Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/dLvwnaMOuWmoxU6XgHHZWKK6JiQ.roa
File: dLvwnaMOuWmoxU6XgHHZWKK6JiQ.roa (raw, json)
Hash identifier: AsZO0G/vRjCb90kpw8Skz0gHeZfYD0AEvNmgAUd4ZIk=
Subject key identifier: 74:BB:F0:9D:A3:0E:B9:69:A8:C5:4E:97:80:71:D9:58:A2:BA:26:24
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 018572C365D89533D5E8D5AD71319AAC613C
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/dLvwnaMOuWmoxU6XgHHZWKK6JiQ.roa
Signing time: Mon 02 Jan 2023 13:54:46 +0000
ROA not before: Mon 02 Jan 2023 13:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44381
IP address blocks: 193.160.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:65:d8:95:33:d5:e8:d5:ad:71:31:9a:ac:61:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Jan 2 13:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74bbf09da30eb969a8c54e978071d958a2ba2624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:63:57:50:63:15:4e:6c:63:82:e2:13:f1:20:
26:50:50:27:17:52:90:35:e8:56:76:b9:1a:37:16:
cf:03:2c:1d:09:83:d4:23:00:9d:ba:8e:6c:09:e7:
97:5f:77:82:3f:75:7f:56:3b:fb:3f:72:b4:2a:8b:
3d:5e:ac:f3:36:de:66:b8:8c:b1:28:bf:eb:17:14:
e3:1c:1d:9d:54:1a:27:c5:be:e6:9b:a0:a2:33:48:
b7:ac:5f:63:d0:64:0f:c8:39:de:88:52:37:39:a0:
36:45:d1:cf:29:54:86:5f:8e:c4:e3:79:65:e9:3d:
bb:be:80:eb:4a:48:d5:3b:e8:1d:3c:16:a0:be:0c:
a4:98:3a:0f:bc:37:e3:56:02:ab:15:5f:37:83:3f:
63:3f:38:b7:ab:6e:ac:58:71:01:2c:b3:00:66:ca:
08:b8:23:cf:67:47:f3:6d:37:ca:81:28:bb:27:b2:
b0:a7:3f:dd:93:44:39:b6:29:0c:8d:b8:44:e6:3a:
54:e5:f3:fa:50:a4:f3:7f:6f:1f:25:a5:a5:81:f3:
67:23:54:4a:07:1e:09:c3:85:d6:f4:fb:e3:da:c4:
66:31:d6:d4:39:1b:cb:6f:b3:fa:db:25:d8:2e:14:
19:ad:71:a8:78:b5:7d:d5:d7:2e:ad:8f:3a:17:10:
c7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BB:F0:9D:A3:0E:B9:69:A8:C5:4E:97:80:71:D9:58:A2:BA:26:24
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/dLvwnaMOuWmoxU6XgHHZWKK6JiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.138.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:95:74:37:fa:ee:7c:78:75:72:66:00:0b:4b:d5:9f:3d:32:
6c:f0:b6:70:32:fb:0d:ba:c4:55:4e:2a:41:8c:15:f2:87:50:
36:f6:ae:85:f9:d4:34:fa:fd:c2:ff:64:8e:38:70:59:8e:a0:
04:4a:11:bf:09:5e:29:56:4f:58:ba:ce:62:7a:8e:12:97:1e:
4e:f4:d4:25:01:c7:07:49:16:bb:b7:4b:b4:42:55:5d:18:a6:
55:42:4c:1c:b1:15:a8:ad:8a:f9:dc:0d:b5:1d:0e:eb:51:c3:
40:de:c4:29:d0:1f:8a:ca:ed:c3:07:0d:d1:5a:6a:6e:33:cc:
41:b3:1b:30:40:72:34:cc:3e:3d:58:5c:41:f5:ee:18:d5:5e:
25:81:a7:5d:a5:82:62:9b:32:74:a7:a2:ff:7d:58:d8:c5:c1:
19:71:c5:09:e5:0f:b2:85:ad:c2:bb:8b:75:67:9f:81:44:ed:
9a:1f:b0:38:81:17:13:08:f6:73:96:72:a6:bc:d5:24:8b:b3:
12:f8:0f:1b:46:79:32:64:32:38:15:3f:51:b2:21:f8:3a:98:
b2:3f:64:81:46:43:66:6c:ca:22:a2:82:c8:b1:df:43:97:4b:
fb:d7:dd:a2:41:cd:dd:5d:ea:33:db:2e:cb:a0:0e:59:04:d9:
a5:29:69:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyw2XYlTPV6NWtcTGarGE8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNjRkYWJkOWJjNDY0ODVmNmE5MTYzNmVkZTc1M2RhMzhj
OGYzNjQwHhcNMjMwMTAyMTM1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGJiZjA5ZGEzMGViOTY5YThjNTRlOTc4MDcxZDk1OGEyYmEyNjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGNXUGMVTmxjguIT8SAmUFAnF1KQ
NehWdrkaNxbPAywdCYPUIwCduo5sCeeXX3eCP3V/Vjv7P3K0Kos9XqzzNt5muIyx
KL/rFxTjHB2dVBonxb7mm6CiM0i3rF9j0GQPyDneiFI3OaA2RdHPKVSGX47E43ll
6T27voDrSkjVO+gdPBagvgykmDoPvDfjVgKrFV83gz9jPzi3q26sWHEBLLMAZsoI
uCPPZ0fzbTfKgSi7J7Kwpz/dk0Q5tikMjbhE5jpU5fP6UKTzf28fJaWlgfNnI1RK
Bx4Jw4XW9Pvj2sRmMdbUORvLb7P62yXYLhQZrXGoeLV91dcurY86FxDHwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHS78J2jDrlpqMVOl4Bx2ViiuiYkMB8GA1UdIwQY
MBaAFMpk2r2bxGSF9qkWNu3nU9o4yPNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yNDE4ODItYTQzNy00YWIzLWIzOGUt
NTAyOGMyNTliMjY3LzEvZEx2d25hTU91V21veFU2WGdISFpXS0s2SmlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8yNDE4ODItYTQzNy00YWIzLWIzOGUtNTAyOGMyNTliMjY3
LzEveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaCKMA0G
CSqGSIb3DQEBCwUAA4IBAQCclXQ3+u58eHVyZgALS9WfPTJs8LZwMvsNusRVTipB
jBXyh1A29q6F+dQ0+v3C/2SOOHBZjqAEShG/CV4pVk9Yus5ieo4Slx5O9NQlAccH
SRa7t0u0QlVdGKZVQkwcsRWorYr53A21HQ7rUcNA3sQp0B+Kyu3DBw3RWmpuM8xB
sxswQHI0zD49WFxB9e4Y1V4lgaddpYJimzJ0p6L/fVjYxcEZccUJ5Q+yha3Cu4t1
Z5+BRO2aH7A4gRcTCPZzlnKmvNUki7MS+A8bRnkyZDI4FT9RsiH4OpiyP2SBRkNm
bMoiooLIsd9Dl0v7192iQc3dXeoz2y7LoA5ZBNmlKWlV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org