Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/K17vViqrDV1YH_L-3ruX0N4FJrs.roa
File: K17vViqrDV1YH_L-3ruX0N4FJrs.roa (raw, json)
Hash identifier: s2yiKe+tLyDTgkMRCy1oTLo1ILCdgbfn2CplsWWZWrA=
Subject key identifier: 2B:5E:EF:56:2A:AB:0D:5D:58:1F:F2:FE:DE:BB:97:D0:DE:05:26:BB
Certificate issuer: /CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Certificate serial: 01856D9D193568A38BD1D2838511D74DF253
Authority key identifier: F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/K17vViqrDV1YH_L-3ruX0N4FJrs.roa
Signing time: Sun 01 Jan 2023 13:54:50 +0000
ROA not before: Sun 01 Jan 2023 13:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 193.42.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:19:35:68:a3:8b:d1:d2:83:85:11:d7:4d:f2:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f75d8b52815f3f2613e948992ec9fe660f6949b4
Validity
Not Before: Jan 1 13:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b5eef562aab0d5d581ff2fedebb97d0de0526bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8e:b6:44:5b:90:a3:e5:a7:49:3d:84:25:cc:
f7:cf:a1:7f:dd:97:f0:63:e0:9c:ff:01:51:74:90:
a7:5a:b0:dc:68:40:4f:f6:01:0c:b3:72:a4:6a:f4:
a7:0e:e3:c6:b2:f8:3b:40:68:50:f9:5c:6d:0c:64:
44:a1:13:a3:8d:82:89:57:b9:b0:e7:d3:13:65:8f:
c8:5c:e8:82:50:a1:1f:97:68:8e:ee:32:9e:3c:6c:
c2:bf:88:01:0c:21:ea:ba:b4:fb:df:de:78:d0:30:
d1:a1:03:a4:71:66:96:2c:e4:53:c9:13:9a:70:ff:
59:b1:16:8d:ad:d1:e4:4c:8b:1f:8b:63:74:52:59:
5c:fc:14:0d:15:ab:da:fb:61:87:40:ab:bf:41:d1:
79:f8:06:f3:58:dc:81:f7:96:d3:b6:4e:b8:06:3c:
a0:e6:b3:29:a8:a3:10:bf:11:2c:02:30:c9:4b:fb:
f8:75:40:14:eb:af:cd:58:2c:7c:b0:3c:c1:e6:4c:
d1:5e:b3:5c:7f:62:b1:a2:c1:43:58:3d:36:14:0d:
91:95:5b:48:2f:3c:b8:31:4a:c2:67:bf:ab:51:09:
56:be:1a:bd:da:f7:56:f4:c4:64:25:71:ba:1c:f6:
45:aa:1b:a7:92:67:f1:54:e7:d0:b4:fd:25:d8:4f:
91:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5E:EF:56:2A:AB:0D:5D:58:1F:F2:FE:DE:BB:97:D0:DE:05:26:BB
X509v3 Authority Key Identifier:
keyid:F7:5D:8B:52:81:5F:3F:26:13:E9:48:99:2E:C9:FE:66:0F:69:49:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/912LUoFfPyYT6UiZLsn-Zg9pSbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/K17vViqrDV1YH_L-3ruX0N4FJrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9514ed-276e-4aba-897e-a4410e10b6f5/1/912LUoFfPyYT6UiZLsn-Zg9pSbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.119.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b5:44:68:20:a3:38:1b:1b:54:a0:83:d5:7a:53:41:c5:f8:
f6:45:3a:eb:67:ee:4e:9f:11:51:72:97:07:7f:2c:00:c5:bc:
96:0d:85:62:b0:7f:37:b0:97:55:c0:c6:9f:c9:e5:6b:6a:71:
83:af:e3:51:08:25:1e:b2:13:16:01:b3:a4:ca:49:2b:c7:88:
7b:82:63:90:e1:6c:f2:a2:47:ca:af:e9:ee:6f:98:2b:88:3d:
62:e4:46:95:10:fd:6f:81:b7:62:84:c8:04:f2:a9:0b:e0:87:
27:f5:23:fb:ee:a1:aa:cc:18:b8:fe:08:49:75:17:d4:9b:9e:
1e:53:db:73:3d:44:dc:90:f3:a1:c4:38:c0:65:b9:1a:10:d2:
a7:9e:88:53:16:39:e0:49:86:2d:9d:8a:09:a7:77:65:66:fc:
c3:45:ec:bf:b4:9b:4a:21:01:3e:7f:1a:77:35:64:b3:d8:6d:
8b:eb:5d:fe:51:52:6a:83:4f:36:72:92:05:16:c3:73:cf:0d:
c7:75:ce:b2:35:fe:f0:61:c0:fa:8a:30:51:c1:70:ba:cb:7a:
be:56:3e:51:c6:cb:69:4b:02:d0:02:a0:67:b0:02:1c:78:e4:
97:0d:c2:2f:f6:3c:1b:88:1b:60:34:bd:14:33:34:ca:d9:7c:
74:56:af:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtnRk1aKOL0dKDhRHXTfJTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NWQ4YjUyODE1ZjNmMjYxM2U5NDg5OTJlYzlmZTY2MGY2
OTQ5YjQwHhcNMjMwMTAxMTM1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjVlZWY1NjJhYWIwZDVkNTgxZmYyZmVkZWJiOTdkMGRlMDUyNmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1I62RFuQo+WnST2EJcz3z6F/3Zfw
Y+Cc/wFRdJCnWrDcaEBP9gEMs3KkavSnDuPGsvg7QGhQ+VxtDGREoROjjYKJV7mw
59MTZY/IXOiCUKEfl2iO7jKePGzCv4gBDCHqurT739540DDRoQOkcWaWLORTyROa
cP9ZsRaNrdHkTIsfi2N0Ullc/BQNFava+2GHQKu/QdF5+AbzWNyB95bTtk64Bjyg
5rMpqKMQvxEsAjDJS/v4dUAU66/NWCx8sDzB5kzRXrNcf2KxosFDWD02FA2RlVtI
Lzy4MUrCZ7+rUQlWvhq92vdW9MRkJXG6HPZFqhunkmfxVOfQtP0l2E+RWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCte71Yqqw1dWB/y/t67l9DeBSa7MB8GA1UdIwQY
MBaAFPddi1KBXz8mE+lImS7J/mYPaUm0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTEyTFVvRmZQeVlUNlVpWkxzbi1aZzlwU2JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC85NTE0ZWQtMjc2ZS00YWJhLTg5N2Ut
YTQ0MTBlMTBiNmY1LzEvSzE3dlZpcXJEVjFZSF9MLTNydVgwTjRGSnJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC85NTE0ZWQtMjc2ZS00YWJhLTg5N2UtYTQ0MTBlMTBiNmY1
LzEvOTEyTFVvRmZQeVlUNlVpWkxzbi1aZzlwU2JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSp3MA0G
CSqGSIb3DQEBCwUAA4IBAQCQtURoIKM4GxtUoIPVelNBxfj2RTrrZ+5OnxFRcpcH
fywAxbyWDYVisH83sJdVwMafyeVranGDr+NRCCUeshMWAbOkykkrx4h7gmOQ4Wzy
okfKr+nub5griD1i5EaVEP1vgbdihMgE8qkL4Icn9SP77qGqzBi4/ghJdRfUm54e
U9tzPUTckPOhxDjAZbkaENKnnohTFjngSYYtnYoJp3dlZvzDRey/tJtKIQE+fxp3
NWSz2G2L613+UVJqg082cpIFFsNzzw3Hdc6yNf7wYcD6ijBRwXC6y3q+Vj5Rxstp
SwLQAqBnsAIceOSXDcIv9jwbiBtgNL0UMzTK2Xx0Vq+d
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:59 2024 by rpki-client on console-fra.rpki-client.org