Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/03dc6e-8524-45d7-acc5-e659fde05289/1/WJngdtv2O1CKoVCmBxn2JwDcg2M.roa
File: WJngdtv2O1CKoVCmBxn2JwDcg2M.roa (raw, json)
Hash identifier: 0R0VqQ2RJY6oFvAFgOLTpbL1R47r+t/Q1j0TsW82Q0E=
Subject key identifier: 58:99:E0:76:DB:F6:3B:50:8A:A1:50:A6:07:19:F6:27:00:DC:83:63
Certificate issuer: /CN=3414a06dac854dbee60984588dec7b3284b5aa50
Certificate serial: 018C8683AF6F4330AA351729CAC3867A8F0F
Authority key identifier: 34:14:A0:6D:AC:85:4D:BE:E6:09:84:58:8D:EC:7B:32:84:B5:AA:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NBSgbayFTb7mCYRYjex7MoS1qlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/03dc6e-8524-45d7-acc5-e659fde05289/1/WJngdtv2O1CKoVCmBxn2JwDcg2M.roa
Signing time: Wed 20 Dec 2023 09:17:06 +0000
ROA not before: Wed 20 Dec 2023 09:17:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20853
IP address blocks: 193.104.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:83:af:6f:43:30:aa:35:17:29:ca:c3:86:7a:8f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3414a06dac854dbee60984588dec7b3284b5aa50
Validity
Not Before: Dec 20 09:17:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5899e076dbf63b508aa150a60719f62700dc8363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cc:d9:17:ad:58:7a:49:9e:8b:63:a5:8e:3d:
6a:29:16:c5:88:1c:4c:3c:92:7e:68:de:81:94:38:
fd:8a:88:4d:2f:2f:60:55:69:f5:89:5b:70:b1:8a:
f4:f5:01:ba:2d:4c:4d:7e:56:92:fd:09:db:e2:29:
a7:84:0f:b9:f7:42:78:a7:d4:d2:62:a5:e8:f4:50:
af:ff:a8:68:16:69:18:63:51:53:37:70:3c:6b:72:
e3:9e:32:2f:26:7d:7c:78:63:e6:2f:a4:13:30:c9:
f4:c2:81:46:61:d6:5c:c1:83:9c:bf:60:50:81:f8:
e6:a9:bc:a9:dc:71:a5:10:74:9f:57:51:db:f5:7a:
20:6f:5b:d1:25:11:5a:bf:f1:34:ea:f6:b4:e6:a1:
90:58:d4:b8:48:14:95:79:9f:53:6e:60:0e:e8:16:
c7:e7:f5:16:35:a5:5d:3d:0c:8e:66:20:f7:9c:c4:
86:c6:62:96:84:98:73:67:61:c3:42:11:ef:91:3b:
65:61:a1:d2:db:ac:50:46:1b:9a:af:41:ef:6a:3f:
bf:f4:85:6f:e2:80:b9:e3:c3:eb:a3:73:d4:16:57:
6c:d1:6a:35:8e:0f:e4:ca:a1:8d:f8:f5:75:ac:b5:
ec:49:dd:40:40:ab:e1:f1:ab:fa:07:da:42:46:4f:
3b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:99:E0:76:DB:F6:3B:50:8A:A1:50:A6:07:19:F6:27:00:DC:83:63
X509v3 Authority Key Identifier:
keyid:34:14:A0:6D:AC:85:4D:BE:E6:09:84:58:8D:EC:7B:32:84:B5:AA:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NBSgbayFTb7mCYRYjex7MoS1qlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/03dc6e-8524-45d7-acc5-e659fde05289/1/WJngdtv2O1CKoVCmBxn2JwDcg2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/03dc6e-8524-45d7-acc5-e659fde05289/1/NBSgbayFTb7mCYRYjex7MoS1qlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.99.0/24
Signature Algorithm: sha256WithRSAEncryption
63:34:a5:16:ac:19:a7:4b:16:c0:59:e4:e8:5b:15:53:3f:c4:
6e:14:86:32:df:cf:d7:0a:a4:32:46:f4:14:79:73:53:52:22:
fe:47:52:d0:5c:78:bc:43:3e:a5:16:cb:6e:da:42:8f:37:47:
ed:de:d8:97:eb:8a:51:81:41:6e:1c:82:94:9d:a8:88:13:5e:
16:be:18:c7:e6:58:89:df:84:c5:b5:94:b1:be:53:15:fb:c9:
cb:07:75:0b:83:54:df:ab:d4:14:ad:be:04:85:f3:a2:6d:04:
4d:bb:3b:00:d0:b4:43:52:d6:8d:02:6c:5f:9e:30:74:2c:1f:
7b:c1:1d:fb:f0:c8:f6:bd:9b:f0:5b:77:1f:d3:9e:2b:4f:1f:
c4:bb:cc:48:32:16:64:78:dc:55:f9:4c:12:b9:aa:dc:8b:e8:
82:ed:40:b1:dd:05:ff:59:b8:8d:30:d0:21:2c:1b:f8:ef:6d:
a1:89:b9:5b:93:b8:7c:ef:58:22:54:4b:fd:d9:d8:36:ff:9a:
d9:eb:ed:33:e6:b7:4e:09:90:72:3c:94:33:5a:57:1b:10:a5:
81:0b:97:ae:c5:3d:31:5b:55:8b:07:c1:2d:27:35:88:ce:fb:
eb:53:e8:b3:91:25:00:57:77:fc:7e:b1:76:7a:9e:25:81:a7:
a5:0e:e0:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyGg69vQzCqNRcpysOGeo8PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MTRhMDZkYWM4NTRkYmVlNjA5ODQ1ODhkZWM3YjMyODRi
NWFhNTAwHhcNMjMxMjIwMDkxNzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODk5ZTA3NmRiZjYzYjUwOGFhMTUwYTYwNzE5ZjYyNzAwZGM4MzYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjszZF61Yekmei2Oljj1qKRbFiBxM
PJJ+aN6BlDj9iohNLy9gVWn1iVtwsYr09QG6LUxNflaS/Qnb4imnhA+590J4p9TS
YqXo9FCv/6hoFmkYY1FTN3A8a3LjnjIvJn18eGPmL6QTMMn0woFGYdZcwYOcv2BQ
gfjmqbyp3HGlEHSfV1Hb9Xogb1vRJRFav/E06va05qGQWNS4SBSVeZ9TbmAO6BbH
5/UWNaVdPQyOZiD3nMSGxmKWhJhzZ2HDQhHvkTtlYaHS26xQRhuar0Hvaj+/9IVv
4oC548Pro3PUFlds0Wo1jg/kyqGN+PV1rLXsSd1AQKvh8av6B9pCRk872QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFiZ4Hbb9jtQiqFQpgcZ9icA3INjMB8GA1UdIwQY
MBaAFDQUoG2shU2+5gmEWI3sezKEtapQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkJTZ2JheUZUYjdtQ1lSWWpleDdNb1MxcWxBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8wM2RjNmUtODUyNC00NWQ3LWFjYzUt
ZTY1OWZkZTA1Mjg5LzEvV0puZ2R0djJPMUNLb1ZDbUJ4bjJKd0RjZzJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8wM2RjNmUtODUyNC00NWQ3LWFjYzUtZTY1OWZkZTA1Mjg5
LzEvTkJTZ2JheUZUYjdtQ1lSWWpleDdNb1MxcWxBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWhjMA0G
CSqGSIb3DQEBCwUAA4IBAQBjNKUWrBmnSxbAWeToWxVTP8RuFIYy38/XCqQyRvQU
eXNTUiL+R1LQXHi8Qz6lFstu2kKPN0ft3tiX64pRgUFuHIKUnaiIE14WvhjH5liJ
34TFtZSxvlMV+8nLB3ULg1Tfq9QUrb4EhfOibQRNuzsA0LRDUtaNAmxfnjB0LB97
wR378Mj2vZvwW3cf054rTx/Eu8xIMhZkeNxV+UwSuarci+iC7UCx3QX/WbiNMNAh
LBv4722hiblbk7h871giVEv92dg2/5rZ6+0z5rdOCZByPJQzWlcbEKWBC5euxT0x
W1WLB8EtJzWIzvvrU+izkSUAV3f8frF2ep4lgaelDuDF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:26 2024 by rpki-client on console-ams.rpki-client.org