Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/iwqibb2fqSO34XiQ8aiOFh4vvLU.roa
File: iwqibb2fqSO34XiQ8aiOFh4vvLU.roa (raw, json)
Hash identifier: mMT7OslcNP0HqQ+E6ufGF9PWesWt35ldEzCQa8u9bsc=
Subject key identifier: 8B:0A:A2:6D:BD:9F:A9:23:B7:E1:78:90:F1:A8:8E:16:1E:2F:BC:B5
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 018AFC39C134E5DF27DD8BC5035286E8400B
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/iwqibb2fqSO34XiQ8aiOFh4vvLU.roa
Signing time: Wed 04 Oct 2023 19:45:58 +0000
ROA not before: Wed 04 Oct 2023 19:45:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.135.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 19:52:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fc:39:c1:34:e5:df:27:dd:8b:c5:03:52:86:e8:40:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Oct 4 19:45:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b0aa26dbd9fa923b7e17890f1a88e161e2fbcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:46:b3:ae:4a:0f:2f:00:1e:a6:65:6d:ac:54:
61:e5:3e:87:95:3c:e9:cc:af:44:b4:1d:16:79:a5:
1f:57:3e:86:51:68:bc:5f:59:3b:5e:05:d7:21:4e:
c5:50:37:5a:a5:a5:ec:31:4f:f9:1b:14:b5:b0:9b:
60:e6:71:db:4d:6c:c2:2a:98:7a:ac:16:10:cd:53:
41:86:86:72:3c:9a:ca:94:fe:2a:1f:b9:e4:47:af:
9e:57:1f:4c:1a:00:30:88:5f:ac:02:08:7d:6d:98:
45:43:d9:18:84:cd:54:67:ea:14:7d:68:6a:f1:e2:
e7:e6:e6:b3:5f:17:9d:b5:14:74:a3:e9:6a:b3:83:
5b:59:4a:db:bb:69:d5:12:26:ed:e2:41:37:c5:af:
5a:d1:9c:72:5a:5c:69:ad:65:b2:76:d5:21:7b:2d:
e1:64:58:97:40:1a:c2:e1:d7:fb:05:ab:77:c1:e0:
b4:41:ec:9a:27:c2:3b:bc:2a:da:53:ac:2d:d0:36:
f1:7e:da:af:14:82:c7:92:8c:64:79:35:d9:2d:7f:
17:7c:09:3a:19:9e:9a:0b:2f:b4:01:6a:b3:b0:97:
28:77:55:23:e7:10:d8:a3:91:5c:19:f1:58:4c:1f:
b3:48:fa:85:ab:53:1e:cc:74:b5:e1:a2:00:99:33:
d7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0A:A2:6D:BD:9F:A9:23:B7:E1:78:90:F1:A8:8E:16:1E:2F:BC:B5
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/iwqibb2fqSO34XiQ8aiOFh4vvLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.101.0/24
Signature Algorithm: sha256WithRSAEncryption
44:f0:88:74:c5:77:47:c4:ff:74:94:42:1a:34:83:30:7b:16:
f5:3a:5f:bc:7d:d7:07:77:5f:d3:21:3d:d8:35:32:2d:4c:f9:
c1:c3:96:24:44:d4:75:ec:ed:ad:46:9e:d0:a3:5b:af:c7:2a:
08:d6:e6:40:40:4f:13:56:67:7e:d1:6a:8b:66:70:ec:87:de:
0e:15:c1:ac:fa:8f:77:d2:1c:25:0e:5a:d1:47:c5:91:0f:ab:
bc:97:d4:fb:93:05:21:6e:db:94:a1:7b:96:48:0d:82:f9:ba:
9d:bf:b4:c1:27:73:e8:38:cc:c2:26:53:3b:8e:24:3d:49:25:
bd:ae:98:32:68:ad:aa:c3:96:ad:5c:b5:4b:1e:5e:a2:98:61:
c0:79:6a:f4:9d:94:c5:03:5c:7c:44:7d:f2:a2:ae:c6:f8:df:
8c:91:da:99:f2:78:fb:8a:ab:0b:f8:83:3e:51:17:3e:59:8c:
5e:8a:e0:43:96:3b:d4:23:73:c9:1f:41:0c:66:9d:30:54:f6:
cd:f9:b1:9a:19:e4:e7:79:98:98:0e:91:4a:96:f4:b6:e9:d1:
42:d4:9a:fd:a7:6d:e2:30:94:ed:7b:38:de:7c:4a:f5:58:d3:
6b:61:f8:11:89:0e:99:e3:a0:cc:73:e0:ae:7b:e3:8c:b6:7e:
0d:79:f5:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr8OcE05d8n3YvFA1KG6EALMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4NjMzNTRhMTExYWY2ZDVlMWFkMTBkYTM4YWQ4MTQ0YjZi
ZTg2OGUwHhcNMjMxMDA0MTk0NTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjBhYTI2ZGJkOWZhOTIzYjdlMTc4OTBmMWE4OGUxNjFlMmZiY2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhUazrkoPLwAepmVtrFRh5T6HlTzp
zK9EtB0WeaUfVz6GUWi8X1k7XgXXIU7FUDdapaXsMU/5GxS1sJtg5nHbTWzCKph6
rBYQzVNBhoZyPJrKlP4qH7nkR6+eVx9MGgAwiF+sAgh9bZhFQ9kYhM1UZ+oUfWhq
8eLn5uazXxedtRR0o+lqs4NbWUrbu2nVEibt4kE3xa9a0ZxyWlxprWWydtUhey3h
ZFiXQBrC4df7Bat3weC0QeyaJ8I7vCraU6wt0DbxftqvFILHkoxkeTXZLX8XfAk6
GZ6aCy+0AWqzsJcod1Uj5xDYo5FcGfFYTB+zSPqFq1MezHS14aIAmTPXGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIsKom29n6kjt+F4kPGojhYeL7y1MB8GA1UdIwQY
MBaAFJhjNUoRGvbV4a0Q2jitgUS2voaOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUdNMVNoRWE5dFhoclJEYU9LMkJSTGEtaG80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iZWE4NDctYTc4My00ODlkLWFlNGIt
NTNmNTc1MDRlZjM1LzEvaXdxaWJiMmZxU08zNFhpUThhaU9GaDR2dkxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9iZWE4NDctYTc4My00ODlkLWFlNGItNTNmNTc1MDRlZjM1
LzEvbUdNMVNoRWE5dFhoclJEYU9LMkJSTGEtaG80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYdlMA0G
CSqGSIb3DQEBCwUAA4IBAQBE8Ih0xXdHxP90lEIaNIMwexb1Ol+8fdcHd1/TIT3Y
NTItTPnBw5YkRNR17O2tRp7Qo1uvxyoI1uZAQE8TVmd+0WqLZnDsh94OFcGs+o93
0hwlDlrRR8WRD6u8l9T7kwUhbtuUoXuWSA2C+bqdv7TBJ3PoOMzCJlM7jiQ9SSW9
rpgyaK2qw5atXLVLHl6imGHAeWr0nZTFA1x8RH3yoq7G+N+MkdqZ8nj7iqsL+IM+
URc+WYxeiuBDljvUI3PJH0EMZp0wVPbN+bGaGeTneZiYDpFKlvS26dFC1Jr9p23i
MJTtezjefEr1WNNrYfgRiQ6Z46DMc+Cue+OMtn4NefXi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:13 2024 by rpki-client on console-fra.rpki-client.org