Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SIBXY3QAPQk7lzpMgVVlsYc_6QI.roa
File: SIBXY3QAPQk7lzpMgVVlsYc_6QI.roa (raw, json)
Hash identifier: ZjOJ1cjH7QSYwXDGIYQYBHFemvQCR5NYFGvCWQ2QkWo=
Subject key identifier: 48:80:57:63:74:00:3D:09:3B:97:3A:4C:81:55:65:B1:87:3F:E9:02
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01896D535E01557BB123F15193A18441A66F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SIBXY3QAPQk7lzpMgVVlsYc_6QI.roa
Signing time: Wed 19 Jul 2023 08:45:27 +0000
ROA not before: Wed 19 Jul 2023 08:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198802
IP address blocks: 193.124.2.0/24 maxlen: 24
193.108.115.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
195.133.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 08:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:53:5e:01:55:7b:b1:23:f1:51:93:a1:84:41:a6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 19 08:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4880576374003d093b973a4c815565b1873fe902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c2:4b:ed:8b:a1:79:bf:f7:56:cd:ce:82:13:
79:67:c3:3f:ee:fe:59:36:db:ae:ca:2c:c3:ca:af:
de:ab:2b:d6:81:91:7d:8e:0b:3d:12:7e:af:0a:28:
52:19:7f:03:87:23:b0:37:e6:30:6f:c1:b5:9b:39:
ab:46:6d:97:b2:a3:c5:83:fd:72:01:83:6a:63:9a:
12:43:58:f0:e4:6c:b7:05:a0:6f:f4:d1:38:04:61:
06:32:c5:62:c1:e5:dd:34:cf:85:81:b1:76:16:9a:
eb:9c:3f:f8:18:f5:d5:e9:e3:4c:26:d0:da:84:07:
aa:31:3d:ae:41:17:8c:d2:5f:72:00:91:bb:17:ac:
d1:6f:ef:c9:11:f2:16:d2:61:b3:e7:93:1e:7e:7a:
bb:78:1a:cf:0c:c4:e7:8f:94:aa:e6:db:6a:b0:57:
0c:d1:4b:f2:25:a0:65:4c:47:a1:bc:17:9a:9d:3a:
39:ef:24:44:68:bb:a8:c5:0e:8e:b9:91:31:fc:2d:
28:e4:83:02:ab:88:b6:62:bb:e0:b6:7f:15:88:0c:
e0:25:cf:e8:84:83:9a:47:a1:fa:f5:7f:d8:a8:e6:
2f:32:11:c7:81:53:05:0e:d6:31:01:80:d1:aa:65:
78:14:b3:b3:e4:3f:72:fd:75:d4:79:1a:06:8b:59:
07:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:80:57:63:74:00:3D:09:3B:97:3A:4C:81:55:65:B1:87:3F:E9:02
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/SIBXY3QAPQk7lzpMgVVlsYc_6QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.115.0/24
193.124.2.0/24
195.133.12.0/24
195.133.22.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:83:67:ca:b6:99:f2:57:29:8c:69:4a:91:38:61:02:46:d8:
43:f0:38:c5:88:42:ee:cb:27:6b:3b:69:8d:30:8d:a4:e3:77:
8d:ba:32:1c:aa:58:21:cf:9e:1b:31:b6:cf:c9:a8:b5:ac:bb:
d5:9b:3b:73:60:d7:b2:3d:13:ec:db:20:b7:45:80:17:09:0a:
1b:c6:eb:59:2a:ad:c8:16:14:ff:3f:f5:26:c5:52:40:21:f7:
15:dc:a6:53:d0:80:7d:5f:c0:88:61:38:3e:2f:c7:ed:24:f4:
d7:b0:5d:a2:54:c2:56:f0:37:aa:80:1c:26:e6:4c:5e:f1:6b:
42:72:f5:0d:85:75:f4:80:ee:44:cf:52:83:43:81:42:07:43:
1b:87:7a:21:3f:35:4b:31:3c:5a:f4:9c:34:9c:90:f5:23:9c:
c0:ff:19:91:b2:e1:40:93:9a:e9:17:9e:b6:90:dd:33:02:17:
e2:fd:46:69:a0:8f:3d:cf:33:cb:dd:8d:1d:41:34:0e:14:b8:
db:ed:1a:18:43:ac:46:1c:00:1b:68:ba:5e:ca:b5:c8:c3:23:
1e:d6:b3:f0:e9:6c:b5:73:84:1b:81:20:d4:b0:91:6d:dd:ec:
a7:02:8c:b6:dc:93:2c:7e:bc:ca:c4:db:ed:c2:f2:99:14:6b:
f7:74:1a:f6
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYltU14BVXuxI/FRk6GEQaZvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNzE5MDg0NTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODgwNTc2Mzc0MDAzZDA5M2I5NzNhNGM4MTU1NjViMTg3M2ZlOTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgcJL7Yuheb/3Vs3OghN5Z8M/7v5Z
NtuuyizDyq/eqyvWgZF9jgs9En6vCihSGX8DhyOwN+Ywb8G1mzmrRm2XsqPFg/1y
AYNqY5oSQ1jw5Gy3BaBv9NE4BGEGMsViweXdNM+FgbF2FprrnD/4GPXV6eNMJtDa
hAeqMT2uQReM0l9yAJG7F6zRb+/JEfIW0mGz55Mefnq7eBrPDMTnj5Sq5ttqsFcM
0UvyJaBlTEehvBeanTo57yREaLuoxQ6OuZEx/C0o5IMCq4i2Yrvgtn8ViAzgJc/o
hIOaR6H69X/YqOYvMhHHgVMFDtYxAYDRqmV4FLOz5D9y/XXUeRoGi1kHPQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFEiAV2N0AD0JO5c6TIFVZbGHP+kCMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvU0lCWFkzUUFQUWs3bHpwTWdWVmxzWWNfNlFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAwWxzAwQA
wXwCAwQAw4UMAwQAw4UWMA0GCSqGSIb3DQEBCwUAA4IBAQB9g2fKtpnyVymMaUqR
OGECRthD8DjFiELuyydrO2mNMI2k43eNujIcqlghz54bMbbPyai1rLvVmztzYNey
PRPs2yC3RYAXCQobxutZKq3IFhT/P/UmxVJAIfcV3KZT0IB9X8CIYTg+L8ftJPTX
sF2iVMJW8DeqgBwm5kxe8WtCcvUNhXX0gO5Ez1KDQ4FCB0Mbh3ohPzVLMTxa9Jw0
nJD1I5zA/xmRsuFAk5rpF562kN0zAhfi/UZpoI89zzPL3Y0dQTQOFLjb7RoYQ6xG
HAAbaLpeyrXIwyMe1rPw6Wy1c4QbgSDUsJFt3eynAoy23JMsfrzKxNvtwvKZFGv3
dBr2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org