Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/b_8VsOAQHIwax1_GVvVRVcGksIQ.roa
File: b_8VsOAQHIwax1_GVvVRVcGksIQ.roa (raw, json)
Hash identifier: bK+Xns6lNswY0UCipartXtzjZrNw9EtloinahrnH9to=
Subject key identifier: 6F:FF:15:B0:E0:10:1C:8C:1A:C7:5F:C6:56:F5:51:55:C1:A4:B0:84
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 018CC86F864F3FCC61D6F1E9EF6DE9722F5B
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/b_8VsOAQHIwax1_GVvVRVcGksIQ.roa
Signing time: Tue 02 Jan 2024 04:30:01 +0000
ROA not before: Tue 02 Jan 2024 04:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60812
IP address blocks: 193.57.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 14:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:86:4f:3f:cc:61:d6:f1:e9:ef:6d:e9:72:2f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: Jan 2 04:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fff15b0e0101c8c1ac75fc656f55155c1a4b084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fb:35:8e:b3:3f:9e:cd:90:47:5b:73:1a:a3:
56:be:e2:06:08:97:7f:aa:0b:69:14:6d:f6:b2:a6:
61:cc:61:c6:19:e7:ea:85:05:cc:21:2d:36:2c:6a:
f4:70:a1:21:a9:57:fd:54:61:e6:72:dc:d6:1e:ec:
87:f2:ec:03:40:78:94:9c:85:37:f0:fd:26:2d:71:
e6:e8:c2:18:7d:5c:d0:e2:df:70:47:de:d6:df:60:
6a:05:b6:cf:81:4b:04:96:9a:66:1a:8f:62:1e:c4:
f1:14:80:b5:01:3e:7f:30:2e:34:51:db:b4:21:f4:
6d:13:e4:9a:04:fb:8c:22:1f:77:69:e9:d9:cd:04:
c5:6c:f8:0d:94:04:64:99:70:91:c7:01:ce:e1:4e:
df:64:53:03:23:7d:d5:83:f1:9e:49:2d:2d:e0:20:
5c:40:04:e9:58:b9:1a:2e:9c:c6:b7:28:c0:88:f6:
c3:9f:36:cd:8d:d7:f6:c4:a3:29:8a:56:3a:be:3c:
fa:53:0d:4e:62:6d:94:be:f8:5c:b5:b4:75:6c:aa:
3a:3d:04:e7:9e:c5:a5:a5:27:92:a9:b8:50:2f:3f:
60:19:08:b8:0c:2e:c2:a5:89:4a:21:6f:23:c1:5a:
0a:e7:9e:7c:0a:e9:ce:00:9f:47:63:5d:c8:b3:d3:
2a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:FF:15:B0:E0:10:1C:8C:1A:C7:5F:C6:56:F5:51:55:C1:A4:B0:84
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/b_8VsOAQHIwax1_GVvVRVcGksIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.47.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:4c:08:57:af:28:57:89:8b:af:2a:21:bb:e6:61:88:27:27:
e3:c5:c0:07:54:10:40:47:f9:63:56:3b:65:0c:84:38:e1:68:
3d:dd:3b:e7:28:77:d6:bc:54:fa:0b:da:40:d6:ea:a7:3c:14:
d5:e4:f3:b8:f5:7e:ce:db:82:a3:26:8d:73:29:c1:d9:fb:46:
87:b3:8a:9d:b6:12:a5:e9:49:c9:13:a2:50:28:7a:8b:cd:ca:
61:03:2d:02:6b:f3:2c:b6:8a:fd:50:6e:40:1b:5d:a7:61:49:
99:9b:ab:7d:68:5d:39:69:d5:ba:87:22:7c:d3:99:78:d6:aa:
a4:9c:f2:71:1b:47:6b:69:d1:e7:cc:05:45:cf:14:2f:ed:e3:
85:43:40:22:62:e8:29:c8:1c:e5:b5:13:bb:30:9d:de:80:42:
55:47:5a:b8:d0:20:3b:07:fa:d7:f7:9b:d0:15:eb:04:ad:e6:
b6:5f:78:23:63:cf:07:b0:5e:8d:7e:00:46:ce:97:e6:57:bc:
6b:63:74:3d:19:e7:90:0e:b0:5e:0e:79:dc:04:e2:d6:64:e4:
bb:9f:92:18:d3:5d:7d:d5:72:68:84:ec:aa:ea:dc:2b:e1:dd:
fb:92:11:0a:ac:28:00:c1:e4:04:35:ab:39:cf:2d:08:68:76:
ac:ec:58:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIb4ZPP8xh1vHp723pci9bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YWYwOTE4NThiYjk5NjUxNzY0Mzk5YzY1NjVkZjdhMDgz
NGRiYWQwHhcNMjQwMTAyMDQzMDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmZmMTViMGUwMTAxYzhjMWFjNzVmYzY1NmY1NTE1NWMxYTRiMDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvs1jrM/ns2QR1tzGqNWvuIGCJd/
qgtpFG32sqZhzGHGGefqhQXMIS02LGr0cKEhqVf9VGHmctzWHuyH8uwDQHiUnIU3
8P0mLXHm6MIYfVzQ4t9wR97W32BqBbbPgUsElppmGo9iHsTxFIC1AT5/MC40Udu0
IfRtE+SaBPuMIh93aenZzQTFbPgNlARkmXCRxwHO4U7fZFMDI33Vg/GeSS0t4CBc
QATpWLkaLpzGtyjAiPbDnzbNjdf2xKMpilY6vjz6Uw1OYm2UvvhctbR1bKo6PQTn
nsWlpSeSqbhQLz9gGQi4DC7CpYlKIW8jwVoK5558CunOAJ9HY13Is9MqZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG//FbDgEByMGsdfxlb1UVXBpLCEMB8GA1UdIwQY
MBaAFAivCRhYu5llF2Q5nGVl33oINNutMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0s4SkdGaTdtV1VYWkRtY1pXWGZlZ2cwMjYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS83MDBmZDMtYzM2MC00OGFiLThhMDYt
NTYxMjliN2RjMDE4LzEvYl84VnNPQVFISXdheDFfR1Z2VlJWY0drc0lRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS83MDBmZDMtYzM2MC00OGFiLThhMDYtNTYxMjliN2RjMDE4
LzEvQ0s4SkdGaTdtV1VYWkRtY1pXWGZlZ2cwMjYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTkvMA0G
CSqGSIb3DQEBCwUAA4IBAQCzTAhXryhXiYuvKiG75mGIJyfjxcAHVBBAR/ljVjtl
DIQ44Wg93TvnKHfWvFT6C9pA1uqnPBTV5PO49X7O24KjJo1zKcHZ+0aHs4qdthKl
6UnJE6JQKHqLzcphAy0Ca/Mstor9UG5AG12nYUmZm6t9aF05adW6hyJ805l41qqk
nPJxG0dradHnzAVFzxQv7eOFQ0AiYugpyBzltRO7MJ3egEJVR1q40CA7B/rX95vQ
FesErea2X3gjY88HsF6NfgBGzpfmV7xrY3Q9GeeQDrBeDnncBOLWZOS7n5IY0119
1XJohOyq6twr4d37khEKrCgAweQENas5zy0IaHas7Fig
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:27 2024 by rpki-client on console-ams.rpki-client.org