Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/eGAl2Yl9Taoitnz0ZSJKdM_4s4E.roa
File: eGAl2Yl9Taoitnz0ZSJKdM_4s4E.roa (raw, json)
Hash identifier: zY1TvdlSCpRLP/tFlBNOHuYQWYjsNksuqPaw141BTkw=
Subject key identifier: 78:60:25:D9:89:7D:4D:AA:22:B6:7C:F4:65:22:4A:74:CF:F8:B3:81
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 01856DDD6A071065688640BA025F89BDFAC2
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/eGAl2Yl9Taoitnz0ZSJKdM_4s4E.roa
Signing time: Sun 01 Jan 2023 15:05:05 +0000
ROA not before: Sun 01 Jan 2023 15:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203667
IP address blocks: 193.141.177.0/24 maxlen: 24
193.141.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 10:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:6a:07:10:65:68:86:40:ba:02:5f:89:bd:fa:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jan 1 15:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=786025d9897d4daa22b67cf465224a74cff8b381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e1:4e:47:fe:b6:17:2f:15:83:4f:eb:df:7d:
af:75:47:b3:da:b0:fc:99:e1:59:0b:3c:75:e0:e4:
b0:76:68:58:c7:07:0e:a6:80:d8:e1:d1:e0:0b:ec:
d5:00:6d:db:3f:6e:02:14:c2:0b:63:65:0e:21:4d:
ee:35:14:ca:73:6e:08:40:3e:2a:43:17:11:5e:2b:
3e:cd:6d:d8:6d:9f:53:be:03:0f:8c:98:70:56:9e:
e4:41:a7:44:1e:3c:97:ef:01:f0:9d:95:7c:49:79:
a1:ed:ad:45:a0:d5:d2:1f:89:ae:2d:48:e4:45:5c:
bf:ce:3e:79:ea:92:c4:55:4b:f3:18:58:12:9d:71:
8e:bb:ab:b0:b5:bd:87:60:2d:aa:4d:c8:4a:10:dd:
e2:6f:74:b8:52:59:e5:84:89:7d:d4:c4:7d:a7:12:
45:99:91:5c:40:74:47:12:21:19:e3:27:17:df:27:
02:60:2b:cf:66:13:c9:7f:0e:95:a6:42:fb:94:ac:
5d:32:08:12:07:ac:0d:b9:a5:e8:6a:cb:7a:29:4e:
aa:cb:2a:06:78:e1:73:f3:30:80:22:5b:f5:80:16:
f1:4a:8b:2b:8f:13:6e:d6:fd:e2:ab:02:19:72:8e:
64:18:bf:6c:8a:55:c9:4f:01:89:bc:fa:15:ba:6b:
3c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:60:25:D9:89:7D:4D:AA:22:B6:7C:F4:65:22:4A:74:CF:F8:B3:81
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/eGAl2Yl9Taoitnz0ZSJKdM_4s4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.121.0/24
193.141.177.0/24
Signature Algorithm: sha256WithRSAEncryption
13:b8:aa:29:1e:dd:13:77:dd:4c:11:94:21:cf:e6:e2:de:58:
6f:24:94:a0:44:83:b0:86:f6:3d:d8:5d:ae:47:b4:9f:4a:73:
a6:69:87:22:9d:05:57:5f:89:79:76:1f:a3:38:bb:62:53:82:
b7:b5:f4:5d:63:a1:68:e7:b0:fd:73:19:f9:91:be:eb:89:8a:
03:e2:fd:a5:da:a3:79:17:aa:d5:bd:18:06:2f:e6:06:6a:99:
93:12:a8:3c:4f:3f:78:52:bb:fa:d0:68:80:d4:c5:ed:6f:1f:
2b:7c:36:06:76:c1:d0:78:a1:c1:bb:3c:4a:aa:6f:4b:b7:3b:
02:99:ce:0b:5d:3e:2e:df:c9:8b:7a:c6:ad:87:3a:a9:91:23:
41:78:28:9b:83:86:25:8f:e6:d0:d4:54:3d:f5:a0:4e:0a:32:
a8:b3:ac:f8:de:ac:d9:71:a6:85:57:b9:0a:00:ce:54:fe:41:
5f:dc:70:43:76:05:61:1e:f9:c9:ad:ef:85:81:ec:1a:5b:53:
ec:5a:42:0d:75:20:13:bc:fc:93:a5:eb:84:b0:02:eb:94:8d:
a1:d9:43:15:b5:62:50:01:1a:b9:9b:8d:7b:0c:22:ae:a1:0f:
87:5a:03:b3:66:e1:0e:9b:90:c3:f0:4f:c6:1f:9f:09:a3:12:
e6:7e:bd:b8
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVt3WoHEGVohkC6Al+JvfrCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1
NjAyZmQwHhcNMjMwMTAxMTUwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODYwMjVkOTg5N2Q0ZGFhMjJiNjdjZjQ2NTIyNGE3NGNmZjhiMzgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgeFOR/62Fy8Vg0/r332vdUez2rD8
meFZCzx14OSwdmhYxwcOpoDY4dHgC+zVAG3bP24CFMILY2UOIU3uNRTKc24IQD4q
QxcRXis+zW3YbZ9TvgMPjJhwVp7kQadEHjyX7wHwnZV8SXmh7a1FoNXSH4muLUjk
RVy/zj556pLEVUvzGFgSnXGOu6uwtb2HYC2qTchKEN3ib3S4UlnlhIl91MR9pxJF
mZFcQHRHEiEZ4ycX3ycCYCvPZhPJfw6VpkL7lKxdMggSB6wNuaXoast6KU6qyyoG
eOFz8zCAIlv1gBbxSosrjxNu1v3iqwIZco5kGL9silXJTwGJvPoVums8ywIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHhgJdmJfU2qIrZ89GUiSnTP+LOBMB8GA1UdIwQY
MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct
YTJhYmRhZGY1ZjkwLzEvZUdBbDJZbDlUYW9pdG56MFpTSktkTV80czRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw
LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwY15AwQA
wY2xMA0GCSqGSIb3DQEBCwUAA4IBAQATuKopHt0Td91MEZQhz+bi3lhvJJSgRIOw
hvY92F2uR7SfSnOmaYcinQVXX4l5dh+jOLtiU4K3tfRdY6Fo57D9cxn5kb7riYoD
4v2l2qN5F6rVvRgGL+YGapmTEqg8Tz94Urv60GiA1MXtbx8rfDYGdsHQeKHBuzxK
qm9LtzsCmc4LXT4u38mLesathzqpkSNBeCibg4Ylj+bQ1FQ99aBOCjKos6z43qzZ
caaFV7kKAM5U/kFf3HBDdgVhHvnJre+FgewaW1PsWkINdSATvPyTpeuEsALrlI2h
2UMVtWJQARq5m417DCKuoQ+HWgOzZuEOm5DD8E/GH58JoxLmfr24
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:51 2024 by rpki-client on console-fra.rpki-client.org