Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IMayh1rFEtQXjiLrUoCUK-1BoUs.roa
File: IMayh1rFEtQXjiLrUoCUK-1BoUs.roa (raw, json)
Hash identifier: LRHUxkEG0c8gDu1s1ShPW1zu2TfpDMHG4UhwGLmU6Ow=
Subject key identifier: 20:C6:B2:87:5A:C5:12:D4:17:8E:22:EB:52:80:94:2B:ED:41:A1:4B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018EBC1DD0BFBAF9D0BE5CE859D5E08B7D37
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IMayh1rFEtQXjiLrUoCUK-1BoUs.roa
Signing time: Mon 08 Apr 2024 05:10:54 +0000
ROA not before: Mon 08 Apr 2024 05:10:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216041
IP address blocks: 194.87.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 05:55:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:1d:d0:bf:ba:f9:d0:be:5c:e8:59:d5:e0:8b:7d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 8 05:10:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20c6b2875ac512d4178e22eb5280942bed41a14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2b:f9:41:15:4b:40:ba:32:ac:3c:39:4c:93:
d0:d4:82:53:17:97:8e:a6:81:14:04:26:dc:97:ef:
38:05:1e:2a:1c:04:d7:64:70:3f:93:55:c5:25:bd:
c1:28:df:ef:1e:96:59:f4:aa:8f:e6:1d:82:bd:cb:
cd:7e:01:89:1b:72:dc:f3:22:f8:83:2d:55:98:e4:
83:22:09:90:f6:7d:cc:54:e6:1a:2a:20:5b:5b:c6:
fd:e2:be:e6:44:d4:15:87:b4:7e:3d:67:0e:5c:b7:
77:b7:75:d5:73:82:5f:bf:34:d7:e9:37:47:fa:7e:
8e:d9:64:1c:17:20:f8:aa:b1:2e:68:31:63:1d:49:
88:9a:e7:da:c7:a5:24:dc:a7:45:3d:69:5b:d5:7e:
fb:94:a4:5e:7e:77:03:d9:11:c8:89:63:1f:94:d2:
9c:8d:0d:64:2f:d0:25:27:da:46:1a:e0:0b:20:c0:
ef:bf:07:a6:f9:94:e8:1c:b3:d5:7d:f7:4f:ee:de:
46:a7:c7:07:ca:56:35:1b:6c:f4:78:e8:62:68:10:
92:05:52:e8:fc:96:8b:58:f4:e8:a7:d7:21:5a:b2:
95:7a:58:20:36:d0:f2:0f:be:31:c8:5e:4f:53:20:
00:ba:64:b1:51:ad:aa:4b:56:42:85:79:7b:a0:48:
b9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C6:B2:87:5A:C5:12:D4:17:8E:22:EB:52:80:94:2B:ED:41:A1:4B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IMayh1rFEtQXjiLrUoCUK-1BoUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.201.0/24
Signature Algorithm: sha256WithRSAEncryption
19:04:51:90:91:1e:06:c7:be:2d:85:e5:d1:16:30:0e:53:aa:
c6:d3:61:84:c0:de:49:94:23:00:cf:e8:85:24:5a:8c:33:21:
8e:e9:6b:f0:1e:e7:20:7a:5b:d1:a3:86:ee:fd:12:2b:45:d3:
0b:f4:5f:43:73:f5:14:ad:63:26:80:53:e3:49:2a:64:0d:65:
ff:ec:a1:f6:b4:45:f0:e2:dc:77:ba:bb:39:ba:22:c7:23:7e:
d7:8a:bc:9d:82:25:e1:f8:44:36:39:33:68:5a:65:cb:66:b2:
78:28:db:f4:b4:33:89:66:16:13:eb:3d:14:be:da:bf:fa:f0:
b7:1a:ab:b0:7c:bb:33:25:64:d2:95:62:15:18:19:73:ea:03:
1b:60:2f:18:00:91:06:e3:ba:84:53:4d:08:d0:8c:17:26:b7:
f0:c0:93:7f:f4:6b:ae:3e:ba:41:e3:4b:f3:2c:9a:8e:64:7e:
84:32:3a:22:a7:b7:d7:d6:ac:25:7b:56:6e:a8:81:ea:ef:92:
c7:92:4e:16:c7:8b:eb:df:9e:2a:81:22:a7:11:e9:57:6b:88:
cf:9f:b2:b1:34:e3:d4:df:5b:d4:44:c9:b5:73:c6:ff:dd:0d:
cf:75:93:90:9a:22:56:c6:d8:e2:5f:ad:06:a4:65:38:c9:09:
2a:5e:5e:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY68HdC/uvnQvlzoWdXgi303MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwNDA4MDUxMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGM2YjI4NzVhYzUxMmQ0MTc4ZTIyZWI1MjgwOTQyYmVkNDFhMTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCv5QRVLQLoyrDw5TJPQ1IJTF5eO
poEUBCbcl+84BR4qHATXZHA/k1XFJb3BKN/vHpZZ9KqP5h2CvcvNfgGJG3Lc8yL4
gy1VmOSDIgmQ9n3MVOYaKiBbW8b94r7mRNQVh7R+PWcOXLd3t3XVc4JfvzTX6TdH
+n6O2WQcFyD4qrEuaDFjHUmImufax6Uk3KdFPWlb1X77lKRefncD2RHIiWMflNKc
jQ1kL9AlJ9pGGuALIMDvvwem+ZToHLPVffdP7t5Gp8cHylY1G2z0eOhiaBCSBVLo
/JaLWPTop9chWrKVelggNtDyD74xyF5PUyAAumSxUa2qS1ZChXl7oEi5fwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCDGsodaxRLUF44i61KAlCvtQaFLMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvSU1heWgxckZFdFFYamlMclVvQ1VLLTFCb1VzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwlfJMA0G
CSqGSIb3DQEBCwUAA4IBAQAZBFGQkR4Gx74theXRFjAOU6rG02GEwN5JlCMAz+iF
JFqMMyGO6WvwHucgelvRo4bu/RIrRdML9F9Dc/UUrWMmgFPjSSpkDWX/7KH2tEXw
4tx3urs5uiLHI37XirydgiXh+EQ2OTNoWmXLZrJ4KNv0tDOJZhYT6z0Uvtq/+vC3
GquwfLszJWTSlWIVGBlz6gMbYC8YAJEG47qEU00I0IwXJrfwwJN/9GuuPrpB40vz
LJqOZH6EMjoip7fX1qwle1ZuqIHq75LHkk4Wx4vr354qgSKnEelXa4jPn7KxNOPU
31vURMm1c8b/3Q3PdZOQmiJWxtjiX60GpGU4yQkqXl5r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:12 2024 by rpki-client on console-fra.rpki-client.org