Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e892a1-cb5d-41d2-9078-a3900ff45451/1/XqLJXMnOc8MSOzxUIgnuBPUHvwA.roa
File: XqLJXMnOc8MSOzxUIgnuBPUHvwA.roa (raw, json)
Hash identifier: 6ksOQhAunLQge2IYKjxTVHpM09L0BAhilqtOToXyv+Y=
Subject key identifier: 5E:A2:C9:5C:C9:CE:73:C3:12:3B:3C:54:22:09:EE:04:F5:07:BF:00
Certificate issuer: /CN=fc4b8573ca0ebb478e008f70afa08ae58b7869a5
Certificate serial: 018AB2A90A0C9BC70F355D7134C564A27649
Authority key identifier: FC:4B:85:73:CA:0E:BB:47:8E:00:8F:70:AF:A0:8A:E5:8B:78:69:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EuFc8oOu0eOAI9wr6CK5Yt4aaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e892a1-cb5d-41d2-9078-a3900ff45451/1/XqLJXMnOc8MSOzxUIgnuBPUHvwA.roa
Signing time: Wed 20 Sep 2023 12:55:37 +0000
ROA not before: Wed 20 Sep 2023 12:55:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12329
IP address blocks: 194.156.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b2:a9:0a:0c:9b:c7:0f:35:5d:71:34:c5:64:a2:76:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4b8573ca0ebb478e008f70afa08ae58b7869a5
Validity
Not Before: Sep 20 12:55:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ea2c95cc9ce73c3123b3c542209ee04f507bf00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9e:3a:99:99:3a:e4:6f:67:dc:1a:48:ad:61:
26:2d:9c:26:57:7e:9f:14:09:a9:03:c6:a3:ad:81:
d6:be:3e:f5:49:b7:a2:92:65:b8:bf:da:fe:ef:bf:
97:10:5a:55:3a:e0:52:c6:d3:a2:58:89:5e:9c:a6:
da:48:5e:2c:74:e5:81:58:24:3f:51:53:8e:7c:57:
7a:57:54:cb:6d:bb:89:a6:a3:49:e3:9c:1c:69:87:
88:dc:9e:35:70:ee:3e:0d:3d:07:a4:20:4a:9f:37:
19:43:9e:ac:56:87:69:7c:a4:ab:8a:01:16:ea:4c:
b9:20:b0:23:2a:e2:6a:f7:5f:0e:69:ec:cd:27:75:
da:f8:78:9c:81:d7:e4:f3:15:2b:12:db:9f:e9:39:
c1:44:1a:13:96:a7:ae:0e:7a:a3:ea:9a:60:51:3c:
69:2e:0c:53:53:08:1b:57:a0:cd:85:24:4f:c5:6b:
e9:74:4e:99:69:f9:3f:41:b5:a0:b8:a0:6d:60:dd:
70:a4:c6:6c:02:62:3e:49:f7:fa:9a:94:8e:8d:f8:
66:4f:bf:3f:da:31:66:14:b4:75:d5:f3:c3:9e:40:
99:fb:02:3b:7f:b3:fd:77:24:68:ca:25:64:1f:fc:
d3:70:89:67:86:e7:21:cb:a6:d3:96:cb:8e:40:9e:
82:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A2:C9:5C:C9:CE:73:C3:12:3B:3C:54:22:09:EE:04:F5:07:BF:00
X509v3 Authority Key Identifier:
keyid:FC:4B:85:73:CA:0E:BB:47:8E:00:8F:70:AF:A0:8A:E5:8B:78:69:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EuFc8oOu0eOAI9wr6CK5Yt4aaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e892a1-cb5d-41d2-9078-a3900ff45451/1/XqLJXMnOc8MSOzxUIgnuBPUHvwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e892a1-cb5d-41d2-9078-a3900ff45451/1/_EuFc8oOu0eOAI9wr6CK5Yt4aaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.86.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:4d:90:51:c4:1a:ed:3e:ef:a8:6e:f0:23:28:0d:f1:d4:94:
dc:32:02:86:b9:a8:6b:21:2b:fd:82:ef:60:c0:09:a0:69:cc:
29:07:86:01:97:4e:09:93:01:02:41:b2:24:03:cc:7e:ce:41:
90:c8:5b:a5:85:67:01:eb:81:35:7d:f9:9f:46:13:ed:dd:46:
19:64:e7:68:26:50:6a:67:02:34:16:ed:fc:8b:23:23:b5:87:
72:77:41:19:d4:dd:bc:b1:27:49:f9:74:c8:90:2f:de:8f:73:
b3:cf:13:be:99:6b:cb:8b:9f:16:9d:a9:90:db:f0:1f:bb:02:
08:29:74:82:9b:a9:19:a7:4f:4a:34:15:40:09:a7:56:02:e8:
74:bc:e6:07:a6:40:0f:db:d6:45:8b:34:6e:bc:49:70:04:5a:
f2:8a:79:46:1e:81:f4:2f:6f:46:59:9f:05:48:d5:b8:c0:d5:
f0:b2:87:8c:bf:93:7b:31:74:b0:39:0f:44:89:d2:66:96:8e:
5a:f6:98:da:45:12:33:83:44:b1:73:8e:7a:02:9f:0d:8c:03:
5e:21:3c:64:b4:18:13:56:3f:23:a7:13:3f:29:c4:c9:b9:d4:
c2:b5:d4:07:c9:4b:6c:a4:ce:dc:19:5c:d7:a7:8f:8c:8f:3f:
73:5d:d3:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqyqQoMm8cPNV1xNMVkonZJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNGI4NTczY2EwZWJiNDc4ZTAwOGY3MGFmYTA4YWU1OGI3
ODY5YTUwHhcNMjMwOTIwMTI1NTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZWEyYzk1Y2M5Y2U3M2MzMTIzYjNjNTQyMjA5ZWUwNGY1MDdiZjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz546mZk65G9n3BpIrWEmLZwmV36f
FAmpA8ajrYHWvj71SbeikmW4v9r+77+XEFpVOuBSxtOiWIlenKbaSF4sdOWBWCQ/
UVOOfFd6V1TLbbuJpqNJ45wcaYeI3J41cO4+DT0HpCBKnzcZQ56sVodpfKSrigEW
6ky5ILAjKuJq918OaezNJ3Xa+Hicgdfk8xUrEtuf6TnBRBoTlqeuDnqj6ppgUTxp
LgxTUwgbV6DNhSRPxWvpdE6Zafk/QbWguKBtYN1wpMZsAmI+Sff6mpSOjfhmT78/
2jFmFLR11fPDnkCZ+wI7f7P9dyRoyiVkH/zTcIlnhuchy6bTlsuOQJ6CqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF6iyVzJznPDEjs8VCIJ7gT1B78AMB8GA1UdIwQY
MBaAFPxLhXPKDrtHjgCPcK+giuWLeGmlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0V1RmM4b091MGVPQUk5d3I2Q0s1WXQ0YWFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9lODkyYTEtY2I1ZC00MWQyLTkwNzgt
YTM5MDBmZjQ1NDUxLzEvWHFMSlhNbk9jOE1TT3p4VUlnbnVCUFVIdndBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9lODkyYTEtY2I1ZC00MWQyLTkwNzgtYTM5MDBmZjQ1NDUx
LzEvX0V1RmM4b091MGVPQUk5d3I2Q0s1WXQ0YWFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpxWMA0G
CSqGSIb3DQEBCwUAA4IBAQC/TZBRxBrtPu+obvAjKA3x1JTcMgKGuahrISv9gu9g
wAmgacwpB4YBl04JkwECQbIkA8x+zkGQyFulhWcB64E1ffmfRhPt3UYZZOdoJlBq
ZwI0Fu38iyMjtYdyd0EZ1N28sSdJ+XTIkC/ej3OzzxO+mWvLi58WnamQ2/AfuwII
KXSCm6kZp09KNBVACadWAuh0vOYHpkAP29ZFizRuvElwBFryinlGHoH0L29GWZ8F
SNW4wNXwsoeMv5N7MXSwOQ9EidJmlo5a9pjaRRIzg0Sxc456Ap8NjANeITxktBgT
Vj8jpxM/KcTJudTCtdQHyUtspM7cGVzXp4+Mjz9zXdMN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:12 2024 by rpki-client on console-ams.rpki-client.org