Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/2R8MCUfgCINvNxLcQeqtFiu7fgk.roa
File: 2R8MCUfgCINvNxLcQeqtFiu7fgk.roa (raw, json)
Hash identifier: 3be4YcFwP5IyBEYFSRx5Avg31xhS6/LuU4c4ZdMMUQg=
Subject key identifier: D9:1F:0C:09:47:E0:08:83:6F:37:12:DC:41:EA:AD:16:2B:BB:7E:09
Certificate issuer: /CN=06a4d77dc2e19e6f9603274c0923a61a8addb496
Certificate serial: 018572CCBBA7321AA351EF9425DEDDCEF939
Authority key identifier: 06:A4:D7:7D:C2:E1:9E:6F:96:03:27:4C:09:23:A6:1A:8A:DD:B4:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTXfcLhnm-WAydMCSOmGordtJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/2R8MCUfgCINvNxLcQeqtFiu7fgk.roa
Signing time: Mon 02 Jan 2023 14:04:58 +0000
ROA not before: Mon 02 Jan 2023 14:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1342
IP address blocks: 193.163.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:bb:a7:32:1a:a3:51:ef:94:25:de:dd:ce:f9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06a4d77dc2e19e6f9603274c0923a61a8addb496
Validity
Not Before: Jan 2 14:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d91f0c0947e008836f3712dc41eaad162bbb7e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:69:97:b2:41:9e:88:96:3f:b4:86:9e:af:a4:
8a:e2:b6:3e:8a:af:bc:11:68:a9:4b:bf:95:aa:2c:
03:b7:3b:cb:91:86:6f:e9:b3:34:e3:7a:83:19:50:
8d:17:25:83:a9:a4:06:b2:60:e0:ea:7a:df:4e:a9:
80:b2:ae:a9:55:ad:de:ec:2a:09:54:58:f3:79:f8:
1b:1b:73:14:49:04:6d:e2:39:c0:08:93:69:40:65:
46:88:15:c2:b9:c3:4c:aa:1d:4d:3c:0a:49:00:40:
8a:5f:8a:5c:c3:8b:1e:0b:ec:69:dc:c5:58:0b:16:
73:a3:ed:69:6b:c5:eb:41:8b:99:b9:d1:fb:4f:76:
ae:90:33:39:19:83:7d:88:39:0b:26:ea:50:06:a0:
4c:2e:a8:e6:9d:43:71:b3:3a:07:09:48:14:1c:7c:
ae:4b:19:41:17:91:a3:a3:17:d5:7b:d1:0f:a5:54:
a6:7b:9b:57:34:46:e3:4b:dd:d0:e9:71:77:38:d8:
7b:22:5f:35:c8:b3:b4:64:5e:a1:e0:6c:72:8c:9b:
e0:84:74:26:4b:26:f6:b7:3c:d1:0a:33:9f:0e:53:
c9:90:5a:5b:4f:71:9f:41:7c:e6:54:62:11:30:e8:
4b:66:92:dd:ef:38:2a:74:c4:70:d8:c9:86:b9:a4:
cf:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:1F:0C:09:47:E0:08:83:6F:37:12:DC:41:EA:AD:16:2B:BB:7E:09
X509v3 Authority Key Identifier:
keyid:06:A4:D7:7D:C2:E1:9E:6F:96:03:27:4C:09:23:A6:1A:8A:DD:B4:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTXfcLhnm-WAydMCSOmGordtJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/2R8MCUfgCINvNxLcQeqtFiu7fgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d3b542-6f21-4dc8-9e6f-4492d9f2f438/1/BqTXfcLhnm-WAydMCSOmGordtJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.4.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ac:ba:96:2a:0f:32:54:4b:3e:9a:5b:d9:8a:b4:e9:1b:bd:
fa:e9:1d:24:b8:04:df:86:aa:6f:a5:0c:08:0e:70:51:75:2f:
7e:c9:ed:b7:5f:1f:b4:86:52:f1:c0:76:8c:a7:eb:c6:e0:1a:
19:a9:ab:cc:fc:c5:c7:12:3d:03:67:16:31:fa:cc:e0:e8:cb:
4e:12:7b:73:ca:e0:03:b7:31:0d:59:f4:95:8a:3e:30:4e:03:
87:3f:de:71:a8:da:61:8c:1d:49:3f:20:13:83:f2:a0:43:b7:
e4:e8:81:d5:71:f5:31:b5:f4:20:09:c5:1a:f7:ea:f8:8b:6e:
76:6f:15:36:ea:fe:62:e0:24:cb:57:df:a9:8f:c0:99:7a:a2:
9d:ab:ff:96:b0:35:e4:cb:2a:1a:c5:0f:15:02:dd:4e:36:5b:
72:3e:30:36:7e:9f:19:e7:1c:ff:4e:0d:f3:cf:f4:5d:cd:a0:
d7:46:3a:fe:db:2d:86:4a:a9:c7:db:e8:a8:66:2a:d8:95:bc:
33:b6:c4:c0:7c:56:fb:f5:99:46:07:0d:41:38:15:42:80:12:
41:f6:06:d6:71:39:5f:7a:0f:da:4e:03:06:08:e3:27:da:7a:
e9:f0:bf:18:9c:52:d3:c1:1d:e6:15:53:b6:bf:12:e4:a0:bf:
6d:59:57:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyzLunMhqjUe+UJd7dzvk5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YTRkNzdkYzJlMTllNmY5NjAzMjc0YzA5MjNhNjFhOGFk
ZGI0OTYwHhcNMjMwMTAyMTQwNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTFmMGMwOTQ3ZTAwODgzNmYzNzEyZGM0MWVhYWQxNjJiYmI3ZTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WmXskGeiJY/tIaer6SK4rY+iq+8
EWipS7+VqiwDtzvLkYZv6bM043qDGVCNFyWDqaQGsmDg6nrfTqmAsq6pVa3e7CoJ
VFjzefgbG3MUSQRt4jnACJNpQGVGiBXCucNMqh1NPApJAECKX4pcw4seC+xp3MVY
CxZzo+1pa8XrQYuZudH7T3aukDM5GYN9iDkLJupQBqBMLqjmnUNxszoHCUgUHHyu
SxlBF5GjoxfVe9EPpVSme5tXNEbjS93Q6XF3ONh7Il81yLO0ZF6h4GxyjJvghHQm
Syb2tzzRCjOfDlPJkFpbT3GfQXzmVGIRMOhLZpLd7zgqdMRw2MmGuaTPMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNkfDAlH4AiDbzcS3EHqrRYru34JMB8GA1UdIwQY
MBaAFAak133C4Z5vlgMnTAkjphqK3bSWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnFUWGZjTGhubS1XQXlkTUNTT21Hb3JkdEpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kM2I1NDItNmYyMS00ZGM4LTllNmYt
NDQ5MmQ5ZjJmNDM4LzEvMlI4TUNVZmdDSU52TnhMY1FlcXRGaXU3ZmdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9kM2I1NDItNmYyMS00ZGM4LTllNmYtNDQ5MmQ5ZjJmNDM4
LzEvQnFUWGZjTGhubS1XQXlkTUNTT21Hb3JkdEpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaMEMA0G
CSqGSIb3DQEBCwUAA4IBAQCDrLqWKg8yVEs+mlvZirTpG7366R0kuATfhqpvpQwI
DnBRdS9+ye23Xx+0hlLxwHaMp+vG4BoZqavM/MXHEj0DZxYx+szg6MtOEntzyuAD
tzENWfSVij4wTgOHP95xqNphjB1JPyATg/KgQ7fk6IHVcfUxtfQgCcUa9+r4i252
bxU26v5i4CTLV9+pj8CZeqKdq/+WsDXkyyoaxQ8VAt1ONltyPjA2fp8Z5xz/Tg3z
z/RdzaDXRjr+2y2GSqnH2+ioZirYlbwztsTAfFb79ZlGBw1BOBVCgBJB9gbWcTlf
eg/aTgMGCOMn2nrp8L8YnFLTwR3mFVO2vxLkoL9tWVfN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:37 2024 by rpki-client on console-ams.rpki-client.org