Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/316c8f-5e36-471f-9555-f6297a77a37b/1/p9W0VD-AsGLYva6jO0bxMbTTncM.roa
File: p9W0VD-AsGLYva6jO0bxMbTTncM.roa (raw, json)
Hash identifier: 8mZUQbZ0ie9IQs3lYNHfvzB8amcW3qiF0L62SaPQ248=
Subject key identifier: A7:D5:B4:54:3F:80:B0:62:D8:BD:AE:A3:3B:46:F1:31:B4:D3:9D:C3
Certificate issuer: /CN=6ddd8f1e38c91f5b17c3d1a7234e49c9c70dc324
Certificate serial: 018A64BBDC4E0FB2F970959B1C488156300B
Authority key identifier: 6D:DD:8F:1E:38:C9:1F:5B:17:C3:D1:A7:23:4E:49:C9:C7:0D:C3:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd2PHjjJH1sXw9GnI05JyccNwyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/316c8f-5e36-471f-9555-f6297a77a37b/1/p9W0VD-AsGLYva6jO0bxMbTTncM.roa
Signing time: Tue 05 Sep 2023 09:45:47 +0000
ROA not before: Tue 05 Sep 2023 09:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212543
IP address blocks: 192.38.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:bb:dc:4e:0f:b2:f9:70:95:9b:1c:48:81:56:30:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd8f1e38c91f5b17c3d1a7234e49c9c70dc324
Validity
Not Before: Sep 5 09:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7d5b4543f80b062d8bdaea33b46f131b4d39dc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fc:30:ee:b4:a0:4d:95:ac:57:9a:46:42:57:
fe:1e:24:75:c4:75:9c:9c:38:08:e2:63:bf:a1:5b:
d0:1e:80:1d:42:6d:b1:b4:63:6e:54:90:26:00:f3:
87:42:f1:e9:90:50:34:88:6c:1c:91:e0:f7:95:c1:
13:05:57:eb:cf:dd:17:2c:41:70:50:e3:d0:7c:cf:
8b:2f:de:e3:d8:34:d6:b1:6e:24:c8:48:70:3d:ff:
5a:a2:7b:60:cf:77:ae:35:e7:99:50:ab:82:21:2f:
79:8c:a1:43:2e:ab:78:49:0d:cc:ec:d3:b3:0a:d0:
1c:a3:cb:5c:25:34:e8:cc:29:31:86:3d:c5:c8:3c:
b5:e3:02:48:b7:85:35:99:0a:20:2b:88:05:83:46:
82:24:0b:63:30:ba:64:f6:b1:e0:2a:d4:32:dd:51:
d8:b7:77:4e:f9:a9:6f:10:f0:7d:75:00:46:6f:e6:
69:7a:37:11:cb:48:80:8d:f9:82:a5:51:69:c3:6d:
15:75:93:52:95:58:1c:05:a8:d6:73:7c:a5:3b:94:
f2:e8:cb:85:06:da:4b:ed:44:ef:e2:0a:fa:35:3b:
6f:36:cc:ff:25:e0:32:0f:62:9c:48:b7:26:4f:e8:
45:dd:d2:8b:d4:76:9d:84:0f:81:7b:56:68:1e:fa:
32:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D5:B4:54:3F:80:B0:62:D8:BD:AE:A3:3B:46:F1:31:B4:D3:9D:C3
X509v3 Authority Key Identifier:
keyid:6D:DD:8F:1E:38:C9:1F:5B:17:C3:D1:A7:23:4E:49:C9:C7:0D:C3:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd2PHjjJH1sXw9GnI05JyccNwyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/316c8f-5e36-471f-9555-f6297a77a37b/1/p9W0VD-AsGLYva6jO0bxMbTTncM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/316c8f-5e36-471f-9555-f6297a77a37b/1/bd2PHjjJH1sXw9GnI05JyccNwyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.38.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:98:19:68:ab:d7:37:e7:06:72:8d:c2:9e:6f:1e:72:74:d5:
e2:23:93:60:f4:f8:a7:eb:98:cf:3c:ec:b6:41:44:1c:be:f0:
a8:ec:b6:f5:02:e5:60:f7:1c:9f:d4:e6:2f:b3:2c:e8:d2:31:
b1:9d:64:05:8b:18:8d:4a:b8:c9:86:13:98:d4:0c:70:d0:76:
be:71:36:33:e8:6a:9b:a9:60:a3:4e:da:33:6c:ab:68:6b:3f:
32:73:6b:e2:c4:7e:9b:c2:b8:2e:10:9a:8d:96:0a:f0:0b:54:
64:6f:54:13:3b:a2:82:59:00:b2:15:c7:ca:55:90:f6:7f:40:
12:49:24:35:22:9f:2b:48:50:0f:20:c3:1e:59:d6:03:0a:51:
bc:b2:b6:c3:26:56:22:6c:75:69:ce:68:07:40:45:99:81:a2:
6a:27:ed:6b:40:4c:ab:ce:ab:f0:6c:2a:88:86:46:70:7e:c9:
90:fa:9e:79:37:bb:c6:e4:44:50:0b:59:3c:b5:74:77:c5:37:
20:a5:df:38:2b:5f:02:7a:65:c4:68:04:8e:43:f3:b7:4d:dd:
b6:d8:ab:a4:bf:6b:68:83:2c:22:c3:43:87:42:94:2b:88:0a:
ad:ee:ea:cc:0a:d0:a5:81:da:4e:ed:cf:37:f5:80:f7:42:c4:
7d:f9:5a:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpku9xOD7L5cJWbHEiBVjALMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGQ4ZjFlMzhjOTFmNWIxN2MzZDFhNzIzNGU0OWM5Yzcw
ZGMzMjQwHhcNMjMwOTA1MDk0NTQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2Q1YjQ1NDNmODBiMDYyZDhiZGFlYTMzYjQ2ZjEzMWI0ZDM5ZGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfww7rSgTZWsV5pGQlf+HiR1xHWc
nDgI4mO/oVvQHoAdQm2xtGNuVJAmAPOHQvHpkFA0iGwckeD3lcETBVfrz90XLEFw
UOPQfM+LL97j2DTWsW4kyEhwPf9aontgz3euNeeZUKuCIS95jKFDLqt4SQ3M7NOz
CtAco8tcJTTozCkxhj3FyDy14wJIt4U1mQogK4gFg0aCJAtjMLpk9rHgKtQy3VHY
t3dO+alvEPB9dQBGb+ZpejcRy0iAjfmCpVFpw20VdZNSlVgcBajWc3ylO5Ty6MuF
BtpL7UTv4gr6NTtvNsz/JeAyD2KcSLcmT+hF3dKL1HadhA+Be1ZoHvoy1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKfVtFQ/gLBi2L2uoztG8TG0053DMB8GA1UdIwQY
MBaAFG3djx44yR9bF8PRpyNOScnHDcMkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmQyUEhqakpIMXNYdzlHbkkwNUp5Y2NOd3lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8zMTZjOGYtNWUzNi00NzFmLTk1NTUt
ZjYyOTdhNzdhMzdiLzEvcDlXMFZELUFzR0xZdmE2ak8wYnhNYlRUbmNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi8zMTZjOGYtNWUzNi00NzFmLTk1NTUtZjYyOTdhNzdhMzdi
LzEvYmQyUEhqakpIMXNYdzlHbkkwNUp5Y2NOd3lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwCYAMA0G
CSqGSIb3DQEBCwUAA4IBAQBtmBloq9c35wZyjcKebx5ydNXiI5Ng9Pin65jPPOy2
QUQcvvCo7Lb1AuVg9xyf1OYvsyzo0jGxnWQFixiNSrjJhhOY1Axw0Ha+cTYz6Gqb
qWCjTtozbKtoaz8yc2vixH6bwrguEJqNlgrwC1Rkb1QTO6KCWQCyFcfKVZD2f0AS
SSQ1Ip8rSFAPIMMeWdYDClG8srbDJlYibHVpzmgHQEWZgaJqJ+1rQEyrzqvwbCqI
hkZwfsmQ+p55N7vG5ERQC1k8tXR3xTcgpd84K18CemXEaASOQ/O3Td222Kukv2to
gywiw0OHQpQriAqt7urMCtClgdpO7c839YD3QsR9+VoZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:35 2024 by rpki-client on console-fra.rpki-client.org