Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/7oZNYdzkn0spMppm6KDGTzzd6Tg.roa
File: 7oZNYdzkn0spMppm6KDGTzzd6Tg.roa (raw, json)
Hash identifier: GQXOpN/WnK6U8z5jQdA5kWTZXY5Y9admgwmeFClGTSI=
Subject key identifier: EE:86:4D:61:DC:E4:9F:4B:29:32:9A:66:E8:A0:C6:4F:3C:DD:E9:38
Certificate issuer: /CN=8e303cc2af838789652771c345e07df3e80d544f
Certificate serial: 01856FC27AF6DE751EC5604C2B88D4E7EF5A
Authority key identifier: 8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/7oZNYdzkn0spMppm6KDGTzzd6Tg.roa
Signing time: Sun 01 Jan 2023 23:54:54 +0000
ROA not before: Sun 01 Jan 2023 23:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21155
IP address blocks: 193.186.36.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:7a:f6:de:75:1e:c5:60:4c:2b:88:d4:e7:ef:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e303cc2af838789652771c345e07df3e80d544f
Validity
Not Before: Jan 1 23:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee864d61dce49f4b29329a66e8a0c64f3cdde938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:65:aa:a0:bd:2a:f1:ae:16:7e:12:53:d2:
c0:1f:41:8c:75:19:37:9c:9b:4b:04:d5:7f:b6:53:
03:79:62:b2:44:54:61:ef:b3:72:08:dd:9e:a6:54:
9b:63:7c:86:8e:d1:f4:21:26:71:36:a0:2d:a6:9f:
6f:99:c9:de:ec:dd:f1:26:7b:27:69:31:5a:e5:9d:
c6:46:0a:a0:11:52:37:0e:25:d6:14:92:e1:eb:dd:
35:76:57:68:f5:f3:4b:4c:51:cc:19:7d:2c:c7:9d:
8d:1f:3a:aa:64:b0:17:5c:f7:7c:57:30:e2:c3:97:
9d:e0:b5:42:46:fe:0f:a3:b5:f6:ee:4c:1e:34:4b:
c7:71:ef:9a:fc:2b:a2:58:06:ed:f8:83:db:b6:10:
c6:08:8c:b9:e5:fd:9e:ac:0f:b9:dd:56:41:32:19:
d5:b1:13:b9:24:71:1d:f9:01:97:1d:95:da:cb:7a:
6b:e2:f1:fa:a6:70:a2:6d:bc:ae:55:30:49:8e:cb:
51:66:cc:78:da:9a:a3:07:a1:ca:e0:a9:37:07:8e:
dd:7a:23:6b:d3:33:7b:2f:c7:cd:32:46:1b:e0:3e:
07:20:cf:c0:0e:43:c1:98:2e:8c:59:11:85:e0:d9:
30:ed:80:b0:a1:f3:9d:0e:a7:75:c3:1a:81:e0:be:
65:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:86:4D:61:DC:E4:9F:4B:29:32:9A:66:E8:A0:C6:4F:3C:DD:E9:38
X509v3 Authority Key Identifier:
keyid:8E:30:3C:C2:AF:83:87:89:65:27:71:C3:45:E0:7D:F3:E8:0D:54:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjA8wq-Dh4llJ3HDReB98-gNVE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/7oZNYdzkn0spMppm6KDGTzzd6Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/9d1a4b-509a-4913-b937-d0adb11ded34/1/jjA8wq-Dh4llJ3HDReB98-gNVE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.36.0/23
Signature Algorithm: sha256WithRSAEncryption
03:f2:ee:28:c1:3c:82:d7:fa:05:e4:98:41:f6:c7:40:27:ba:
4f:83:a2:50:0f:7a:5a:6c:50:7e:dc:13:26:f5:94:42:37:c5:
61:70:9a:16:f2:59:e5:71:64:45:bb:91:c2:30:d9:61:2a:c3:
ed:ee:14:58:61:e2:de:50:79:17:69:d8:b4:08:09:f0:5a:c5:
3c:ce:d7:b8:3d:b8:cd:3d:4b:6f:c4:a3:c3:0b:4b:c8:4b:f1:
15:8a:d2:9b:1b:00:2d:21:53:dd:da:4f:26:0b:3b:53:24:10:
5f:99:46:f7:d3:c8:0f:2b:76:14:96:d6:3d:b1:ee:66:53:25:
bd:8b:98:e3:4a:a0:79:53:4f:fe:64:37:b2:d5:83:5f:eb:2b:
2f:20:45:95:34:0f:bb:ba:fd:1b:38:bb:c4:b6:4e:16:f4:b0:
6b:52:ed:84:12:f8:08:6c:96:67:e3:c2:aa:13:12:bc:83:d3:
44:b9:b0:73:73:12:ed:60:01:36:ec:0e:a8:7d:fa:7c:e7:12:
21:cd:b3:58:77:ea:bb:cc:c2:f6:f9:b9:7c:aa:d1:9e:ff:2f:
e2:18:08:70:37:29:5a:8e:f0:c8:2a:7c:ee:a2:44:04:4f:ed:
5c:98:6b:6e:10:ed:ae:af:55:5c:3b:6d:d8:84:09:d5:2d:a3:
d8:dc:64:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwnr23nUexWBMK4jU5+9aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMzAzY2MyYWY4Mzg3ODk2NTI3NzFjMzQ1ZTA3ZGYzZTgw
ZDU0NGYwHhcNMjMwMTAxMjM1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTg2NGQ2MWRjZTQ5ZjRiMjkzMjlhNjZlOGEwYzY0ZjNjZGRlOTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEZlqqC9KvGuFn4SU9LAH0GMdRk3
nJtLBNV/tlMDeWKyRFRh77NyCN2eplSbY3yGjtH0ISZxNqAtpp9vmcne7N3xJnsn
aTFa5Z3GRgqgEVI3DiXWFJLh6901dldo9fNLTFHMGX0sx52NHzqqZLAXXPd8VzDi
w5ed4LVCRv4Po7X27kweNEvHce+a/CuiWAbt+IPbthDGCIy55f2erA+53VZBMhnV
sRO5JHEd+QGXHZXay3pr4vH6pnCibbyuVTBJjstRZsx42pqjB6HK4Kk3B47deiNr
0zN7L8fNMkYb4D4HIM/ADkPBmC6MWRGF4Nkw7YCwofOdDqd1wxqB4L5lBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO6GTWHc5J9LKTKaZuigxk883ek4MB8GA1UdIwQY
MBaAFI4wPMKvg4eJZSdxw0XgffPoDVRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvampBOHdxLURoNGxsSjNIRFJlQjk4LWdOVkU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy85ZDFhNGItNTA5YS00OTEzLWI5Mzct
ZDBhZGIxMWRlZDM0LzEvN29aTllkemtuMHNwTXBwbTZLREdUenpkNlRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy85ZDFhNGItNTA5YS00OTEzLWI5MzctZDBhZGIxMWRlZDM0
LzEvampBOHdxLURoNGxsSjNIRFJlQjk4LWdOVkU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwbokMA0G
CSqGSIb3DQEBCwUAA4IBAQAD8u4owTyC1/oF5JhB9sdAJ7pPg6JQD3pabFB+3BMm
9ZRCN8VhcJoW8lnlcWRFu5HCMNlhKsPt7hRYYeLeUHkXadi0CAnwWsU8zte4PbjN
PUtvxKPDC0vIS/EVitKbGwAtIVPd2k8mCztTJBBfmUb308gPK3YUltY9se5mUyW9
i5jjSqB5U0/+ZDey1YNf6ysvIEWVNA+7uv0bOLvEtk4W9LBrUu2EEvgIbJZn48Kq
ExK8g9NEubBzcxLtYAE27A6offp85xIhzbNYd+q7zML2+bl8qtGe/y/iGAhwNyla
jvDIKnzuokQET+1cmGtuEO2ur1VcO23YhAnVLaPY3GQx
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:02 2024 by rpki-client on console-ams.rpki-client.org