Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/wO6FVl_P3XKdRmyU_iL9hjUVUw8.roa
File: wO6FVl_P3XKdRmyU_iL9hjUVUw8.roa (raw, json)
Hash identifier: Lg1j/tqJfdrcapUDJYgfYiGYD3vwucdJLHlqFvDkL/o=
Subject key identifier: C0:EE:85:56:5F:CF:DD:72:9D:46:6C:94:FE:22:FD:86:35:15:53:0F
Certificate issuer: /CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Certificate serial: 01856F54B3013EA60ED4A958D6E16B07131A
Authority key identifier: 41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/wO6FVl_P3XKdRmyU_iL9hjUVUw8.roa
Signing time: Sun 01 Jan 2023 21:54:59 +0000
ROA not before: Sun 01 Jan 2023 21:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203017
IP address blocks: 193.53.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b3:01:3e:a6:0e:d4:a9:58:d6:e1:6b:07:13:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41b8c2f37bd8d7e04e76985a4ced4559d7651c43
Validity
Not Before: Jan 1 21:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0ee85565fcfdd729d466c94fe22fd863515530f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:02:a5:14:72:f2:17:2a:e7:fb:1b:c2:42:ce:
73:c1:2b:2b:cf:fe:2f:f9:5b:19:0e:a9:0a:f8:ae:
98:fe:65:af:18:6c:6f:89:90:7b:98:e6:5c:eb:6e:
73:f6:ab:e2:88:36:ca:30:2c:13:9e:e7:72:c8:8d:
f3:e0:e2:d6:d2:6c:10:4a:aa:05:da:b2:7d:d7:d1:
ef:de:58:60:a0:df:75:2c:53:fc:e0:ce:90:26:b1:
1e:a2:63:eb:63:bc:06:a6:ca:43:ca:0e:68:62:79:
76:09:8d:fa:29:4f:b4:a4:b3:39:bb:48:1e:f2:e4:
4b:87:9d:33:e7:dd:a2:e7:e9:84:93:e3:07:b1:fe:
43:5e:e3:93:20:ca:00:15:25:dc:95:eb:94:50:e8:
43:67:59:c3:cf:78:47:b0:3f:83:50:e1:49:4c:b3:
ce:3d:db:f0:17:42:f1:d1:7a:59:40:c6:59:27:ea:
08:94:3c:b9:7d:c6:47:a5:9b:cd:e8:8b:c2:29:98:
6c:64:ce:94:44:f2:77:0f:e2:21:29:72:fa:08:e5:
23:e3:78:b6:fe:88:3e:0b:f1:98:4c:68:43:b9:08:
92:77:69:f7:2d:45:ec:dd:c4:8d:c4:f5:53:d4:f8:
5a:8c:f0:4c:f0:dc:dd:3b:b2:6d:be:e8:de:ed:af:
fc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EE:85:56:5F:CF:DD:72:9D:46:6C:94:FE:22:FD:86:35:15:53:0F
X509v3 Authority Key Identifier:
keyid:41:B8:C2:F3:7B:D8:D7:E0:4E:76:98:5A:4C:ED:45:59:D7:65:1C:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbjC83vY1-BOdphaTO1FWddlHEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/wO6FVl_P3XKdRmyU_iL9hjUVUw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3e3b4b-f827-4347-9022-2818f6578d1b/1/QbjC83vY1-BOdphaTO1FWddlHEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.23.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b4:d3:e3:72:b5:4e:40:fa:62:cf:ce:49:78:52:3e:65:8e:
e3:be:70:38:d1:38:46:f7:2a:66:ca:bd:93:5f:0d:78:2b:d7:
c7:86:07:39:a1:d8:92:47:7f:f4:96:9f:cd:85:2e:ec:55:89:
ff:6a:a2:fb:80:c9:47:46:17:ba:9b:61:1c:00:c2:5b:5d:c2:
5d:19:00:8d:de:d6:11:6f:cf:a4:cf:7b:e8:40:82:f7:7f:89:
76:dd:bc:e7:d3:c2:ba:b9:c6:ca:ab:15:92:00:ea:c9:11:22:
03:00:c3:16:2b:ba:84:06:1b:24:69:73:15:ab:30:b3:cb:11:
83:bf:e3:d8:31:78:0d:45:b6:05:4d:f5:b4:29:53:93:ce:9f:
d5:3e:9e:50:e2:9a:08:64:1e:b4:ea:10:f2:39:5b:47:03:5e:
4c:58:b9:b7:8a:4d:4d:04:28:a9:1a:65:30:95:fe:b4:33:c5:
8c:21:41:13:9f:5b:46:5c:04:31:47:60:1b:68:1a:56:a0:39:
89:86:67:f7:5b:a7:25:9e:df:59:6d:d1:2b:f3:59:74:17:35:
b6:43:2e:07:e9:c8:50:d4:ab:52:bb:79:e6:19:ca:14:8c:23:
db:4e:b7:ec:8b:c2:ca:82:ce:8c:4f:d9:00:62:3e:bc:c5:bf:
2a:59:71:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVLMBPqYO1KlY1uFrBxMaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxYjhjMmYzN2JkOGQ3ZTA0ZTc2OTg1YTRjZWQ0NTU5ZDc2
NTFjNDMwHhcNMjMwMTAxMjE1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGVlODU1NjVmY2ZkZDcyOWQ0NjZjOTRmZTIyZmQ4NjM1MTU1MzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgAKlFHLyFyrn+xvCQs5zwSsrz/4v
+VsZDqkK+K6Y/mWvGGxviZB7mOZc625z9qviiDbKMCwTnudyyI3z4OLW0mwQSqoF
2rJ919Hv3lhgoN91LFP84M6QJrEeomPrY7wGpspDyg5oYnl2CY36KU+0pLM5u0ge
8uRLh50z592i5+mEk+MHsf5DXuOTIMoAFSXcleuUUOhDZ1nDz3hHsD+DUOFJTLPO
PdvwF0Lx0XpZQMZZJ+oIlDy5fcZHpZvN6IvCKZhsZM6URPJ3D+IhKXL6COUj43i2
/og+C/GYTGhDuQiSd2n3LUXs3cSNxPVT1PhajPBM8NzdO7Jtvuje7a/8kwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMDuhVZfz91ynUZslP4i/YY1FVMPMB8GA1UdIwQY
MBaAFEG4wvN72NfgTnaYWkztRVnXZRxDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWJqQzgzdlkxLUJPZHBoYVRPMUZXZGRsSEVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8zZTNiNGItZjgyNy00MzQ3LTkwMjIt
MjgxOGY2NTc4ZDFiLzEvd082RlZsX1AzWEtkUm15VV9pTDloalVWVXc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8zZTNiNGItZjgyNy00MzQ3LTkwMjItMjgxOGY2NTc4ZDFi
LzEvUWJqQzgzdlkxLUJPZHBoYVRPMUZXZGRsSEVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTUXMA0G
CSqGSIb3DQEBCwUAA4IBAQAbtNPjcrVOQPpiz85JeFI+ZY7jvnA40ThG9ypmyr2T
Xw14K9fHhgc5odiSR3/0lp/NhS7sVYn/aqL7gMlHRhe6m2EcAMJbXcJdGQCN3tYR
b8+kz3voQIL3f4l23bzn08K6ucbKqxWSAOrJESIDAMMWK7qEBhskaXMVqzCzyxGD
v+PYMXgNRbYFTfW0KVOTzp/VPp5Q4poIZB606hDyOVtHA15MWLm3ik1NBCipGmUw
lf60M8WMIUETn1tGXAQxR2AbaBpWoDmJhmf3W6clnt9ZbdEr81l0FzW2Qy4H6chQ
1KtSu3nmGcoUjCPbTrfsi8LKgs6MT9kAYj68xb8qWXF9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:48 2024 by rpki-client on console-ams.rpki-client.org