Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/Xj7K8oOHc0dvlfXK3csI7-E4khA.roa
File: Xj7K8oOHc0dvlfXK3csI7-E4khA.roa (raw, json)
Hash identifier: dEJOk7YaIcxY+C00PPZiZjG9RoIybvPAirhGCJNbhj4=
Subject key identifier: 5E:3E:CA:F2:83:87:73:47:6F:95:F5:CA:DD:CB:08:EF:E1:38:92:10
Certificate issuer: /CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Certificate serial: 018572E7FCF8CF0D209EE5431A35BE2AC00B
Authority key identifier: BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/Xj7K8oOHc0dvlfXK3csI7-E4khA.roa
Signing time: Mon 02 Jan 2023 14:34:44 +0000
ROA not before: Mon 02 Jan 2023 14:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210104
IP address blocks: 193.105.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e7:fc:f8:cf:0d:20:9e:e5:43:1a:35:be:2a:c0:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Validity
Not Before: Jan 2 14:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e3ecaf2838773476f95f5caddcb08efe1389210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:89:bb:3f:52:b5:48:a4:37:95:42:75:48:
f4:ca:a5:82:ec:b2:c8:03:8d:5c:f0:17:c1:94:5a:
e6:f8:6e:7b:99:da:e7:46:74:24:26:38:ed:44:13:
60:9d:5f:1f:e2:f5:43:ac:9d:e2:5f:e7:87:18:26:
39:8f:17:c4:de:e4:aa:89:7b:82:a6:44:c5:0e:27:
fb:31:51:75:a9:c6:b8:80:a5:e5:4a:99:e5:bf:47:
cb:e8:b4:2c:02:3f:9c:b6:29:79:69:4b:7e:c9:a3:
5c:d3:53:29:9d:e0:f7:63:c7:35:87:83:de:42:55:
f4:79:54:73:80:9d:5d:ee:79:8c:ff:94:cb:ff:d1:
05:92:bf:8f:e2:b6:b7:f6:9c:ba:cb:00:43:5e:89:
9c:fe:59:d8:e3:b5:b5:ea:0c:b8:5b:f7:a3:48:8d:
d6:47:b8:ad:9b:78:f6:c7:7d:a0:8b:ec:f5:c6:22:
dc:4b:59:26:f7:ee:78:f1:df:e6:a8:eb:eb:9a:7c:
9c:b9:70:2f:d9:8d:fc:8f:b1:d3:1f:88:b2:2a:b6:
df:53:6d:36:26:3c:3b:05:a3:99:75:57:60:e2:d2:
77:f1:44:99:e6:c2:99:0e:cc:97:b1:bb:65:06:9d:
99:8a:24:a9:8d:34:f8:62:fd:42:76:99:1d:80:d9:
39:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:3E:CA:F2:83:87:73:47:6F:95:F5:CA:DD:CB:08:EF:E1:38:92:10
X509v3 Authority Key Identifier:
keyid:BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/Xj7K8oOHc0dvlfXK3csI7-E4khA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.83.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:ad:23:8d:9b:82:b1:6e:b4:ae:d6:fb:ab:d6:08:37:dc:ed:
02:ef:c4:3b:05:d7:5d:c8:d9:f1:4e:e6:ba:67:61:d9:d4:67:
3b:06:7e:bd:3b:12:a4:0a:1d:1b:c9:41:f9:9d:9d:f5:f0:06:
9c:44:2e:ba:9d:60:53:f5:ab:da:b6:e9:b5:ea:14:a5:46:d5:
90:de:c2:fc:de:67:c9:18:5f:f0:70:2f:90:28:69:b3:fc:e9:
66:4d:17:c2:1d:7c:b0:76:d4:16:8f:33:9a:fe:65:ef:f0:f1:
38:19:27:db:e0:63:6c:e5:b9:e6:ae:25:2f:bb:aa:cb:5d:ad:
92:db:08:d3:e4:2a:12:76:ca:ec:88:26:13:de:15:ee:7f:8c:
0e:9d:69:7f:46:ec:27:e8:89:97:f4:36:f3:c8:2a:97:23:71:
b0:f6:40:de:76:57:e0:11:02:1b:ce:ff:2a:a7:dd:83:67:68:
bc:b2:bc:30:e6:0e:ec:96:16:ea:1e:55:ea:7c:88:4e:3c:02:
35:de:2c:18:d2:12:c9:3a:07:25:9f:8d:40:fe:ba:a8:17:a6:
a2:cf:cd:87:62:50:41:e4:e8:9a:87:0f:4e:ec:eb:ec:72:dc:
6e:21:45:1a:a8:2e:f1:35:0a:92:57:e8:0e:cc:e4:4c:e5:5f:
01:46:03:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVy5/z4zw0gnuVDGjW+KsALMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYTVhZWE2ZjE4MGE5YThhZDk4NDUzNWVkMmU2NGJjZmNi
M2ZlMWEwHhcNMjMwMTAyMTQzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTNlY2FmMjgzODc3MzQ3NmY5NWY1Y2FkZGNiMDhlZmUxMzg5MjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnWJuz9StUikN5VCdUj0yqWC7LLI
A41c8BfBlFrm+G57mdrnRnQkJjjtRBNgnV8f4vVDrJ3iX+eHGCY5jxfE3uSqiXuC
pkTFDif7MVF1qca4gKXlSpnlv0fL6LQsAj+ctil5aUt+yaNc01MpneD3Y8c1h4Pe
QlX0eVRzgJ1d7nmM/5TL/9EFkr+P4ra39py6ywBDXomc/lnY47W16gy4W/ejSI3W
R7itm3j2x32gi+z1xiLcS1km9+548d/mqOvrmnycuXAv2Y38j7HTH4iyKrbfU202
Jjw7BaOZdVdg4tJ38USZ5sKZDsyXsbtlBp2ZiiSpjTT4Yv1CdpkdgNk5FwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF4+yvKDh3NHb5X1yt3LCO/hOJIQMB8GA1UdIwQY
MBaAFLqlrqbxgKmorZhFNe0uZLz8s/4aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83ZjhmNzYtMGQ5ZC00NmFmLTliZWEt
NDdlNGUyNzRjZjY0LzEvWGo3SzhvT0hjMGR2bGZYSzNjc0k3LUU0a2hBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83ZjhmNzYtMGQ5ZC00NmFmLTliZWEtNDdlNGUyNzRjZjY0
LzEvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWlTMA0G
CSqGSIb3DQEBCwUAA4IBAQBfrSONm4KxbrSu1vur1gg33O0C78Q7BdddyNnxTua6
Z2HZ1Gc7Bn69OxKkCh0byUH5nZ318AacRC66nWBT9avatum16hSlRtWQ3sL83mfJ
GF/wcC+QKGmz/OlmTRfCHXywdtQWjzOa/mXv8PE4GSfb4GNs5bnmriUvu6rLXa2S
2wjT5CoSdsrsiCYT3hXuf4wOnWl/Ruwn6ImX9DbzyCqXI3Gw9kDedlfgEQIbzv8q
p92DZ2i8srww5g7slhbqHlXqfIhOPAI13iwY0hLJOgcln41A/rqoF6aiz82HYlBB
5Oiahw9O7OvsctxuIUUaqC7xNQqSV+gOzORM5V8BRgNk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:15 2024 by rpki-client on console-fra.rpki-client.org