Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/VaIEXqEMk128oDwdBw-CI8LRt8g.roa
File: VaIEXqEMk128oDwdBw-CI8LRt8g.roa (raw, json)
Hash identifier: UtVAMeMczAzuIaax8dYSrWZDGLTVudUnIsSjlSUsuU8=
Subject key identifier: 55:A2:04:5E:A1:0C:93:5D:BC:A0:3C:1D:07:0F:82:23:C2:D1:B7:C8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A4665B35BEB51673C35265B6B91292868
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/VaIEXqEMk128oDwdBw-CI8LRt8g.roa
Signing time: Wed 30 Aug 2023 12:23:04 +0000
ROA not before: Wed 30 Aug 2023 12:23:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211318
IP address blocks: 194.87.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:65:b3:5b:eb:51:67:3c:35:26:5b:6b:91:29:28:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 30 12:23:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55a2045ea10c935dbca03c1d070f8223c2d1b7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e5:cb:6b:90:43:99:ce:da:31:dd:76:1a:f8:
bf:0e:6e:23:5a:01:8f:b0:35:c4:7f:8f:79:6c:64:
dc:2b:fd:68:68:f1:fd:c3:60:9b:b2:78:e1:e1:1b:
b1:4c:f2:e8:13:46:7d:de:e2:6d:6c:52:5e:96:87:
5a:ba:dc:22:16:98:ca:de:99:c5:fb:7f:d9:64:d2:
37:88:96:74:e1:c4:4f:80:ce:7b:06:7e:17:d6:a4:
21:fe:5d:e2:8f:61:44:33:6f:a7:be:89:e7:32:d0:
1b:d8:52:58:23:eb:c1:7d:10:fb:dc:60:f8:f4:04:
34:17:ee:bb:e9:10:f5:5c:b9:82:1c:89:f0:b1:51:
16:95:70:c3:01:29:2b:0b:b0:8d:32:22:a3:98:7d:
8b:41:dc:2b:37:f0:4a:eb:97:89:5c:17:f6:fd:d7:
e7:a8:c8:8d:58:90:f4:fe:bd:be:ac:15:2d:7d:67:
d5:49:5e:36:6f:0b:6a:26:c5:96:8d:95:ba:c0:bc:
56:b5:e5:3d:31:7e:93:ce:1e:19:7e:c5:31:6d:a1:
95:42:eb:38:6e:0d:bd:d0:33:45:f0:a1:d3:aa:67:
1a:f2:7e:91:9a:a1:d2:25:d6:cc:96:28:4d:53:d7:
34:e9:d4:8b:35:ec:0b:c6:fa:01:0a:f2:58:82:44:
ed:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A2:04:5E:A1:0C:93:5D:BC:A0:3C:1D:07:0F:82:23:C2:D1:B7:C8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/VaIEXqEMk128oDwdBw-CI8LRt8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.33.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:b3:e7:2c:b7:64:2a:c4:8f:3e:34:56:13:3e:83:b6:cf:d2:
ae:e2:6f:68:ba:c9:a2:77:66:0e:0e:37:c0:0e:2b:3c:b3:8b:
0a:c3:3f:2f:97:91:d2:14:88:1d:fe:f3:01:1a:67:3e:6e:6f:
d3:2b:b6:be:bd:81:58:58:c8:6a:bd:11:6a:00:f7:6b:de:15:
f8:0f:7a:8e:2f:8e:d3:87:a4:d8:4f:0a:41:8f:2e:b3:bc:0d:
c5:53:4e:51:3e:92:e2:90:96:91:20:9f:d1:e0:2e:fc:1e:7e:
23:4c:4c:76:ff:0a:28:3f:be:92:95:12:b1:6b:6e:a8:67:2a:
b3:2e:3a:5a:cc:a5:eb:1a:dd:2c:44:23:c6:70:2c:09:84:d9:
0d:de:89:10:a1:33:9d:39:ab:a6:46:88:c5:99:33:81:f8:14:
53:02:6c:9f:e3:30:c1:d4:bb:03:97:5d:06:ec:0d:d8:8c:1a:
0b:db:bc:75:a1:cb:5f:5b:4c:e6:aa:1e:d2:17:a2:ca:37:ee:
b4:3c:ef:bd:0e:c9:65:48:84:69:a7:89:3c:63:74:ac:19:bf:
2e:ab:14:05:dd:3d:0c:8c:ef:20:f7:76:92:27:15:65:d3:c8:
98:61:e6:90:1c:7c:9b:fc:65:6e:07:4d:5a:30:40:eb:22:f0:
ed:14:f1:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpGZbNb61FnPDUmW2uRKShoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwODMwMTIyMzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWEyMDQ1ZWExMGM5MzVkYmNhMDNjMWQwNzBmODIyM2MyZDFiN2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmuXLa5BDmc7aMd12Gvi/Dm4jWgGP
sDXEf495bGTcK/1oaPH9w2Cbsnjh4RuxTPLoE0Z93uJtbFJelodautwiFpjK3pnF
+3/ZZNI3iJZ04cRPgM57Bn4X1qQh/l3ij2FEM2+nvonnMtAb2FJYI+vBfRD73GD4
9AQ0F+676RD1XLmCHInwsVEWlXDDASkrC7CNMiKjmH2LQdwrN/BK65eJXBf2/dfn
qMiNWJD0/r2+rBUtfWfVSV42bwtqJsWWjZW6wLxWteU9MX6Tzh4ZfsUxbaGVQus4
bg290DNF8KHTqmca8n6RmqHSJdbMlihNU9c06dSLNewLxvoBCvJYgkTtswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFWiBF6hDJNdvKA8HQcPgiPC0bfIMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvVmFJRVhxRU1rMTI4b0R3ZEJ3LUNJOExSdDhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwlchMA0G
CSqGSIb3DQEBCwUAA4IBAQBLs+cst2QqxI8+NFYTPoO2z9Ku4m9ousmid2YODjfA
Dis8s4sKwz8vl5HSFIgd/vMBGmc+bm/TK7a+vYFYWMhqvRFqAPdr3hX4D3qOL47T
h6TYTwpBjy6zvA3FU05RPpLikJaRIJ/R4C78Hn4jTEx2/wooP76SlRKxa26oZyqz
LjpazKXrGt0sRCPGcCwJhNkN3okQoTOdOaumRojFmTOB+BRTAmyf4zDB1LsDl10G
7A3YjBoL27x1octfW0zmqh7SF6LKN+60PO+9DsllSIRpp4k8Y3SsGb8uqxQF3T0M
jO8g93aSJxVl08iYYeaQHHyb/GVuB01aMEDrIvDtFPEi
-----END CERTIFICATE-----
Generated at Thu Aug 31 15:47:13 2023 by rpki-client on console-fra.rpki-client.org