Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/exOLqMqMic9TLPtvPn5Ca5HrrUE.roa
File: exOLqMqMic9TLPtvPn5Ca5HrrUE.roa (raw, json)
Hash identifier: 3W964xartiJjNLTqycxv0RpByaeN7raOmaEXV09ZBWE=
Subject key identifier: 7B:13:8B:A8:CA:8C:89:CF:53:2C:FB:6F:3E:7E:42:6B:91:EB:AD:41
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A2C26DF55A28071C3B66AE89CD1709893
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/exOLqMqMic9TLPtvPn5Ca5HrrUE.roa
Signing time: Fri 25 Aug 2023 10:04:19 +0000
ROA not before: Fri 25 Aug 2023 10:04:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 192.124.191.0/24 maxlen: 24
194.58.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 12:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:26:df:55:a2:80:71:c3:b6:6a:e8:9c:d1:70:98:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 25 10:04:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b138ba8ca8c89cf532cfb6f3e7e426b91ebad41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9c:ac:71:89:69:7f:5e:66:77:42:6e:ef:b5:
85:85:af:67:35:3f:4e:ca:a2:c4:70:4c:eb:cd:54:
14:49:c6:b8:6f:6b:50:e4:69:d6:be:e7:9a:a6:17:
ae:83:b2:2a:07:c9:2d:82:d9:c5:c6:6e:c9:aa:27:
49:99:d4:c9:27:a9:0d:d6:f4:f7:d5:f6:38:24:ca:
61:c7:9e:d0:36:cb:56:52:6d:f9:25:da:a2:96:50:
d5:18:45:b9:cf:6b:fb:ec:21:2a:4f:d9:c3:00:eb:
4c:81:28:5d:09:10:d9:28:4c:22:e2:72:db:01:c5:
a7:2e:16:1a:2e:f1:16:12:45:12:ac:13:94:33:f7:
0d:f2:65:9e:35:64:81:c5:86:4b:a1:1b:bb:4e:b4:
06:bb:b6:5d:f6:6f:5b:24:af:b1:4e:70:60:a2:d7:
f4:ac:5e:08:67:2f:c7:8a:12:ad:f7:05:04:ad:4c:
70:b5:a2:ac:da:fb:e1:5a:d0:64:b6:bf:ae:43:6d:
43:2d:67:35:3a:8e:b7:67:0c:c2:0b:b8:b7:ad:3b:
65:2a:70:ae:27:b4:03:a0:f4:20:5a:ee:d1:46:d3:
37:c4:9f:be:ea:77:29:f6:0a:39:4f:74:7e:a8:9a:
60:47:ff:c2:d9:e1:dd:79:77:b3:29:d7:d8:5a:e0:
88:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:13:8B:A8:CA:8C:89:CF:53:2C:FB:6F:3E:7E:42:6B:91:EB:AD:41
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/exOLqMqMic9TLPtvPn5Ca5HrrUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.191.0/24
194.58.67.0/24
Signature Algorithm: sha256WithRSAEncryption
61:bd:49:a5:47:a3:f0:ec:8a:8d:eb:eb:24:19:67:c8:c6:e5:
2c:7e:5d:22:74:4e:45:74:1a:d8:4c:65:d2:c3:7a:f0:72:16:
10:03:5f:70:a6:70:81:8f:ae:9f:98:ac:44:78:3b:f2:cf:0d:
60:df:8b:99:21:93:05:76:2d:5b:fe:59:06:e2:19:be:35:ee:
1a:9f:a8:12:97:98:22:7b:57:f9:cb:52:ec:6c:52:d5:ff:ef:
f3:88:b7:2a:7e:ec:c7:ad:6e:10:c2:22:35:76:9a:13:b8:e2:
b2:f0:fd:f9:11:72:35:71:09:f5:be:fc:8b:e7:1c:b7:2c:f3:
23:d2:6c:25:01:5d:bf:7e:8f:81:55:e2:78:ad:76:9b:14:b1:
74:6b:3d:aa:9a:6c:23:ee:4d:36:4d:40:27:d6:c9:04:02:40:
6c:0a:83:ef:8f:ec:71:a3:7a:9a:fd:f9:04:07:c7:42:cc:8b:
f0:e1:78:c4:36:04:50:c6:b1:f5:b9:8c:ee:51:7c:e4:74:70:
04:37:5f:82:f1:5a:38:30:a7:e6:04:09:b3:7b:01:ef:a7:0e:
da:5d:f5:a2:11:38:97:d1:8b:59:6c:e3:eb:60:d6:46:fc:de:
d9:e4:d9:c9:26:41:66:fe:7b:03:f0:7a:10:fd:01:b4:02:c8:
04:f7:46:1d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYosJt9VooBxw7Zq6JzRcJiTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwODI1MTAwNDE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjEzOGJhOGNhOGM4OWNmNTMyY2ZiNmYzZTdlNDI2YjkxZWJhZDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZyscYlpf15md0Ju77WFha9nNT9O
yqLEcEzrzVQUSca4b2tQ5GnWvueapheug7IqB8ktgtnFxm7JqidJmdTJJ6kN1vT3
1fY4JMphx57QNstWUm35JdqillDVGEW5z2v77CEqT9nDAOtMgShdCRDZKEwi4nLb
AcWnLhYaLvEWEkUSrBOUM/cN8mWeNWSBxYZLoRu7TrQGu7Zd9m9bJK+xTnBgotf0
rF4IZy/HihKt9wUErUxwtaKs2vvhWtBktr+uQ21DLWc1Oo63ZwzCC7i3rTtlKnCu
J7QDoPQgWu7RRtM3xJ++6ncp9go5T3R+qJpgR//C2eHdeXezKdfYWuCInQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHsTi6jKjInPUyz7bz5+QmuR661BMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvZXhPTHFNcU1pYzlUTFB0dlBuNUNhNUhyclVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwHy/AwQA
wjpDMA0GCSqGSIb3DQEBCwUAA4IBAQBhvUmlR6Pw7IqN6+skGWfIxuUsfl0idE5F
dBrYTGXSw3rwchYQA19wpnCBj66fmKxEeDvyzw1g34uZIZMFdi1b/lkG4hm+Ne4a
n6gSl5gie1f5y1LsbFLV/+/ziLcqfuzHrW4QwiI1dpoTuOKy8P35EXI1cQn1vvyL
5xy3LPMj0mwlAV2/fo+BVeJ4rXabFLF0az2qmmwj7k02TUAn1skEAkBsCoPvj+xx
o3qa/fkEB8dCzIvw4XjENgRQxrH1uYzuUXzkdHAEN1+C8Vo4MKfmBAmzewHvpw7a
XfWiETiX0YtZbOPrYNZG/N7Z5NnJJkFm/nsD8HoQ/QG0AsgE90Yd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:22 2024 by rpki-client on console-fra.rpki-client.org