Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/89291a-e6ce-40ce-8b49-16ffa114699c/1/SbkXobLdP3-JMWUx7HhfxPbH4g0.roa
File: SbkXobLdP3-JMWUx7HhfxPbH4g0.roa (raw, json)
Hash identifier: Dx8deGmoPoUkYknu1SitzpsfNSDlrDAW7Y87iNlO6CQ=
Subject key identifier: 49:B9:17:A1:B2:DD:3F:7F:89:31:65:31:EC:78:5F:C4:F6:C7:E2:0D
Certificate issuer: /CN=4599ed84e4b211cc8baa89149741354f8850ef0f
Certificate serial: 0187A8757172233D9445575FC3B925F34269
Authority key identifier: 45:99:ED:84:E4:B2:11:CC:8B:AA:89:14:97:41:35:4F:88:50:EF:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZnthOSyEcyLqokUl0E1T4hQ7w8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/89291a-e6ce-40ce-8b49-16ffa114699c/1/SbkXobLdP3-JMWUx7HhfxPbH4g0.roa
Signing time: Sat 22 Apr 2023 10:14:41 +0000
ROA not before: Sat 22 Apr 2023 10:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49324
IP address blocks: 194.61.192.0/20 maxlen: 20
194.61.192.0/19 maxlen: 19
194.61.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:75:71:72:23:3d:94:45:57:5f:c3:b9:25:f3:42:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4599ed84e4b211cc8baa89149741354f8850ef0f
Validity
Not Before: Apr 22 10:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49b917a1b2dd3f7f89316531ec785fc4f6c7e20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b9:dc:45:9f:37:97:7c:41:04:4e:81:6a:8e:
f8:a9:d7:c6:26:cb:85:66:7c:54:de:c3:be:fc:15:
0f:e8:ab:90:36:f9:87:97:d3:04:30:bd:18:a5:aa:
cf:04:3e:1d:d9:b2:af:35:60:e2:fb:98:e7:e3:3b:
3c:dc:f4:7d:60:c6:00:ba:96:06:34:4a:0c:1f:31:
62:0c:ab:2d:18:d8:8b:79:bf:dc:cd:36:3c:d3:95:
b3:16:68:fc:63:0e:c3:fc:3c:b6:6e:92:fc:58:d0:
2e:43:19:67:cd:fe:73:c4:a6:2b:dd:4d:91:bd:a6:
4c:02:82:62:13:c9:28:04:6b:8a:22:4e:a7:28:a0:
d9:0e:77:39:8c:16:be:02:4e:d8:fc:8b:bd:90:30:
3f:73:25:f0:99:a4:94:08:dc:e3:c3:77:37:18:71:
ec:3a:db:ef:c2:71:ba:54:2a:9b:d2:cc:0f:90:ae:
5e:e9:3e:6b:03:46:66:7c:ff:01:79:14:04:4d:06:
11:df:0b:2e:2f:8e:d1:18:8d:44:e2:13:27:bd:bb:
78:60:a7:9f:a8:f2:ad:e7:49:b6:90:27:0f:cd:0c:
67:08:fa:cd:f4:16:36:7d:e4:3f:88:dd:1c:5f:9b:
14:04:7b:e5:0b:2b:fe:e2:df:4c:bd:12:bd:67:99:
14:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B9:17:A1:B2:DD:3F:7F:89:31:65:31:EC:78:5F:C4:F6:C7:E2:0D
X509v3 Authority Key Identifier:
keyid:45:99:ED:84:E4:B2:11:CC:8B:AA:89:14:97:41:35:4F:88:50:EF:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZnthOSyEcyLqokUl0E1T4hQ7w8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/89291a-e6ce-40ce-8b49-16ffa114699c/1/SbkXobLdP3-JMWUx7HhfxPbH4g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/89291a-e6ce-40ce-8b49-16ffa114699c/1/RZnthOSyEcyLqokUl0E1T4hQ7w8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.192.0/19
Signature Algorithm: sha256WithRSAEncryption
a2:74:52:6d:1d:c9:4e:10:8c:f2:5a:88:40:47:48:a9:b9:b7:
e9:a8:28:4e:0f:47:6f:e7:6b:58:0e:1b:29:dc:fb:bc:fd:68:
d2:18:15:b9:b3:7b:e1:ef:3a:01:89:c1:74:94:a1:f5:a0:57:
67:e0:37:ff:cb:e5:7a:88:de:37:38:84:72:18:d3:52:60:84:
db:d6:fd:07:ae:1e:c6:46:87:5f:06:10:6a:26:8c:f3:ed:80:
34:1f:76:94:40:83:33:18:a1:43:9c:4f:c4:32:b9:b7:d2:21:
f5:98:67:2c:e4:47:84:44:da:c4:c7:a3:e3:8f:d4:e8:d1:1f:
10:fd:ae:3a:2b:1f:3e:64:eb:70:f5:14:a4:ef:73:01:83:5a:
ed:81:bf:54:8b:f2:7f:36:4f:bf:4f:10:fe:e2:bf:51:2f:bd:
57:02:30:d4:3e:a1:54:6a:e6:e9:20:5c:03:10:de:65:05:b4:
83:93:ce:2e:ee:f8:29:6c:66:1d:38:fb:e5:77:d3:96:be:91:
f4:1e:98:99:be:89:72:ab:c3:d0:1c:d2:1b:18:f8:be:2d:45:
b0:7a:74:98:64:a7:e0:c7:e0:13:c2:19:2e:74:36:b7:0b:e7:
e5:78:81:3e:d2:66:37:da:9f:18:db:87:71:11:bd:d0:c5:81:
32:04:0e:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYeodXFyIz2URVdfw7kl80JpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1OTllZDg0ZTRiMjExY2M4YmFhODkxNDk3NDEzNTRmODg1
MGVmMGYwHhcNMjMwNDIyMTAxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWI5MTdhMWIyZGQzZjdmODkzMTY1MzFlYzc4NWZjNGY2YzdlMjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkrncRZ83l3xBBE6Bao74qdfGJsuF
ZnxU3sO+/BUP6KuQNvmHl9MEML0YparPBD4d2bKvNWDi+5jn4zs83PR9YMYAupYG
NEoMHzFiDKstGNiLeb/czTY805WzFmj8Yw7D/Dy2bpL8WNAuQxlnzf5zxKYr3U2R
vaZMAoJiE8koBGuKIk6nKKDZDnc5jBa+Ak7Y/Iu9kDA/cyXwmaSUCNzjw3c3GHHs
OtvvwnG6VCqb0swPkK5e6T5rA0ZmfP8BeRQETQYR3wsuL47RGI1E4hMnvbt4YKef
qPKt50m2kCcPzQxnCPrN9BY2feQ/iN0cX5sUBHvlCyv+4t9MvRK9Z5kUGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEm5F6Gy3T9/iTFlMex4X8T2x+INMB8GA1UdIwQY
MBaAFEWZ7YTkshHMi6qJFJdBNU+IUO8PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlpudGhPU3lFY3lMcW9rVWwwRTFUNGhRN3c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My84OTI5MWEtZTZjZS00MGNlLThiNDkt
MTZmZmExMTQ2OTljLzEvU2JrWG9iTGRQMy1KTVdVeDdIaGZ4UGJINGcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My84OTI5MWEtZTZjZS00MGNlLThiNDktMTZmZmExMTQ2OTlj
LzEvUlpudGhPU3lFY3lMcW9rVWwwRTFUNGhRN3c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFwj3AMA0G
CSqGSIb3DQEBCwUAA4IBAQCidFJtHclOEIzyWohAR0ipubfpqChOD0dv52tYDhsp
3Pu8/WjSGBW5s3vh7zoBicF0lKH1oFdn4Df/y+V6iN43OIRyGNNSYITb1v0Hrh7G
RodfBhBqJozz7YA0H3aUQIMzGKFDnE/EMrm30iH1mGcs5EeERNrEx6Pjj9To0R8Q
/a46Kx8+ZOtw9RSk73MBg1rtgb9Ui/J/Nk+/TxD+4r9RL71XAjDUPqFUaubpIFwD
EN5lBbSDk84u7vgpbGYdOPvld9OWvpH0HpiZvolyq8PQHNIbGPi+LUWwenSYZKfg
x+ATwhkudDa3C+fleIE+0mY32p8Y24dxEb3QxYEyBA5m
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:39 2024 by rpki-client on console-ams.rpki-client.org