Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Re2578Q8i70SvY4GhGq6BSPkEUs.roa
File: Re2578Q8i70SvY4GhGq6BSPkEUs.roa (raw, json)
Hash identifier: ue6OGAG/li8BESLt3VEE2EDYH3OcWld0Rg9EFqcqdig=
Subject key identifier: 45:ED:B9:EF:C4:3C:8B:BD:12:BD:8E:06:84:6A:BA:05:23:E4:11:4B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A8DA089780D19D44E8AD1D02D788B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Re2578Q8i70SvY4GhGq6BSPkEUs.roa
Signing time: Tue 02 Jan 2024 12:33:55 +0000
ROA not before: Tue 02 Jan 2024 12:33:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210773
IP address blocks: 212.193.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 19:07:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:8d:a0:89:78:0d:19:d4:4e:8a:d1:d0:2d:78:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45edb9efc43c8bbd12bd8e06846aba0523e4114b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:94:35:91:87:6e:7d:3a:0e:cd:22:ea:c3:
f0:73:bd:d3:47:37:aa:bc:d1:58:89:d0:10:64:21:
22:ab:2a:46:cb:5a:4e:53:7e:24:b3:db:74:b6:35:
d8:30:16:c5:17:e7:82:87:22:6d:63:f0:20:12:3b:
05:32:60:d2:9b:06:cc:99:61:52:a1:1b:ae:41:f2:
0a:02:c4:02:3f:32:64:34:d5:40:75:80:81:9d:20:
bb:8b:a8:1a:a6:84:aa:41:5f:9f:d8:a2:fc:c3:5a:
3c:9f:37:79:2d:84:11:08:8a:9e:52:71:9c:98:59:
0b:83:74:4b:51:dc:c0:e4:03:1f:01:4f:11:46:df:
b2:65:ab:37:9f:1f:ff:ad:f8:80:89:72:d7:83:41:
5b:d1:60:5b:f5:c9:70:ed:cd:94:d0:ce:bf:36:51:
c0:60:59:97:06:cf:a9:33:54:2b:36:ee:d3:6f:b2:
87:65:a9:81:83:f2:a0:af:6d:fd:0a:b4:d1:b9:a6:
91:62:2d:93:64:20:4c:4c:c4:a5:06:13:00:ec:ca:
6a:37:d6:b8:5e:08:8a:4a:ce:c8:40:09:c0:b6:6f:
f7:f4:db:5e:8c:78:40:62:17:15:bc:53:10:fc:d7:
6e:5a:97:9a:5f:2c:be:ca:d2:49:50:39:b6:26:19:
97:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:ED:B9:EF:C4:3C:8B:BD:12:BD:8E:06:84:6A:BA:05:23:E4:11:4B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Re2578Q8i70SvY4GhGq6BSPkEUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.4.0/24
Signature Algorithm: sha256WithRSAEncryption
10:56:e3:3f:19:79:0a:ff:43:bd:e6:2d:08:00:bb:d5:a6:c4:
05:06:a9:f6:38:75:e5:6c:59:d5:45:7e:c0:a7:e5:c8:80:2e:
3f:eb:bd:29:68:a8:ac:6f:84:3d:0f:1d:77:0e:f0:e5:70:8d:
f5:90:02:23:07:1f:4d:f9:5a:9a:b7:5e:ba:62:d1:f0:c2:3c:
bc:00:de:8a:78:e3:2e:67:b6:a1:7f:52:52:83:ec:25:4c:e4:
44:10:1e:cf:a9:f4:6f:e7:b0:7d:d3:ae:f0:c3:0c:57:2f:77:
f7:a1:9c:61:5e:31:44:e9:e5:8a:6d:b2:13:3a:47:41:3c:ca:
a1:91:27:74:8c:dd:d3:1e:f9:85:bb:c8:4c:f2:e1:07:66:b4:
d2:79:2f:9a:30:b5:44:70:92:2a:ea:8a:be:cb:28:08:cd:98:
bf:5c:49:64:b6:dd:2a:9a:e1:96:e2:98:bd:82:65:56:a3:cc:
54:54:5d:cf:af:c6:4f:bc:9c:f5:6f:4d:46:b6:70:e8:84:e9:
21:b4:d8:74:ea:db:22:6e:07:00:ca:6b:2e:76:41:e9:af:0a:
23:2f:2f:a9:50:25:6c:25:3d:ba:fe:67:16:7b:c0:69:a8:64:
1b:b8:70:34:dc:77:5b:e7:40:58:65:c0:05:cf:ae:c9:14:20:
f3:d9:8a:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKo2giXgNGdROitHQLXiLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwMTAyMTIzMzU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWVkYjllZmM0M2M4YmJkMTJiZDhlMDY4NDZhYmEwNTIzZTQxMTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslqUNZGHbn06Ds0i6sPwc73TRzeq
vNFYidAQZCEiqypGy1pOU34ks9t0tjXYMBbFF+eChyJtY/AgEjsFMmDSmwbMmWFS
oRuuQfIKAsQCPzJkNNVAdYCBnSC7i6gapoSqQV+f2KL8w1o8nzd5LYQRCIqeUnGc
mFkLg3RLUdzA5AMfAU8RRt+yZas3nx//rfiAiXLXg0Fb0WBb9clw7c2U0M6/NlHA
YFmXBs+pM1QrNu7Tb7KHZamBg/Kgr239CrTRuaaRYi2TZCBMTMSlBhMA7MpqN9a4
XgiKSs7IQAnAtm/39NtejHhAYhcVvFMQ/NduWpeaXyy+ytJJUDm2JhmXtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEXtue/EPIu9Er2OBoRqugUj5BFLMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvUmUyNTc4UThpNzBTdlk0R2hHcTZCU1BrRVVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MEEMA0G
CSqGSIb3DQEBCwUAA4IBAQAQVuM/GXkK/0O95i0IALvVpsQFBqn2OHXlbFnVRX7A
p+XIgC4/670paKisb4Q9Dx13DvDlcI31kAIjBx9N+Vqat166YtHwwjy8AN6KeOMu
Z7ahf1JSg+wlTOREEB7PqfRv57B9067wwwxXL3f3oZxhXjFE6eWKbbITOkdBPMqh
kSd0jN3THvmFu8hM8uEHZrTSeS+aMLVEcJIq6oq+yygIzZi/XElktt0qmuGW4pi9
gmVWo8xUVF3Pr8ZPvJz1b01GtnDohOkhtNh06tsibgcAymsudkHprwojLy+pUCVs
JT26/mcWe8BpqGQbuHA03Hdb50BYZcAFz67JFCDz2Yqb
-----END CERTIFICATE-----
Generated at Sun Apr 14 21:51:39 2024 by rpki-client on console-fra.rpki-client.org