Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/IMcBex0LqGM6-XMwApgulLfGl1I.roa
File: IMcBex0LqGM6-XMwApgulLfGl1I.roa (raw, json)
Hash identifier: 4/BOvqXSJdf7SbNvK2/lWBZ80807CDRK5/LZOJUgE78=
Subject key identifier: 20:C7:01:7B:1D:0B:A8:63:3A:F9:73:30:02:98:2E:94:B7:C6:97:52
Certificate issuer: /CN=a62a8c7a1f6a4c949e027b5369d97d7576e147f8
Certificate serial: 0185737AAC333A9F166F180DFC376C1EDF7B
Authority key identifier: A6:2A:8C:7A:1F:6A:4C:94:9E:02:7B:53:69:D9:7D:75:76:E1:47:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/piqMeh9qTJSeAntTadl9dXbhR_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/IMcBex0LqGM6-XMwApgulLfGl1I.roa
Signing time: Mon 02 Jan 2023 17:14:57 +0000
ROA not before: Mon 02 Jan 2023 17:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207199
IP address blocks: 193.8.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:ac:33:3a:9f:16:6f:18:0d:fc:37:6c:1e:df:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a62a8c7a1f6a4c949e027b5369d97d7576e147f8
Validity
Not Before: Jan 2 17:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20c7017b1d0ba8633af9733002982e94b7c69752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:13:57:8c:f7:12:b3:55:d5:b5:a8:88:84:a4:
f6:d8:66:af:76:04:73:75:7f:be:72:11:5f:3f:e5:
a8:41:95:8b:7c:15:30:7f:82:27:32:83:62:19:c1:
f7:71:d1:76:ee:71:42:43:0d:fa:36:75:08:36:b6:
34:c3:1e:bc:8a:90:f3:db:52:50:a5:11:00:4c:08:
ef:87:a1:05:0c:91:51:c1:5a:b5:6c:ce:12:27:fe:
99:7d:08:e8:78:23:17:ec:68:85:44:06:2c:49:a9:
6c:c8:8a:4b:82:67:84:f0:8c:25:ff:7c:8f:55:3e:
33:e7:46:cc:52:aa:5a:e9:79:f2:b7:e0:cf:2c:cc:
ce:a9:13:2a:f8:10:9a:63:9f:62:22:04:06:7f:e2:
de:5c:79:92:53:a3:de:62:fa:ba:50:cc:7a:9d:31:
77:5a:e8:76:8c:fe:2c:86:54:31:69:96:bd:9f:25:
5d:38:31:5b:17:e7:79:c9:07:2d:b6:35:58:78:75:
05:f6:8b:60:d4:76:bc:0c:0f:5c:f6:fd:a6:16:4e:
0a:e3:67:f0:f0:b7:46:2b:82:30:ca:a2:2d:c5:b5:
8c:0f:d1:24:bf:22:5c:a2:c2:6e:13:e9:b4:0e:d7:
6b:86:e9:99:7e:9a:2c:49:3a:03:75:47:f3:c1:af:
d2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C7:01:7B:1D:0B:A8:63:3A:F9:73:30:02:98:2E:94:B7:C6:97:52
X509v3 Authority Key Identifier:
keyid:A6:2A:8C:7A:1F:6A:4C:94:9E:02:7B:53:69:D9:7D:75:76:E1:47:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/piqMeh9qTJSeAntTadl9dXbhR_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/IMcBex0LqGM6-XMwApgulLfGl1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/piqMeh9qTJSeAntTadl9dXbhR_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.38.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:61:ea:94:3e:43:df:6f:31:86:0d:24:a3:7f:ee:92:29:9b:
dd:73:2b:2f:fe:3a:8f:b9:ec:9b:69:dd:74:e0:19:8e:03:31:
24:1d:d4:95:72:bd:70:b7:4f:ed:99:52:a0:59:05:9e:fb:7f:
5a:e4:de:18:c6:64:2a:7f:d6:69:9b:be:6d:fa:4f:b4:ee:fd:
ed:ee:7c:b0:77:08:93:37:34:e5:aa:58:ed:d1:5e:79:d8:cb:
84:a3:2f:23:d6:87:34:e8:61:9b:9c:45:17:6d:eb:e2:53:e3:
e4:f3:bb:86:b3:09:15:7a:83:9c:92:12:a3:7b:34:88:46:0f:
85:35:9d:12:24:5c:ba:0c:cd:5f:b9:20:90:3d:0b:f3:51:8d:
6c:23:4d:6f:d5:87:3f:62:76:d9:07:e6:a7:9f:1e:f8:6b:2b:
1c:59:7d:70:f0:ef:2c:4a:af:2c:00:bd:d1:1c:46:cb:49:07:
1c:f3:ce:fc:55:7c:77:be:73:cb:c0:3f:b9:2e:34:09:3a:ac:
2e:04:fe:36:2c:20:04:58:12:07:32:17:05:35:60:14:61:2a:
5e:39:bc:3c:ce:ad:4a:3d:06:8a:7b:a8:0e:60:ed:ff:4c:fd:
d6:f1:07:83:b3:c8:3a:3e:0f:81:dd:9b:7a:a4:d7:e8:29:10:
86:4b:31:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzeqwzOp8WbxgN/DdsHt97MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2MmE4YzdhMWY2YTRjOTQ5ZTAyN2I1MzY5ZDk3ZDc1NzZl
MTQ3ZjgwHhcNMjMwMTAyMTcxNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGM3MDE3YjFkMGJhODYzM2FmOTczMzAwMjk4MmU5NGI3YzY5NzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RNXjPcSs1XVtaiIhKT22GavdgRz
dX++chFfP+WoQZWLfBUwf4InMoNiGcH3cdF27nFCQw36NnUINrY0wx68ipDz21JQ
pREATAjvh6EFDJFRwVq1bM4SJ/6ZfQjoeCMX7GiFRAYsSalsyIpLgmeE8Iwl/3yP
VT4z50bMUqpa6Xnyt+DPLMzOqRMq+BCaY59iIgQGf+LeXHmSU6PeYvq6UMx6nTF3
Wuh2jP4shlQxaZa9nyVdODFbF+d5yQcttjVYeHUF9otg1Ha8DA9c9v2mFk4K42fw
8LdGK4IwyqItxbWMD9EkvyJcosJuE+m0DtdrhumZfposSToDdUfzwa/SGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCDHAXsdC6hjOvlzMAKYLpS3xpdSMB8GA1UdIwQY
MBaAFKYqjHofakyUngJ7U2nZfXV24Uf4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGlxTWVoOXFUSlNlQW50VGFkbDlkWGJoUl9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9mYzAyMmQtZjhlNS00YTZlLThiMWYt
NThjODVkNDMzNmJjLzEvSU1jQmV4MExxR002LVhNd0FwZ3VsTGZHbDFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS9mYzAyMmQtZjhlNS00YTZlLThiMWYtNThjODVkNDMzNmJj
LzEvcGlxTWVoOXFUSlNlQW50VGFkbDlkWGJoUl9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQgmMA0G
CSqGSIb3DQEBCwUAA4IBAQDNYeqUPkPfbzGGDSSjf+6SKZvdcysv/jqPueybad10
4BmOAzEkHdSVcr1wt0/tmVKgWQWe+39a5N4YxmQqf9Zpm75t+k+07v3t7nywdwiT
NzTlqljt0V552MuEoy8j1oc06GGbnEUXbeviU+Pk87uGswkVeoOckhKjezSIRg+F
NZ0SJFy6DM1fuSCQPQvzUY1sI01v1Yc/YnbZB+annx74ayscWX1w8O8sSq8sAL3R
HEbLSQcc8878VXx3vnPLwD+5LjQJOqwuBP42LCAEWBIHMhcFNWAUYSpeObw8zq1K
PQaKe6gOYO3/TP3W8QeDs8g6Pg+B3Zt6pNfoKRCGSzGB
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:03 2024 by rpki-client on console-ams.rpki-client.org