Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/E4CRyDFoJaSFn9emzPfJJG8rGpo.roa
File: E4CRyDFoJaSFn9emzPfJJG8rGpo.roa (raw, json)
Hash identifier: DNvLcM4oV0mm9DRpVcIJwm7g2f+FMZvXCFp6cbgcOy0=
Subject key identifier: 13:80:91:C8:31:68:25:A4:85:9F:D7:A6:CC:F7:C9:24:6F:2B:1A:9A
Certificate issuer: /CN=41fc55ee2488fb9401c4b668abac54110ebb8092
Certificate serial: 01856EF4212674ABA810ABE94D79B4EB0E02
Authority key identifier: 41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/E4CRyDFoJaSFn9emzPfJJG8rGpo.roa
Signing time: Sun 01 Jan 2023 20:09:31 +0000
ROA not before: Sun 01 Jan 2023 20:09:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50246
IP address blocks: 193.29.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Nov 2023 12:08:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:21:26:74:ab:a8:10:ab:e9:4d:79:b4:eb:0e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41fc55ee2488fb9401c4b668abac54110ebb8092
Validity
Not Before: Jan 1 20:09:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=138091c8316825a4859fd7a6ccf7c9246f2b1a9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bf:40:4f:61:7f:9e:21:ef:83:c5:79:6d:b0:
81:fa:39:49:51:1f:87:19:3f:82:30:3e:72:28:3b:
12:9a:6b:0f:44:ab:ab:47:60:cb:ea:5c:93:19:d8:
7c:e5:c2:9d:f7:13:79:32:ee:e7:1f:7c:cb:f9:14:
b6:da:5c:9f:38:39:0e:de:40:37:35:92:0e:ea:95:
15:ca:5f:da:11:cb:9f:b3:a5:8c:48:fa:c7:09:c7:
82:cb:77:8e:69:60:a5:09:8f:37:63:03:fc:4c:fe:
be:ff:f8:cc:a3:d8:97:ce:38:05:0a:6f:76:43:b6:
0e:4c:ea:4a:aa:cc:70:0a:0a:f5:55:02:25:47:19:
86:f8:97:3e:03:50:ff:93:4a:b2:b4:f2:e5:f0:d1:
49:cf:b0:0c:88:8f:d6:34:47:1c:1a:b0:65:25:ae:
c7:e6:58:63:4c:2c:ff:fd:a6:92:a4:fa:4c:27:ff:
d5:b9:10:d4:a7:f0:8c:c9:e8:ed:46:43:1f:89:cb:
d8:eb:6c:21:5a:6e:ff:23:ad:10:ec:10:15:2c:6b:
ee:f6:e9:45:26:39:75:8a:3d:5f:d5:38:d2:82:2b:
58:60:d8:38:74:52:24:7a:d2:1c:26:74:50:76:32:
6c:44:55:23:e7:2a:6e:41:39:36:dd:73:1e:4c:ab:
33:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:80:91:C8:31:68:25:A4:85:9F:D7:A6:CC:F7:C9:24:6F:2B:1A:9A
X509v3 Authority Key Identifier:
keyid:41:FC:55:EE:24:88:FB:94:01:C4:B6:68:AB:AC:54:11:0E:BB:80:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfxV7iSI-5QBxLZoq6xUEQ67gJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/E4CRyDFoJaSFn9emzPfJJG8rGpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/aa3661-deb3-45a4-8693-3881a8b827ac/1/QfxV7iSI-5QBxLZoq6xUEQ67gJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.38.0/24
Signature Algorithm: sha256WithRSAEncryption
48:53:88:d6:7d:b3:8a:9c:8e:33:1d:74:d6:89:51:60:67:ec:
36:43:7f:36:5d:36:07:3f:50:95:64:ff:fd:ff:29:66:fc:bb:
ae:19:b0:c0:e5:de:8a:58:65:07:8c:f7:fd:d1:06:26:fe:43:
e1:88:4b:05:66:45:5a:07:68:ba:88:2f:9f:d3:77:0b:f0:be:
3f:f3:da:1e:7a:87:64:10:ae:8b:84:d1:be:4a:24:48:9f:ea:
1b:bc:e2:57:cd:83:5d:fb:9e:ae:c5:81:4f:54:c8:8b:d1:b4:
29:51:34:9d:59:df:4c:1e:b4:13:7b:6a:85:9a:3d:3d:6b:04:
b0:96:8b:23:6c:ad:3b:c0:7f:e8:61:43:7b:0a:74:52:d0:0d:
d4:7a:9d:5c:4a:30:71:60:e3:1e:51:63:05:b7:6b:d6:74:a7:
4b:9d:50:ea:c6:dc:1f:34:91:92:66:83:d8:3f:22:48:71:b1:
ac:cc:d4:a8:80:c8:3e:90:63:a4:58:e3:0a:fa:4c:c5:2a:b5:
b0:18:da:b7:4d:45:ff:06:4f:88:47:5e:5b:ad:6a:2f:db:3e:
7b:bd:8a:96:47:c0:aa:c7:5b:a4:32:3c:20:14:ce:c1:00:2e:
27:e2:13:7a:56:b9:9c:b6:c2:4e:c6:71:77:ab:5e:2c:00:d1:
90:9a:b2:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu9CEmdKuoEKvpTXm06w4CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxZmM1NWVlMjQ4OGZiOTQwMWM0YjY2OGFiYWM1NDExMGVi
YjgwOTIwHhcNMjMwMTAxMjAwOTMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzgwOTFjODMxNjgyNWE0ODU5ZmQ3YTZjY2Y3YzkyNDZmMmIxYTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgb9AT2F/niHvg8V5bbCB+jlJUR+H
GT+CMD5yKDsSmmsPRKurR2DL6lyTGdh85cKd9xN5Mu7nH3zL+RS22lyfODkO3kA3
NZIO6pUVyl/aEcufs6WMSPrHCceCy3eOaWClCY83YwP8TP6+//jMo9iXzjgFCm92
Q7YOTOpKqsxwCgr1VQIlRxmG+Jc+A1D/k0qytPLl8NFJz7AMiI/WNEccGrBlJa7H
5lhjTCz//aaSpPpMJ//VuRDUp/CMyejtRkMficvY62whWm7/I60Q7BAVLGvu9ulF
Jjl1ij1f1TjSgitYYNg4dFIketIcJnRQdjJsRFUj5ypuQTk23XMeTKszqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOAkcgxaCWkhZ/Xpsz3ySRvKxqaMB8GA1UdIwQY
MBaAFEH8Ve4kiPuUAcS2aKusVBEOu4CSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWZ4VjdpU0ktNVFCeExab3E2eFVFUTY3Z0pJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hYTM2NjEtZGViMy00NWE0LTg2OTMt
Mzg4MWE4YjgyN2FjLzEvRTRDUnlERm9KYVNGbjllbXpQZkpKRzhyR3BvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hYTM2NjEtZGViMy00NWE0LTg2OTMtMzg4MWE4YjgyN2Fj
LzEvUWZ4VjdpU0ktNVFCeExab3E2eFVFUTY3Z0pJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwR0mMA0G
CSqGSIb3DQEBCwUAA4IBAQBIU4jWfbOKnI4zHXTWiVFgZ+w2Q382XTYHP1CVZP/9
/ylm/LuuGbDA5d6KWGUHjPf90QYm/kPhiEsFZkVaB2i6iC+f03cL8L4/89oeeodk
EK6LhNG+SiRIn+obvOJXzYNd+56uxYFPVMiL0bQpUTSdWd9MHrQTe2qFmj09awSw
losjbK07wH/oYUN7CnRS0A3Uep1cSjBxYOMeUWMFt2vWdKdLnVDqxtwfNJGSZoPY
PyJIcbGszNSogMg+kGOkWOMK+kzFKrWwGNq3TUX/Bk+IR15brWov2z57vYqWR8Cq
x1ukMjwgFM7BAC4n4hN6VrmctsJOxnF3q14sANGQmrIh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org