Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bd09e7-c40b-47a6-8a2e-0636753679b6/1/0_0Cled7GYZoIYxj5B0O2Zf2UWw.roa
File: 0_0Cled7GYZoIYxj5B0O2Zf2UWw.roa (raw, json)
Hash identifier: 0AUOYHnTjBa7HrFg9qqxtuqNceuu8bW04tZc0/d/v8Q=
Subject key identifier: D3:FD:02:95:E7:7B:19:86:68:21:8C:63:E4:1D:0E:D9:97:F6:51:6C
Certificate issuer: /CN=c5de32bb9cc99e115ddbaf6b7fa23051789f2f61
Certificate serial: 018A1C6FBF4EF6D9AD7ED6BB39245F4B3BB4
Authority key identifier: C5:DE:32:BB:9C:C9:9E:11:5D:DB:AF:6B:7F:A2:30:51:78:9F:2F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xd4yu5zJnhFd269rf6IwUXifL2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bd09e7-c40b-47a6-8a2e-0636753679b6/1/0_0Cled7GYZoIYxj5B0O2Zf2UWw.roa
Signing time: Tue 22 Aug 2023 08:50:00 +0000
ROA not before: Tue 22 Aug 2023 08:50:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 194.29.57.0/24 maxlen: 24
194.29.58.0/24 maxlen: 24
194.29.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 22:59:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:6f:bf:4e:f6:d9:ad:7e:d6:bb:39:24:5f:4b:3b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5de32bb9cc99e115ddbaf6b7fa23051789f2f61
Validity
Not Before: Aug 22 08:50:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3fd0295e77b198668218c63e41d0ed997f6516c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9c:47:9c:72:e0:c3:5e:30:dc:fa:2c:3b:76:
2d:d9:1a:15:31:c8:17:f0:16:a8:2f:c5:ee:d5:9a:
b3:af:97:bd:75:b2:6a:42:eb:82:5f:f7:3a:58:6f:
41:dd:d0:02:18:27:a4:46:25:0b:aa:9d:02:8f:db:
92:33:2f:17:81:e8:b1:81:62:75:65:bd:0d:66:17:
ef:b7:0a:09:b2:32:3d:70:e5:7e:ea:f1:00:ed:df:
ae:84:fe:a4:f3:6f:27:40:e1:b4:8d:51:10:ff:76:
66:e7:28:f0:ce:68:9a:c5:f4:c7:c3:45:93:d2:02:
d5:b9:a5:bc:96:ce:4e:85:b1:27:86:76:42:60:8d:
6d:20:ec:8e:ff:c3:f5:74:ea:b5:c0:74:b0:18:54:
ab:63:f6:f1:f9:ba:d2:7d:25:4c:f3:95:0e:4a:e8:
33:18:8b:c2:51:d7:5f:f6:0e:f0:b7:9c:4f:73:58:
50:27:38:27:11:e4:26:0c:85:df:eb:e7:8a:3f:03:
d0:b1:d9:c7:b5:ad:4a:d0:39:a1:ad:85:37:51:6e:
dd:87:20:a1:a5:f2:a0:19:1d:89:c4:85:f2:ae:12:
44:3e:0d:7f:39:34:fd:91:5a:2e:38:3c:4e:18:e8:
12:8d:e2:42:c8:55:de:7f:cf:0d:5f:c0:cf:48:c4:
dc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FD:02:95:E7:7B:19:86:68:21:8C:63:E4:1D:0E:D9:97:F6:51:6C
X509v3 Authority Key Identifier:
keyid:C5:DE:32:BB:9C:C9:9E:11:5D:DB:AF:6B:7F:A2:30:51:78:9F:2F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xd4yu5zJnhFd269rf6IwUXifL2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bd09e7-c40b-47a6-8a2e-0636753679b6/1/0_0Cled7GYZoIYxj5B0O2Zf2UWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bd09e7-c40b-47a6-8a2e-0636753679b6/1/xd4yu5zJnhFd269rf6IwUXifL2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.29.56.0-194.29.58.255
Signature Algorithm: sha256WithRSAEncryption
98:22:85:4c:83:20:4a:e2:e8:7f:3b:ee:2c:f0:79:98:77:4c:
94:b1:8f:cc:23:52:a1:ce:e9:8d:16:f0:cd:4e:dc:bf:ff:44:
e5:0c:49:c8:25:8e:f4:82:93:d0:e6:4e:94:a3:bc:01:1d:1c:
a5:45:22:91:99:cc:f4:c9:7b:93:b8:76:40:cf:58:41:f1:81:
4b:e3:4f:b7:5d:fe:1a:51:41:d8:1b:b3:2b:f0:ac:82:b1:7c:
3e:78:41:30:f5:0d:76:30:0b:45:c7:e4:c6:1c:93:a4:ab:50:
db:d4:c9:64:91:ef:45:90:b8:94:2b:97:a3:7e:5c:38:14:86:
96:b6:80:01:79:d2:0c:70:71:5e:b4:16:76:c4:ae:9c:b6:a5:
75:1e:6e:8d:09:d1:0d:e3:43:af:07:a3:c6:9c:24:7b:dc:36:
59:1f:58:0e:f9:d7:14:66:18:4a:20:fc:20:f8:6e:fb:08:ec:
a9:f4:56:83:a8:9e:21:31:a7:f9:5f:5b:7d:0c:3b:6f:56:8a:
6d:25:5d:c1:53:a4:90:47:a8:c8:11:65:06:6e:e9:46:ad:c9:
fd:99:a5:c2:d7:9d:93:bf:e7:29:7c:a0:2e:9f:9c:ba:6c:68:
1e:9c:43:66:9c:76:a5:af:fc:40:25:01:78:f5:62:e8:36:52:
6b:85:b4:79
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYocb79O9tmtfta7OSRfSzu0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZGUzMmJiOWNjOTllMTE1ZGRiYWY2YjdmYTIzMDUxNzg5
ZjJmNjEwHhcNMjMwODIyMDg1MDAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2ZkMDI5NWU3N2IxOTg2NjgyMThjNjNlNDFkMGVkOTk3ZjY1MTZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJxHnHLgw14w3PosO3Yt2RoVMcgX
8BaoL8Xu1Zqzr5e9dbJqQuuCX/c6WG9B3dACGCekRiULqp0Cj9uSMy8XgeixgWJ1
Zb0NZhfvtwoJsjI9cOV+6vEA7d+uhP6k828nQOG0jVEQ/3Zm5yjwzmiaxfTHw0WT
0gLVuaW8ls5OhbEnhnZCYI1tIOyO/8P1dOq1wHSwGFSrY/bx+brSfSVM85UOSugz
GIvCUddf9g7wt5xPc1hQJzgnEeQmDIXf6+eKPwPQsdnHta1K0DmhrYU3UW7dhyCh
pfKgGR2JxIXyrhJEPg1/OTT9kVouODxOGOgSjeJCyFXef88NX8DPSMTcSwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFNP9ApXnexmGaCGMY+QdDtmX9lFsMB8GA1UdIwQY
MBaAFMXeMrucyZ4RXduva3+iMFF4ny9hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGQ0eXU1ekpuaEZkMjY5cmY2SXdVWGlmTDJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9iZDA5ZTctYzQwYi00N2E2LThhMmUt
MDYzNjc1MzY3OWI2LzEvMF8wQ2xlZDdHWVpvSVl4ajVCME8yWmYyVVd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9iZDA5ZTctYzQwYi00N2E2LThhMmUtMDYzNjc1MzY3OWI2
LzEveGQ0eXU1ekpuaEZkMjY5cmY2SXdVWGlmTDJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAPCHTgD
BADCHTowDQYJKoZIhvcNAQELBQADggEBAJgihUyDIEri6H877izweZh3TJSxj8wj
UqHO6Y0W8M1O3L//ROUMScgljvSCk9DmTpSjvAEdHKVFIpGZzPTJe5O4dkDPWEHx
gUvjT7dd/hpRQdgbsyvwrIKxfD54QTD1DXYwC0XH5MYck6SrUNvUyWSR70WQuJQr
l6N+XDgUhpa2gAF50gxwcV60FnbErpy2pXUebo0J0Q3jQ68Ho8acJHvcNlkfWA75
1xRmGEog/CD4bvsI7Kn0VoOoniExp/lfW30MO29Wim0lXcFTpJBHqMgRZQZu6Uat
yf2ZpcLXnZO/5yl8oC6fnLpsaB6cQ2acdqWv/EAlAXj1Yug2UmuFtHk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:45 2024 by rpki-client on console-fra.rpki-client.org