/59OszYR0VAWjEhJHE=
Subject key identifier: C2:AF:26:EA:6A:2B:8C:3B:36:CC:62:63:2D:87:AC:D3:41:47:48:7D
Certificate issuer: /CN=5e1bf6a319da2489816aedba1b4fd0cc7ddf3e1e
Certificate serial: 018765B09146E03FFF912A26113047B5C71C
Authority key identifier: 5E:1B:F6:A3:19:DA:24:89:81:6A:ED:BA:1B:4F:D0:CC:7D:DF:3E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xhv2oxnaJImBau26G0_QzH3fPh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/wq8m6morjDs2zGJjLYes00FHSH0.roa
Signing time: Sun 09 Apr 2023 11:04:42 +0000
ROA not before: Sun 09 Apr 2023 11:04:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39891
IP address blocks: 188.55.13.0/24 maxlen: 24
188.53.111.0/24 maxlen: 24
188.53.116.0/24 maxlen: 24
188.53.19.0/24 maxlen: 24
188.53.24.0/24 maxlen: 24
188.53.29.0/24 maxlen: 24
188.53.31.0/24 maxlen: 24
188.53.32.0/22 maxlen: 22
188.53.196.0/24 maxlen: 24
188.53.202.0/24 maxlen: 24
188.53.212.0/24 maxlen: 24
188.53.207.0/24 maxlen: 24
188.53.225.0/24 maxlen: 24
188.53.220.0/24 maxlen: 24
188.53.121.0/24 maxlen: 24
188.53.123.0/24 maxlen: 24
188.53.125.0/24 maxlen: 24
188.53.230.0/24 maxlen: 24
188.53.1.0/24 maxlen: 24
188.53.4.0/24 maxlen: 24
188.53.4.0/22 maxlen: 22
188.53.11.0/24 maxlen: 24
188.53.5.0/24 maxlen: 24
188.53.7.0/24 maxlen: 24
188.53.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:65:b0:91:46:e0:3f:ff:91:2a:26:11:30:47:b5:c7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e1bf6a319da2489816aedba1b4fd0cc7ddf3e1e
Validity
Not Before: Apr 9 11:04:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2af26ea6a2b8c3b36cc62632d87acd34147487d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e5:c0:9e:b4:38:e0:43:43:a5:2f:1c:18:80:
0f:36:ad:d2:69:4f:ec:f5:b9:de:23:b7:68:a5:25:
01:94:bc:cc:3c:24:c9:75:3d:6f:f4:bb:c4:a4:73:
4d:f4:2b:4e:f6:e1:96:ba:7a:2c:1a:00:b5:e4:83:
d2:e4:8a:29:09:07:9e:10:fb:c7:a0:12:53:d9:f7:
4b:3d:63:40:10:d9:7c:c2:1a:96:31:d9:83:ce:6d:
80:54:6e:12:b9:1e:7f:b3:4d:ad:eb:c2:1f:bf:8f:
a2:31:7b:86:5c:06:b2:de:5b:13:e7:d4:37:0a:38:
99:ee:ef:12:f4:0b:dc:5a:75:16:fe:d4:7c:a1:9d:
14:1a:46:b8:01:47:b7:fa:e9:16:71:47:11:d5:e5:
96:7f:ee:a1:6e:37:49:95:b0:5f:b1:0c:07:b8:0a:
3e:e2:14:ab:18:4d:fb:32:79:02:ea:20:89:53:45:
63:e6:1d:af:2b:c4:8c:fe:67:07:61:79:69:dc:2a:
22:22:5e:af:46:5b:07:60:0f:80:6c:05:75:f3:25:
8a:a7:6a:82:01:07:7b:ca:61:d6:ae:0c:de:47:52:
de:f8:ef:8d:08:11:69:4c:cf:52:00:0b:92:1c:03:
90:be:86:88:a1:5b:da:39:62:57:ae:30:dd:d5:4c:
10:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AF:26:EA:6A:2B:8C:3B:36:CC:62:63:2D:87:AC:D3:41:47:48:7D
X509v3 Authority Key Identifier:
keyid:5E:1B:F6:A3:19:DA:24:89:81:6A:ED:BA:1B:4F:D0:CC:7D:DF:3E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xhv2oxnaJImBau26G0_QzH3fPh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/wq8m6morjDs2zGJjLYes00FHSH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/88fdd1-8b7b-4101-ac66-b590957d9415/1/Xhv2oxnaJImBau26G0_QzH3fPh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.53.1.0/24
188.53.4.0/22
188.53.11.0/24
188.53.19.0/24
188.53.24.0/24
188.53.29.0/24
188.53.31.0-188.53.35.255
188.53.111.0/24
188.53.116.0/24
188.53.121.0/24
188.53.123.0/24
188.53.125.0/24
188.53.196.0/24
188.53.202.0/24
188.53.207.0/24
188.53.212.0/24
188.53.220.0/24
188.53.225.0/24
188.53.230.0/24
188.55.13.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:5a:ae:ad:90:86:c9:c7:a0:1f:02:ee:20:39:95:75:06:14:
07:f1:c4:9a:90:92:0e:0d:95:de:65:3f:6c:cc:4d:2e:9a:b4:
75:1b:38:aa:f6:08:bd:5f:9e:f3:bc:e0:6e:8f:b1:96:82:b9:
45:f6:a6:28:d9:a3:61:7a:45:ad:18:23:64:2f:ee:cc:1f:78:
37:6b:cd:07:c5:8f:78:e8:72:92:20:af:db:25:80:89:4a:4d:
ec:c1:c7:be:ef:17:c7:68:07:45:a3:61:c1:8d:1e:f8:30:a4:
1b:1a:0d:7b:2c:a3:47:2c:0c:68:1c:f3:60:85:0e:0c:2e:7e:
7a:a7:30:10:74:86:5e:6d:3e:59:1e:15:5d:1d:1a:21:14:8d:
c5:38:a2:23:79:27:cf:63:f0:1b:70:56:43:e3:71:5b:b8:ed:
fe:a2:0c:6e:d8:60:6e:3d:45:fd:b1:56:04:05:32:cb:e4:e2:
ba:79:c9:db:eb:6f:ff:f6:46:72:ef:46:74:9c:49:f4:fd:cf:
6c:6f:93:b1:f1:90:eb:03:dd:ae:b7:d2:1c:ba:bf:52:3a:28:
dd:62:33:d0:47:a5:c7:5c:9b:12:96:2e:15:39:d0:a1:01:f4:
cc:8f:9e:e4:53:77:4b:ff:bd:05:91:66:1c:3f:65:8f:48:09:
a1:72:ea:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:23 2023 by rpki-client on console-fra.rpki-client.org