Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/kEmXd6Km7sAdp47_IatFl0oMUlI.roa
File: kEmXd6Km7sAdp47_IatFl0oMUlI.roa (raw, json)
Hash identifier: O43hQR4y3pshTbt3p03lHgLz0pJNz56P5myZWl8d5yA=
Subject key identifier: 90:49:97:77:A2:A6:EE:C0:1D:A7:8E:FF:21:AB:45:97:4A:0C:52:52
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 01856CB86733FA4AA240D4EF4DA1115C5CB9
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/kEmXd6Km7sAdp47_IatFl0oMUlI.roa
Signing time: Sun 01 Jan 2023 09:45:02 +0000
ROA not before: Sun 01 Jan 2023 09:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34272
IP address blocks: 193.110.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:67:33:fa:4a:a2:40:d4:ef:4d:a1:11:5c:5c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Jan 1 09:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90499777a2a6eec01da78eff21ab45974a0c5252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:27:ba:af:9f:68:53:9e:ea:5f:88:00:74:79:
f7:a8:cd:df:8e:34:5b:e7:cf:17:09:40:3d:cc:8b:
63:cd:6b:45:e6:a6:28:09:ee:74:5d:1c:66:41:bb:
4c:0b:0f:b0:4e:ef:e6:2c:3d:51:95:5b:88:09:10:
26:bd:95:51:8d:c8:67:72:fc:61:c8:08:5a:28:9f:
62:78:8e:03:61:f2:f3:62:56:b6:44:c9:ad:56:b8:
27:35:51:64:9f:cd:0a:c6:e6:7c:48:cd:01:ea:ce:
ec:12:d1:6b:e7:0c:25:48:43:2c:da:d2:04:5e:80:
7e:08:8d:e5:69:b8:d7:8b:67:8d:47:03:38:b1:47:
bf:7e:bf:7f:a0:4a:98:88:83:ba:38:fc:0f:da:f9:
c0:a9:4d:e0:47:47:c3:f3:87:a5:c6:36:3d:70:9d:
ae:df:79:29:3a:6b:77:1f:c9:a1:1a:25:83:34:71:
c9:e9:fe:0a:40:0a:60:fa:f7:c8:bb:ce:98:74:0e:
b2:7f:9f:5d:f1:15:b1:17:fa:a7:27:9e:df:bb:68:
cd:08:98:26:95:86:b5:c3:42:21:fd:91:f0:b4:77:
08:3f:8b:d2:3c:13:b3:f0:fb:c2:b9:cb:31:3b:bc:
bb:67:23:2e:38:95:31:d1:e1:b1:59:ba:03:9b:96:
af:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:49:97:77:A2:A6:EE:C0:1D:A7:8E:FF:21:AB:45:97:4A:0C:52:52
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/kEmXd6Km7sAdp47_IatFl0oMUlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.132.0/24
Signature Algorithm: sha256WithRSAEncryption
06:92:36:77:ec:b6:2e:de:6b:85:8a:5a:ec:6d:18:72:89:08:
42:49:db:c5:af:5d:48:48:0a:9b:54:f5:82:80:bc:99:81:c1:
64:f2:77:26:43:32:26:0d:4c:c7:fe:f1:61:20:65:75:fa:c5:
dd:58:43:f8:f7:07:07:d5:a1:88:c0:9a:ec:d0:0a:29:9e:cf:
c3:32:0f:af:c0:16:93:d1:b5:bf:a4:da:f3:5b:89:df:61:c5:
9d:af:44:7d:cc:d1:e7:be:0f:d0:6b:78:26:e4:c3:40:79:8e:
f3:9e:c7:bd:00:dd:fa:85:ee:88:7e:4f:51:c8:99:05:62:83:
dd:1e:40:5e:a9:d2:7f:87:61:f6:c7:16:fd:95:04:dc:ce:76:
f9:e4:b5:41:b9:ef:4e:8a:be:ad:43:69:22:7a:86:68:cf:58:
ee:4f:4e:75:53:b2:e0:97:b3:9d:aa:8b:f4:b7:89:92:91:c8:
72:1a:b9:3b:89:bc:51:c6:b5:51:cd:2f:7e:0f:fd:43:4a:4a:
11:52:a2:91:10:e9:dd:14:36:60:19:55:20:59:5d:87:1c:cf:
f5:8e:52:4d:ae:96:ee:16:c3:ad:2a:5c:99:d1:4b:15:88:80:
b7:d2:af:00:0c:e5:89:fb:87:c9:06:d4:73:f3:32:9f:71:77:
27:82:88:d1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuGcz+kqiQNTvTaERXFy5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOTQ5ZDJiZDY0ZWUxN2VmNWQ0N2Y5NjNlM2Q1ZDdhOTgy
YjEyYWYwHhcNMjMwMTAxMDk0NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDQ5OTc3N2EyYTZlZWMwMWRhNzhlZmYyMWFiNDU5NzRhMGM1MjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCe6r59oU57qX4gAdHn3qM3fjjRb
588XCUA9zItjzWtF5qYoCe50XRxmQbtMCw+wTu/mLD1RlVuICRAmvZVRjchncvxh
yAhaKJ9ieI4DYfLzYla2RMmtVrgnNVFkn80KxuZ8SM0B6s7sEtFr5wwlSEMs2tIE
XoB+CI3labjXi2eNRwM4sUe/fr9/oEqYiIO6OPwP2vnAqU3gR0fD84elxjY9cJ2u
33kpOmt3H8mhGiWDNHHJ6f4KQApg+vfIu86YdA6yf59d8RWxF/qnJ57fu2jNCJgm
lYa1w0Ih/ZHwtHcIP4vSPBOz8PvCucsxO7y7ZyMuOJUx0eGxWboDm5avgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJBJl3eipu7AHaeO/yGrRZdKDFJSMB8GA1UdIwQY
MBaAFGyUnSvWTuF+9dR/lj49XXqYKxKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEt
MjMyZjQ3MDM0OTFmLzEva0VtWGQ2S203c0FkcDQ3X0lhdEZsMG9NVWxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEtMjMyZjQ3MDM0OTFm
LzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW6EMA0G
CSqGSIb3DQEBCwUAA4IBAQAGkjZ37LYu3muFilrsbRhyiQhCSdvFr11ISAqbVPWC
gLyZgcFk8ncmQzImDUzH/vFhIGV1+sXdWEP49wcH1aGIwJrs0Aopns/DMg+vwBaT
0bW/pNrzW4nfYcWdr0R9zNHnvg/Qa3gm5MNAeY7znse9AN36he6Ifk9RyJkFYoPd
HkBeqdJ/h2H2xxb9lQTcznb55LVBue9Oir6tQ2kieoZoz1juT051U7Lgl7Odqov0
t4mSkchyGrk7ibxRxrVRzS9+D/1DSkoRUqKREOndFDZgGVUgWV2HHM/1jlJNrpbu
FsOtKlyZ0UsViIC30q8ADOWJ+4fJBtRz8zKfcXcngojR
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:58 2024 by rpki-client on console-ams.rpki-client.org