Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_VW2Kbn3kDG0hwJBFhFuZsMerOw.roa
File: _VW2Kbn3kDG0hwJBFhFuZsMerOw.roa (raw, json)
Hash identifier: Hys1hsA3Imsqv8TPy6P77MGwh6a3YhUAs6/k3FusZyU=
Subject key identifier: FD:55:B6:29:B9:F7:90:31:B4:87:02:41:16:11:6E:66:C3:1E:AC:EC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018D21238367FD5BD8CC3405064AE4C89E47
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_VW2Kbn3kDG0hwJBFhFuZsMerOw.roa
Signing time: Fri 19 Jan 2024 09:53:11 +0000
ROA not before: Fri 19 Jan 2024 09:53:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207326
IP address blocks: 194.135.18.0/24 maxlen: 24
194.135.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jan 2024 17:24:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:21:23:83:67:fd:5b:d8:cc:34:05:06:4a:e4:c8:9e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 19 09:53:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd55b629b9f79031b487024116116e66c31eacec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4a:4f:68:82:98:de:95:de:0a:f3:4a:c3:40:
71:69:e5:68:35:2d:d7:04:6d:4e:a6:60:44:0f:ad:
74:73:f6:75:fc:7c:41:39:fa:c7:c7:18:12:09:87:
55:bb:b5:4f:da:5a:44:ab:d1:fe:ac:41:1e:b6:5a:
dc:25:da:29:fa:68:bd:fc:15:8a:28:b3:3d:ef:56:
9d:89:f5:97:d1:e6:8a:53:48:7b:11:41:cb:fb:01:
22:03:e1:6a:f2:04:f5:37:7a:95:94:6e:3b:ca:54:
44:9f:b4:e2:f3:10:25:2b:14:2c:99:5f:4b:fc:a6:
cc:a5:95:83:28:82:a3:9f:34:79:6d:6e:51:5a:b3:
34:95:dd:c6:6f:5c:7f:3b:87:50:51:ca:0f:a1:58:
44:63:74:57:16:11:f9:6d:51:f8:44:58:d3:1b:df:
a0:aa:c6:2e:38:f3:b3:af:c0:c5:a7:60:0c:49:20:
d9:98:f1:81:74:cc:1f:fb:4f:dd:db:fd:06:8f:c5:
8a:83:27:74:00:2b:a5:ca:25:01:8d:aa:7a:d5:50:
12:ee:21:bc:ae:96:1f:6c:71:84:d9:9f:30:7e:9b:
f9:ac:5a:f7:b4:cb:7e:48:4a:ed:79:7a:57:c4:35:
2e:12:b2:74:bc:4b:11:10:28:1f:48:05:c0:76:31:
55:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:55:B6:29:B9:F7:90:31:B4:87:02:41:16:11:6E:66:C3:1E:AC:EC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_VW2Kbn3kDG0hwJBFhFuZsMerOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.18.0/24
194.135.32.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:51:d7:64:77:2b:26:73:46:e4:05:e5:d7:24:b1:08:8e:5c:
67:77:3d:89:c1:38:5e:97:3e:cc:c2:b4:24:cf:f7:2e:58:7b:
8e:e3:ce:c2:5b:06:99:13:9a:14:5c:55:18:96:df:59:96:3a:
d4:5c:46:37:26:f9:6f:b0:84:9f:f6:c3:13:c7:e5:18:1c:55:
c1:ca:b9:3a:6a:82:40:4e:52:c1:a2:42:a9:e1:fb:9d:5f:a7:
53:cb:e5:bb:69:97:35:bd:c9:dd:be:79:6b:f9:c0:fe:ff:5f:
57:03:01:76:39:b8:68:71:5d:82:60:ff:96:6d:97:52:27:d5:
12:4f:f4:95:c7:78:59:d5:c3:e2:00:04:36:87:1f:a5:55:4c:
aa:ed:27:7b:d9:17:09:c2:cc:42:ab:81:7d:97:ba:d6:b8:56:
e0:e2:ec:5c:77:9e:a9:98:cb:07:8e:c7:14:e9:49:4f:46:17:
4c:7e:14:96:87:16:7c:50:32:42:04:7a:e4:a6:e0:f3:b6:79:
77:44:e7:93:91:0e:56:fa:d0:36:13:e0:74:72:3c:d9:1b:ae:
cd:c9:4a:6a:79:50:df:0c:c2:99:33:c1:1f:a5:14:c8:f6:c5:
a1:be:f3:57:61:66:f2:d0:e2:ea:0e:96:f1:0f:f6:bc:11:3a:
62:f9:93:2d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY0hI4Nn/VvYzDQFBkrkyJ5HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwMTE5MDk1MzExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDU1YjYyOWI5Zjc5MDMxYjQ4NzAyNDExNjExNmU2NmMzMWVhY2VjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgkpPaIKY3pXeCvNKw0BxaeVoNS3X
BG1OpmBED610c/Z1/HxBOfrHxxgSCYdVu7VP2lpEq9H+rEEetlrcJdop+mi9/BWK
KLM971adifWX0eaKU0h7EUHL+wEiA+Fq8gT1N3qVlG47ylREn7Ti8xAlKxQsmV9L
/KbMpZWDKIKjnzR5bW5RWrM0ld3Gb1x/O4dQUcoPoVhEY3RXFhH5bVH4RFjTG9+g
qsYuOPOzr8DFp2AMSSDZmPGBdMwf+0/d2/0Gj8WKgyd0ACulyiUBjap61VAS7iG8
rpYfbHGE2Z8wfpv5rFr3tMt+SErteXpXxDUuErJ0vEsRECgfSAXAdjFVFwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFP1Vtim595AxtIcCQRYRbmbDHqzsMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvX1ZXMktibjNrREcwaHdKQkZoRnVac01lck93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwocSAwQA
wocgMA0GCSqGSIb3DQEBCwUAA4IBAQBsUddkdysmc0bkBeXXJLEIjlxndz2JwThe
lz7MwrQkz/cuWHuO487CWwaZE5oUXFUYlt9ZljrUXEY3JvlvsISf9sMTx+UYHFXB
yrk6aoJATlLBokKp4fudX6dTy+W7aZc1vcndvnlr+cD+/19XAwF2ObhocV2CYP+W
bZdSJ9UST/SVx3hZ1cPiAAQ2hx+lVUyq7Sd72RcJwsxCq4F9l7rWuFbg4uxcd56p
mMsHjscU6UlPRhdMfhSWhxZ8UDJCBHrkpuDztnl3ROeTkQ5W+tA2E+B0cjzZG67N
yUpqeVDfDMKZM8EfpRTI9sWhvvNXYWby0OLqDpbxD/a8ETpi+ZMt
-----END CERTIFICATE-----
Generated at Fri Jan 19 21:14:43 2024 by rpki-client on console-fra.rpki-client.org