Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/6fcb84-017c-4aaf-bde7-aa91c92d5c48/1/I1S7tgA2Gi33afUHSpR4yAw8ny4.roa
File: I1S7tgA2Gi33afUHSpR4yAw8ny4.roa (raw, json)
Hash identifier: bCBN57a0W1WlduOPdU34g5Uz7CLsIOzh/HsEh6HPLpM=
Subject key identifier: 23:54:BB:B6:00:36:1A:2D:F7:69:F5:07:4A:94:78:C8:0C:3C:9F:2E
Certificate issuer: /CN=67fb0328cbf0b254af7c99d3b69fc634cfd8f600
Certificate serial: 01856F9DF9ABA9FB8A3CCFEDB96669EDEBD0
Authority key identifier: 67:FB:03:28:CB:F0:B2:54:AF:7C:99:D3:B6:9F:C6:34:CF:D8:F6:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_sDKMvwslSvfJnTtp_GNM_Y9gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/6fcb84-017c-4aaf-bde7-aa91c92d5c48/1/I1S7tgA2Gi33afUHSpR4yAw8ny4.roa
Signing time: Sun 01 Jan 2023 23:15:02 +0000
ROA not before: Sun 01 Jan 2023 23:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.16.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:f9:ab:a9:fb:8a:3c:cf:ed:b9:66:69:ed:eb:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67fb0328cbf0b254af7c99d3b69fc634cfd8f600
Validity
Not Before: Jan 1 23:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2354bbb600361a2df769f5074a9478c80c3c9f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:cb:9a:87:16:b3:26:6a:41:16:e0:e7:14:
b8:17:88:6f:c8:cd:db:d5:49:35:60:c5:68:fb:75:
3b:fc:e7:ba:72:87:20:a8:ef:5a:5d:9d:66:76:15:
7b:60:a7:4c:2b:28:fe:ba:81:91:bb:eb:8d:22:39:
82:03:67:9d:1c:0a:e2:a1:f2:a9:00:4a:63:c7:c7:
c4:89:39:d6:d7:c6:0c:eb:88:e2:46:24:5e:e1:1c:
47:19:4c:f1:79:8a:da:b4:f1:f2:09:0e:a4:0f:43:
a1:e0:cd:b5:bc:85:39:48:78:ed:7d:92:f6:24:5e:
70:fd:65:cd:82:e5:ed:51:60:6b:c4:60:e8:e1:f9:
e7:63:9b:15:52:32:63:29:49:d0:6d:00:48:7d:36:
f3:6f:bf:e9:83:07:2f:81:f2:9a:1c:2d:da:22:5e:
89:14:db:91:fb:c8:6a:a9:70:70:ae:b1:38:dd:9f:
a4:5e:d1:64:dd:91:50:90:0c:5b:0c:80:ed:80:08:
34:35:6c:e6:5b:0e:04:62:5a:98:13:05:51:e6:b5:
b9:c1:d2:95:7a:d2:df:e5:86:97:b1:08:d9:cf:1a:
11:0f:9b:a1:ac:45:d5:6a:7d:68:0f:07:3b:7f:f4:
9a:d5:c5:7d:a8:c1:3a:f2:5e:ba:17:e8:97:b3:a4:
ef:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:54:BB:B6:00:36:1A:2D:F7:69:F5:07:4A:94:78:C8:0C:3C:9F:2E
X509v3 Authority Key Identifier:
keyid:67:FB:03:28:CB:F0:B2:54:AF:7C:99:D3:B6:9F:C6:34:CF:D8:F6:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_sDKMvwslSvfJnTtp_GNM_Y9gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6fcb84-017c-4aaf-bde7-aa91c92d5c48/1/I1S7tgA2Gi33afUHSpR4yAw8ny4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/6fcb84-017c-4aaf-bde7-aa91c92d5c48/1/Z_sDKMvwslSvfJnTtp_GNM_Y9gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.155.0/24
Signature Algorithm: sha256WithRSAEncryption
03:99:e1:27:ce:2c:f9:47:53:3b:23:5d:b0:84:42:5f:bf:24:
fd:62:c3:34:19:31:98:ee:e7:6a:ea:8c:7d:dd:9a:19:86:74:
75:83:2b:c5:ed:b2:85:62:c8:93:40:fc:14:55:f9:17:ca:12:
2f:c7:a1:ff:af:b1:ae:b6:79:19:6f:10:54:1c:0f:82:7e:7c:
73:01:9b:44:fc:ac:39:b2:95:39:36:22:fd:5c:78:82:9d:6f:
fc:a0:c0:df:bd:68:3a:76:b3:44:ee:dc:bb:a5:0a:0e:54:83:
d6:31:0a:1c:ff:f5:b2:7b:14:8a:b8:ac:4f:51:f3:7d:24:fb:
3a:7a:0f:98:cc:99:33:02:45:1a:d7:8a:c5:e1:31:7b:3f:c1:
ac:75:bb:2b:8c:cf:63:71:fa:c0:48:99:d3:71:2c:70:aa:12:
ea:85:20:2a:9f:2e:e4:c6:cf:90:2c:74:0b:92:6f:12:92:d8:
c5:50:3d:f1:f1:7b:e5:6c:01:ee:93:44:a3:cb:8f:e4:de:df:
c2:17:db:5d:01:10:fd:5a:ee:84:7b:7a:77:eb:29:f9:82:98:
aa:de:8a:f5:ec:bb:72:ca:1f:a7:f9:07:14:5e:17:72:d6:45:
8f:e6:ac:d7:3f:3a:a4:bb:21:d0:f0:20:67:86:e4:02:1f:83:
c2:79:64:ca
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvnfmrqfuKPM/tuWZp7evQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3ZmIwMzI4Y2JmMGIyNTRhZjdjOTlkM2I2OWZjNjM0Y2Zk
OGY2MDAwHhcNMjMwMTAxMjMxNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzU0YmJiNjAwMzYxYTJkZjc2OWY1MDc0YTk0NzhjODBjM2M5ZjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvS7LmocWsyZqQRbg5xS4F4hvyM3b
1Uk1YMVo+3U7/Oe6cocgqO9aXZ1mdhV7YKdMKyj+uoGRu+uNIjmCA2edHAriofKp
AEpjx8fEiTnW18YM64jiRiRe4RxHGUzxeYratPHyCQ6kD0Oh4M21vIU5SHjtfZL2
JF5w/WXNguXtUWBrxGDo4fnnY5sVUjJjKUnQbQBIfTbzb7/pgwcvgfKaHC3aIl6J
FNuR+8hqqXBwrrE43Z+kXtFk3ZFQkAxbDIDtgAg0NWzmWw4EYlqYEwVR5rW5wdKV
etLf5YaXsQjZzxoRD5uhrEXVan1oDwc7f/Sa1cV9qME68l66F+iXs6TvdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCNUu7YANhot92n1B0qUeMgMPJ8uMB8GA1UdIwQY
MBaAFGf7AyjL8LJUr3yZ07afxjTP2PYAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWl9zREtNdndzbFN2ZkpuVHRwX0dOTV9ZOWdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS82ZmNiODQtMDE3Yy00YWFmLWJkZTct
YWE5MWM5MmQ1YzQ4LzEvSTFTN3RnQTJHaTMzYWZVSFNwUjR5QXc4bnk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS82ZmNiODQtMDE3Yy00YWFmLWJkZTctYWE5MWM5MmQ1YzQ4
LzEvWl9zREtNdndzbFN2ZkpuVHRwX0dOTV9ZOWdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRCbMA0G
CSqGSIb3DQEBCwUAA4IBAQADmeEnziz5R1M7I12whEJfvyT9YsM0GTGY7udq6ox9
3ZoZhnR1gyvF7bKFYsiTQPwUVfkXyhIvx6H/r7GutnkZbxBUHA+CfnxzAZtE/Kw5
spU5NiL9XHiCnW/8oMDfvWg6drNE7ty7pQoOVIPWMQoc//WyexSKuKxPUfN9JPs6
eg+YzJkzAkUa14rF4TF7P8GsdbsrjM9jcfrASJnTcSxwqhLqhSAqny7kxs+QLHQL
km8SktjFUD3x8XvlbAHuk0Sjy4/k3t/CF9tdARD9Wu6Ee3p36yn5gpiq3or17Lty
yh+n+QcUXhdy1kWP5qzXPzqkuyHQ8CBnhuQCH4PCeWTK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:06 2024 by rpki-client on console-ams.rpki-client.org