Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ggpqwMkXwmThsN4t5U2a01um27g.roa
File: ggpqwMkXwmThsN4t5U2a01um27g.roa (raw, json)
Hash identifier: 1q6XP+KCv07tq4DAMOeVOu+r1cImEVy407CI9JxclnY=
Subject key identifier: 82:0A:6A:C0:C9:17:C2:64:E1:B0:DE:2D:E5:4D:9A:D3:5B:A6:DB:B8
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189DE0218143F7CC077C63CD449EAB1D167
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ggpqwMkXwmThsN4t5U2a01um27g.roa
Signing time: Thu 10 Aug 2023 05:53:46 +0000
ROA not before: Thu 10 Aug 2023 05:53:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208287
IP address blocks: 212.193.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:de:02:18:14:3f:7c:c0:77:c6:3c:d4:49:ea:b1:d1:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 10 05:53:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=820a6ac0c917c264e1b0de2de54d9ad35ba6dbb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bd:94:cc:a3:a9:c8:6c:ae:ce:ed:dc:72:9b:
d1:9d:13:37:68:48:01:4c:e4:b3:fe:d3:59:bc:c4:
aa:63:b6:a2:2b:16:6e:0f:f7:7b:c3:e7:d3:e4:09:
87:ba:1e:4b:ba:bf:0a:a6:1d:11:18:cf:d6:64:01:
e3:ab:c4:8b:b1:e6:e0:39:e0:b7:17:32:20:52:f3:
20:cc:cf:9f:40:d1:7c:6d:0a:43:ec:e7:a7:ba:e1:
7c:70:f5:67:49:ff:96:97:27:ad:8a:c8:65:bd:f2:
19:7a:56:f0:76:6c:e2:ab:93:50:d1:fc:bd:85:bc:
38:80:9a:f7:ad:17:5f:82:1c:56:a3:ba:d3:a6:cd:
f2:22:b3:cf:68:d6:e1:89:c9:4f:a4:fc:a6:b1:98:
cc:38:1a:76:fb:8a:64:8f:73:cd:b6:37:ad:74:92:
8d:d6:02:96:83:f5:85:34:c3:d8:20:29:a4:0c:5e:
6f:42:84:9e:83:1b:8f:d2:34:b1:ae:ad:db:28:06:
cd:69:e4:4c:2c:87:a8:6f:a4:84:44:c7:74:37:62:
10:e8:c8:8e:f1:50:71:c8:93:36:d0:a4:b5:0e:a7:
af:4e:05:48:30:90:b3:79:e6:56:5a:17:b9:88:27:
35:f8:a5:39:7d:ad:fc:21:2d:57:32:9d:eb:9c:05:
e2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0A:6A:C0:C9:17:C2:64:E1:B0:DE:2D:E5:4D:9A:D3:5B:A6:DB:B8
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ggpqwMkXwmThsN4t5U2a01um27g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.31.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:cf:a9:ed:6a:dc:f9:49:7a:1c:88:9a:c2:e5:e4:ee:5f:ac:
c2:3b:8b:bf:cc:47:44:88:f8:c0:9b:ba:7c:9c:a0:d2:a7:af:
2e:31:12:6f:b6:dc:d1:1f:2f:e6:ac:3a:86:ba:f9:72:8f:0f:
40:13:b3:8f:06:e5:67:ca:df:ad:bc:ac:0f:0a:7c:89:c4:c0:
d6:4f:67:0f:3f:6c:26:d1:a5:30:72:2c:02:d0:c1:82:1b:be:
3f:16:a5:28:84:a1:44:ba:aa:1a:80:1c:fb:87:6d:26:49:63:
7c:2d:18:fd:6a:e2:6d:ca:7f:b6:4e:af:55:63:ec:be:b5:d3:
7e:76:02:73:41:1b:0d:a8:1d:30:af:99:c8:70:71:46:60:f0:
7b:7b:d0:f6:39:d0:4e:4b:10:56:95:d0:20:b8:56:c1:fb:e0:
f2:82:f2:25:de:85:da:56:4e:33:6d:9f:19:3a:2e:44:a4:82:
8a:47:d0:d7:3d:46:71:d0:a0:b0:80:b4:67:c6:ba:17:5a:98:
16:fc:79:ac:c2:b7:48:15:0e:e4:12:19:16:3f:33:3a:48:bb:
92:b4:77:0e:32:e6:14:c2:45:6d:f9:75:60:7c:9c:72:1b:ca:
de:76:21:8e:2a:f3:86:ae:88:48:71:37:b6:a4:27:86:0b:32:
d6:2a:dc:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYneAhgUP3zAd8Y81EnqsdFnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwODEwMDU1MzQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjBhNmFjMGM5MTdjMjY0ZTFiMGRlMmRlNTRkOWFkMzViYTZkYmI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn72UzKOpyGyuzu3ccpvRnRM3aEgB
TOSz/tNZvMSqY7aiKxZuD/d7w+fT5AmHuh5Lur8Kph0RGM/WZAHjq8SLsebgOeC3
FzIgUvMgzM+fQNF8bQpD7OenuuF8cPVnSf+WlyetishlvfIZelbwdmziq5NQ0fy9
hbw4gJr3rRdfghxWo7rTps3yIrPPaNbhiclPpPymsZjMOBp2+4pkj3PNtjetdJKN
1gKWg/WFNMPYICmkDF5vQoSegxuP0jSxrq3bKAbNaeRMLIeob6SERMd0N2IQ6MiO
8VBxyJM20KS1DqevTgVIMJCzeeZWWhe5iCc1+KU5fa38IS1XMp3rnAXiKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIIKasDJF8Jk4bDeLeVNmtNbptu4MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvZ2dwcXdNa1h3bVRoc040dDVVMmEwMXVtMjdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MEfMA0G
CSqGSIb3DQEBCwUAA4IBAQA6z6ntatz5SXociJrC5eTuX6zCO4u/zEdEiPjAm7p8
nKDSp68uMRJvttzRHy/mrDqGuvlyjw9AE7OPBuVnyt+tvKwPCnyJxMDWT2cPP2wm
0aUwciwC0MGCG74/FqUohKFEuqoagBz7h20mSWN8LRj9auJtyn+2Tq9VY+y+tdN+
dgJzQRsNqB0wr5nIcHFGYPB7e9D2OdBOSxBWldAguFbB++DygvIl3oXaVk4zbZ8Z
Oi5EpIKKR9DXPUZx0KCwgLRnxroXWpgW/HmswrdIFQ7kEhkWPzM6SLuStHcOMuYU
wkVt+XVgfJxyG8rediGOKvOGrohIcTe2pCeGCzLWKtwN
-----END CERTIFICATE-----
Generated at Tue Aug 22 11:16:27 2023 by rpki-client on console-ams.rpki-client.org