Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/b72BOYDEXPmGcghmF-WXt55gwfs.roa
File: b72BOYDEXPmGcghmF-WXt55gwfs.roa (raw, json)
Hash identifier: EaEZtY3kRduqjo+ZoXjdcG7M7TKDv9WEPAZAqQ1KXS8=
Subject key identifier: 6F:BD:81:39:80:C4:5C:F9:86:72:08:66:17:E5:97:B7:9E:60:C1:FB
Certificate issuer: /CN=838ec3942813d3f3536c127e1a821bfbef6db2a4
Certificate serial: 01887144F740CADC137FDD9C70D5265631C1
Authority key identifier: 83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/b72BOYDEXPmGcghmF-WXt55gwfs.roa
Signing time: Wed 31 May 2023 10:05:25 +0000
ROA not before: Wed 31 May 2023 10:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211416
IP address blocks: 193.56.134.0/24 maxlen: 24
2a10:e840::/32 maxlen: 64
2a10:e840:1::/64 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:44:f7:40:ca:dc:13:7f:dd:9c:70:d5:26:56:31:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=838ec3942813d3f3536c127e1a821bfbef6db2a4
Validity
Not Before: May 31 10:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fbd813980c45cf98672086617e597b79e60c1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:db:14:68:de:00:3c:d8:09:3f:a0:e5:8c:
83:5e:2a:9a:97:59:cc:49:92:f9:e9:7c:7f:02:78:
d5:4c:c3:86:5c:56:f2:ab:5b:fb:1b:d9:fe:0d:e6:
e6:98:8c:32:74:f1:08:8e:76:a3:05:66:f0:64:64:
f7:fe:ca:af:f7:72:e8:ff:83:9b:f4:fe:ec:0b:7f:
34:54:22:8a:ee:b6:63:0d:f2:6e:6f:f8:f7:22:ea:
ce:99:74:a6:b9:7e:c3:c5:5e:96:2c:3a:2c:9f:6b:
c4:2e:31:3e:8c:b7:14:d3:91:74:c9:df:82:cc:bf:
82:e2:17:7b:99:4c:22:54:88:6b:ec:a3:be:ce:67:
d1:2f:f3:d4:5b:48:1e:8b:45:da:10:35:95:39:42:
ad:be:b9:a0:0d:1d:58:5a:0e:ae:4e:ee:52:82:c9:
4b:11:84:bd:71:b0:08:48:9e:a2:8f:43:82:57:ea:
b2:3c:b5:75:77:50:81:1a:1c:c1:91:ca:64:e2:c2:
c3:b1:10:83:41:07:2e:dd:7a:97:55:4f:a2:e1:9a:
8a:90:91:af:ef:bb:a1:dd:6a:da:22:4c:b0:21:ce:
ba:98:30:e1:5d:5b:10:7b:47:49:c4:8f:b5:01:6f:
fe:03:3f:23:33:1f:ac:7d:7d:b4:8b:c2:2f:fc:1e:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:81:39:80:C4:5C:F9:86:72:08:66:17:E5:97:B7:9E:60:C1:FB
X509v3 Authority Key Identifier:
keyid:83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/b72BOYDEXPmGcghmF-WXt55gwfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/g47DlCgT0_NTbBJ-GoIb--9tsqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.134.0/24
IPv6:
2a10:e840::/32
Signature Algorithm: sha256WithRSAEncryption
7c:26:aa:80:66:e9:f5:af:fb:3d:f1:76:24:f6:72:26:0e:98:
48:c5:01:98:cb:fe:7a:d5:d6:1b:fa:64:6d:24:7f:08:a3:9a:
73:13:a3:62:90:7a:2a:de:34:15:ef:0a:1a:d1:c7:7b:45:83:
5d:ca:52:b8:4a:ae:e6:76:22:a3:10:71:48:eb:a2:21:74:1b:
fe:e1:00:04:aa:26:76:1d:f0:70:92:fc:70:30:82:d0:04:69:
bc:39:72:b8:6e:14:60:82:a8:2c:49:07:d8:06:76:19:76:e1:
02:ab:60:51:fb:9a:b5:5a:4c:d2:e8:43:d7:03:53:d4:f7:07:
b9:0d:1e:39:8d:4c:03:73:59:35:75:a0:7b:1b:c4:f6:9d:00:
47:8a:c4:b4:dd:aa:3b:18:02:5c:31:96:05:50:44:bc:3a:44:
44:21:79:f8:36:74:97:0e:e6:2e:f7:a9:0e:c2:aa:20:98:a3:
06:5e:ea:4f:d4:9e:c3:12:4f:27:8c:24:cc:cd:9e:7e:ae:b5:
6b:87:cf:68:d8:bf:a0:c9:0e:7c:14:d3:f0:01:45:92:ac:d2:
2c:dc:fe:1b:61:f0:e0:9f:98:c8:db:db:7d:3b:56:a0:ec:07:
28:05:98:be:90:7c:3c:e0:b1:b8:37:23:24:6c:ab:4e:e5:d2:
03:bc:7e:ff
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYhxRPdAytwTf92ccNUmVjHBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzOGVjMzk0MjgxM2QzZjM1MzZjMTI3ZTFhODIxYmZiZWY2
ZGIyYTQwHhcNMjMwNTMxMTAwNTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmJkODEzOTgwYzQ1Y2Y5ODY3MjA4NjYxN2U1OTdiNzllNjBjMWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxfbFGjeADzYCT+g5YyDXiqal1nM
SZL56Xx/AnjVTMOGXFbyq1v7G9n+DebmmIwydPEIjnajBWbwZGT3/sqv93Lo/4Ob
9P7sC380VCKK7rZjDfJub/j3IurOmXSmuX7DxV6WLDosn2vELjE+jLcU05F0yd+C
zL+C4hd7mUwiVIhr7KO+zmfRL/PUW0gei0XaEDWVOUKtvrmgDR1YWg6uTu5SgslL
EYS9cbAISJ6ij0OCV+qyPLV1d1CBGhzBkcpk4sLDsRCDQQcu3XqXVU+i4ZqKkJGv
77uh3WraIkywIc66mDDhXVsQe0dJxI+1AW/+Az8jMx+sfX20i8Iv/B7hXwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFG+9gTmAxFz5hnIIZhfll7eeYMH7MB8GA1UdIwQY
MBaAFIOOw5QoE9PzU2wSfhqCG/vvbbKkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzQ3RGxDZ1QwX05UYkJKLUdvSWItLTl0c3FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wYzRiMTYtNmI5NC00MDgwLTkxNjUt
Yjg1MzU2N2RhMGVhLzEvYjcyQk9ZREVYUG1HY2dobUYtV1h0NTVnd2ZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wYzRiMTYtNmI5NC00MDgwLTkxNjUtYjg1MzU2N2RhMGVh
LzEvZzQ3RGxDZ1QwX05UYkJKLUdvSWItLTl0c3FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwTiGMA0E
AgACMAcDBQAqEOhAMA0GCSqGSIb3DQEBCwUAA4IBAQB8JqqAZun1r/s98XYk9nIm
DphIxQGYy/561dYb+mRtJH8Io5pzE6NikHoq3jQV7woa0cd7RYNdylK4Sq7mdiKj
EHFI66IhdBv+4QAEqiZ2HfBwkvxwMILQBGm8OXK4bhRggqgsSQfYBnYZduECq2BR
+5q1WkzS6EPXA1PU9we5DR45jUwDc1k1daB7G8T2nQBHisS03ao7GAJcMZYFUES8
OkREIXn4NnSXDuYu96kOwqogmKMGXupP1J7DEk8njCTMzZ5+rrVrh89o2L+gyQ58
FNPwAUWSrNIs3P4bYfDgn5jI29t9O1ag7AcoBZi+kHw84LG4NyMkbKtO5dIDvH7/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:10 2024 by rpki-client on console-ams.rpki-client.org