Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GE2lT0x6y4uwnBapNjrEHtVIWZE.roa
File: GE2lT0x6y4uwnBapNjrEHtVIWZE.roa (raw, json)
Hash identifier: lQUkFs70czctGyicFLAhUjVe52fNUpNgrqxQpCNtFcI=
Subject key identifier: 18:4D:A5:4F:4C:7A:CB:8B:B0:9C:16:A9:36:3A:C4:1E:D5:48:59:91
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018682E426B19EF05D8689874C5EF405DB0F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GE2lT0x6y4uwnBapNjrEHtVIWZE.roa
Signing time: Fri 24 Feb 2023 10:07:15 +0000
ROA not before: Fri 24 Feb 2023 10:07:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 194.87.188.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:e4:26:b1:9e:f0:5d:86:89:87:4c:5e:f4:05:db:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 24 10:07:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=184da54f4c7acb8bb09c16a9363ac41ed5485991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:42:64:00:b1:d8:a0:8a:16:e2:25:13:db:
7b:db:54:86:0d:3d:48:32:c8:22:94:82:07:88:2d:
3b:49:dc:2b:7c:6d:01:46:cf:35:d3:f8:f5:53:b2:
2b:1b:c1:60:65:ed:71:e2:12:55:e1:c5:96:c0:ec:
80:50:30:ac:27:9c:d0:3f:81:ad:4c:e0:97:f6:f5:
79:a5:73:c3:3e:66:05:17:1c:01:59:ba:7f:c4:75:
b1:2d:f3:a7:d7:87:fa:c7:5d:cd:36:01:b6:f3:f4:
cb:72:d6:e4:1c:cf:33:98:d1:fc:1a:c4:b7:e9:e5:
f8:72:25:f0:24:bb:43:63:e2:3f:12:c0:5d:50:2f:
5a:96:10:6a:96:aa:ff:a8:e0:2e:7a:82:f7:3b:ad:
5b:3d:db:d4:53:64:64:35:59:9a:61:15:12:fc:98:
2d:5b:8a:5b:99:99:9b:a2:53:76:46:e0:fe:69:a4:
ec:54:39:ae:85:ce:14:7d:8e:ba:eb:a2:9a:0d:7d:
69:e3:01:41:eb:79:d5:4d:80:c8:02:be:a6:a2:b5:
6a:ca:eb:79:b0:95:29:be:90:d4:c7:79:4b:87:dc:
14:e9:88:5b:ae:9c:59:28:c9:27:56:6d:9b:39:bd:
32:68:99:2c:7f:c7:e3:96:32:0a:3e:dd:ab:17:9d:
fc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4D:A5:4F:4C:7A:CB:8B:B0:9C:16:A9:36:3A:C4:1E:D5:48:59:91
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/GE2lT0x6y4uwnBapNjrEHtVIWZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.91.0/24
194.87.188.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:2e:c1:39:8c:2b:ef:db:f3:4f:c1:08:6e:da:ba:31:43:19:
be:63:66:75:62:ca:27:fd:10:e6:7a:30:ed:2a:70:72:79:b9:
c2:f5:18:31:b3:7a:b9:8c:5b:2d:e5:2d:b6:b3:01:b8:2b:97:
12:16:e8:4a:ec:41:6a:27:b3:1a:0e:ae:a7:7c:94:9d:cb:42:
08:ef:04:78:82:ef:e6:41:01:f1:19:a2:2d:6e:61:9f:27:de:
6d:d9:c0:2a:4f:7f:f4:62:8b:63:4b:fe:9f:06:89:93:49:50:
ea:71:1c:26:d6:64:1e:2e:6a:1d:61:4d:4b:17:26:f0:32:53:
62:4b:e7:7b:67:4c:f2:c4:3f:88:39:cb:34:8a:2e:02:94:0e:
46:b0:9e:db:42:44:12:b1:da:8d:22:e2:b1:13:fe:45:aa:fc:
e6:06:70:f9:68:2a:86:fc:78:3a:0f:79:b5:57:06:90:5e:9c:
76:92:20:49:75:61:8d:15:ec:10:1e:3f:9b:ca:81:3a:6d:79:
e4:e2:54:ba:cc:e7:78:2b:85:21:cc:1a:3f:a6:47:c7:0a:6c:
4a:2e:ac:16:83:c6:86:ad:90:b1:69:36:a9:18:32:dd:f8:c3:
de:11:05:da:d7:77:92:61:c0:45:4b:ef:dd:ec:b4:3d:bd:18:
57:7a:6f:b0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYaC5CaxnvBdhomHTF70BdsPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMjI0MTAwNzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODRkYTU0ZjRjN2FjYjhiYjA5YzE2YTkzNjNhYzQxZWQ1NDg1OTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/RCZACx2KCKFuIlE9t721SGDT1I
MsgilIIHiC07SdwrfG0BRs810/j1U7IrG8FgZe1x4hJV4cWWwOyAUDCsJ5zQP4Gt
TOCX9vV5pXPDPmYFFxwBWbp/xHWxLfOn14f6x13NNgG28/TLctbkHM8zmNH8GsS3
6eX4ciXwJLtDY+I/EsBdUC9alhBqlqr/qOAueoL3O61bPdvUU2RkNVmaYRUS/Jgt
W4pbmZmbolN2RuD+aaTsVDmuhc4UfY6666KaDX1p4wFB63nVTYDIAr6morVqyut5
sJUpvpDUx3lLh9wU6YhbrpxZKMknVm2bOb0yaJksf8fjljIKPt2rF538gQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBhNpU9MesuLsJwWqTY6xB7VSFmRMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvR0UybFQweDZ5NHV3bkJhcE5qckVIdFZJV1pFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwldbAwQA
wle8MA0GCSqGSIb3DQEBCwUAA4IBAQAfLsE5jCvv2/NPwQhu2roxQxm+Y2Z1Yson
/RDmejDtKnByebnC9Rgxs3q5jFst5S22swG4K5cSFuhK7EFqJ7MaDq6nfJSdy0II
7wR4gu/mQQHxGaItbmGfJ95t2cAqT3/0YotjS/6fBomTSVDqcRwm1mQeLmodYU1L
FybwMlNiS+d7Z0zyxD+IOcs0ii4ClA5GsJ7bQkQSsdqNIuKxE/5FqvzmBnD5aCqG
/Hg6D3m1VwaQXpx2kiBJdWGNFewQHj+byoE6bXnk4lS6zOd4K4UhzBo/pkfHCmxK
LqwWg8aGrZCxaTapGDLd+MPeEQXa13eSYcBFS+/d7LQ9vRhXem+w
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org