Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8-hO6l1DKErXSqWUaxPwV4eVZ1o.roa
File: 8-hO6l1DKErXSqWUaxPwV4eVZ1o.roa (raw, json)
Hash identifier: eRUoEYMNMIzoYDUnl48CsNYpBbELVsIW1qVb9KDnEjc=
Subject key identifier: F3:E8:4E:EA:5D:43:28:4A:D7:4A:A5:94:6B:13:F0:57:87:95:67:5A
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018CC56E04C7983E056D644EF11A968B4CD5
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8-hO6l1DKErXSqWUaxPwV4eVZ1o.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211849
IP address blocks: 193.37.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 08:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:04:c7:98:3e:05:6d:64:4e:f1:1a:96:8b:4c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3e84eea5d43284ad74aa5946b13f0578795675a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:32:51:d0:87:d2:aa:60:97:7c:47:4a:ac:a1:
a3:af:02:ef:29:0e:df:94:fd:43:d8:07:da:e5:ad:
85:af:20:71:96:88:1b:c3:e2:5d:c5:6c:ed:0b:7d:
f3:01:80:07:55:b9:b2:f9:43:42:ab:f1:f3:5d:b2:
8a:f4:9c:be:11:78:b7:17:08:5f:2e:33:98:7e:4c:
b9:1e:6c:0f:c3:1f:aa:33:85:92:b7:8d:9f:a0:47:
75:22:9b:7e:fa:5d:e8:e4:67:12:9e:40:f1:be:4c:
1e:c6:f4:70:f0:9e:bb:59:67:03:b8:ab:37:a1:49:
cb:f7:9e:a8:c5:a2:65:6d:a5:61:9b:91:b5:7e:51:
e7:98:b6:7d:db:87:9f:0b:b3:cf:3b:d8:ce:33:a7:
5b:7f:bb:49:da:e0:75:3c:c9:b3:8f:a1:b1:51:0c:
82:c5:b0:90:c4:d4:4e:74:48:d7:73:fd:7f:c8:4d:
d3:6b:52:66:5a:65:3c:a2:c3:54:76:2e:2c:38:a3:
5f:e9:08:f1:08:2f:7d:13:ac:4a:9e:bf:23:8b:5f:
d3:96:ff:7e:a7:d3:ab:b4:23:22:f6:cc:5c:d5:75:
9f:4f:f3:b4:50:4b:5d:2a:86:96:6f:b7:d6:13:a6:
be:c3:79:49:56:b8:bf:bd:2c:17:97:9f:25:75:3f:
1b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E8:4E:EA:5D:43:28:4A:D7:4A:A5:94:6B:13:F0:57:87:95:67:5A
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/8-hO6l1DKErXSqWUaxPwV4eVZ1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.197.0/24
Signature Algorithm: sha256WithRSAEncryption
51:da:d5:01:42:64:26:43:03:ec:dc:db:c7:0f:0c:b8:6e:95:
9d:27:d1:0f:3b:0d:2c:b4:48:41:2d:38:bc:18:19:5e:e3:55:
76:7e:e7:d3:49:f1:13:37:bf:8b:0a:a1:a7:84:a4:72:11:71:
48:83:d5:b2:03:fd:0b:41:3f:8b:43:21:5b:27:22:73:11:7d:
2e:af:d3:d6:b7:2c:8d:fe:67:49:ca:f7:c7:57:10:d6:e8:b2:
98:14:75:82:4e:3d:72:d7:09:0b:8c:7c:5f:a4:fa:47:e4:a9:
26:e0:ad:c7:13:dc:89:13:96:39:fa:51:59:1b:87:f0:21:9e:
75:a0:0f:b3:e5:63:ea:ba:14:c6:75:c1:49:6d:de:bb:81:8d:
4d:32:5f:c9:6f:14:f2:42:11:68:10:c3:dd:f6:57:d9:10:67:
8d:06:b6:a7:fc:50:84:b0:e4:85:66:bf:ec:2e:50:a9:33:bb:
54:f7:9f:70:48:41:0c:9c:43:6b:46:dd:5b:ec:7a:e0:5b:06:
31:82:f9:82:d4:89:ea:ae:79:ac:a3:3b:7b:a9:66:c7:21:33:
ae:8a:fd:2e:6b:91:a5:ec:85:fb:95:98:8b:6d:ab:5d:eb:d8:
7b:a5:d2:93:a4:b2:20:ae:57:6e:bb:e6:d3:15:13:cb:73:8e:
74:0f:40:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbgTHmD4FbWRO8RqWi0zVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjQwMTAxMTQyOTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmM2U4NGVlYTVkNDMyODRhZDc0YWE1OTQ2YjEzZjA1Nzg3OTU2NzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7jJR0IfSqmCXfEdKrKGjrwLvKQ7f
lP1D2Afa5a2FryBxlogbw+JdxWztC33zAYAHVbmy+UNCq/HzXbKK9Jy+EXi3Fwhf
LjOYfky5HmwPwx+qM4WSt42foEd1Ipt++l3o5GcSnkDxvkwexvRw8J67WWcDuKs3
oUnL956oxaJlbaVhm5G1flHnmLZ924efC7PPO9jOM6dbf7tJ2uB1PMmzj6GxUQyC
xbCQxNROdEjXc/1/yE3Ta1JmWmU8osNUdi4sOKNf6QjxCC99E6xKnr8ji1/Tlv9+
p9OrtCMi9sxc1XWfT/O0UEtdKoaWb7fWE6a+w3lJVri/vSwXl58ldT8bWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPPoTupdQyhK10qllGsT8FeHlWdaMB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvOC1oTzZsMURLRXJYU3FXVWF4UHdWNGVWWjFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSXFMA0G
CSqGSIb3DQEBCwUAA4IBAQBR2tUBQmQmQwPs3NvHDwy4bpWdJ9EPOw0stEhBLTi8
GBle41V2fufTSfETN7+LCqGnhKRyEXFIg9WyA/0LQT+LQyFbJyJzEX0ur9PWtyyN
/mdJyvfHVxDW6LKYFHWCTj1y1wkLjHxfpPpH5Kkm4K3HE9yJE5Y5+lFZG4fwIZ51
oA+z5WPquhTGdcFJbd67gY1NMl/JbxTyQhFoEMPd9lfZEGeNBran/FCEsOSFZr/s
LlCpM7tU959wSEEMnENrRt1b7HrgWwYxgvmC1Inqrnmsozt7qWbHITOuiv0ua5Gl
7IX7lZiLbatd69h7pdKTpLIgrlduu+bTFRPLc450D0AD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org