Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/73J_l6cMg9rwUPgaqGqCzuSj93Q.roa
File: 73J_l6cMg9rwUPgaqGqCzuSj93Q.roa (raw, json)
Hash identifier: MjcFX46Pn3hP3PW2kOOXTZZl6nWDPXfdX8HgLANjgCI=
Subject key identifier: EF:72:7F:97:A7:0C:83:DA:F0:50:F8:1A:A8:6A:82:CE:E4:A3:F7:74
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01904A190FC621CF5FA6FC631B2ED39E07AD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/73J_l6cMg9rwUPgaqGqCzuSj93Q.roa
Signing time: Mon 24 Jun 2024 11:54:34 +0000
ROA not before: Mon 24 Jun 2024 11:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 193.222.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 14:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4a:19:0f:c6:21:cf:5f:a6:fc:63:1b:2e:d3:9e:07:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 24 11:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef727f97a70c83daf050f81aa86a82cee4a3f774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:9c:6d:35:17:9c:a6:eb:bf:34:c4:be:ef:
5f:bd:0a:4b:b0:1e:2a:bc:49:43:b1:14:ff:54:a5:
9d:29:a7:ae:2b:15:81:88:42:6c:6f:be:8a:0d:85:
59:12:aa:1a:4c:78:43:ac:c8:9b:6f:5e:4d:62:a6:
d1:f4:eb:75:da:ea:7a:d0:4c:50:b8:34:63:2c:19:
eb:5b:52:2e:66:43:27:fa:de:f4:68:f0:b6:42:f7:
b4:48:5c:a5:d9:b6:b2:52:d7:af:80:f1:97:c9:25:
86:f4:0e:27:f1:98:89:81:7b:01:eb:09:52:66:27:
04:4c:4a:ea:c1:8c:7e:f9:98:ec:00:2e:06:af:f1:
6a:00:16:b4:40:01:37:b0:c5:48:02:be:b0:cc:86:
d0:75:74:c0:d7:1f:42:5c:32:28:15:af:b5:41:12:
c5:66:a5:52:5e:4d:18:f3:3c:88:c0:7f:02:9b:51:
15:2d:c7:41:24:46:a3:96:d6:cf:6c:b9:c0:46:4c:
16:43:aa:88:1f:18:3d:ed:de:a8:c5:ee:b2:c9:b2:
77:07:20:13:fe:a0:0d:a9:25:9e:59:22:07:42:1c:
28:54:0d:6b:8f:e0:5d:b7:a1:73:75:61:0c:02:00:
32:1f:86:29:0c:4d:7b:4e:ea:05:62:81:72:50:d5:
a7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:72:7F:97:A7:0C:83:DA:F0:50:F8:1A:A8:6A:82:CE:E4:A3:F7:74
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/73J_l6cMg9rwUPgaqGqCzuSj93Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.99.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:3a:ce:d7:0b:fd:f0:f1:c5:62:95:ea:24:ac:b1:4e:55:96:
63:a3:01:d7:b8:ca:b1:bf:7d:3c:c6:2b:df:a1:d6:16:ca:09:
5c:ad:81:d6:e8:87:f3:0b:f8:e3:63:8f:af:df:36:af:b5:f9:
4c:39:bb:51:40:b0:f6:80:1f:d8:c9:59:f9:ac:cd:79:1d:1e:
a8:39:d2:a7:d6:6b:1f:2e:da:8d:16:7a:9b:84:97:5d:f5:1d:
a2:ae:ac:bb:6c:b9:63:60:0e:35:98:fb:52:37:f3:8a:2a:bf:
1f:2d:3c:db:20:3a:49:c6:d7:6d:19:26:45:46:85:ea:1f:70:
50:5f:1d:94:b5:5e:3b:7b:70:85:96:3f:a1:90:72:49:d3:74:
8d:11:ff:e4:54:10:4d:3c:23:d7:47:17:ad:28:d6:ff:01:9f:
77:21:bc:e8:03:8d:77:7f:13:5f:8a:da:d1:6f:a9:05:42:e2:
78:8e:b3:be:2d:72:9d:45:93:aa:9c:17:79:33:df:b6:81:c5:
c4:75:67:be:41:2e:e9:ec:08:f9:a0:13:e2:b4:33:f7:61:2f:
87:81:d6:ed:fd:89:3f:cf:da:de:9b:ca:91:fb:43:37:80:cb:
75:b5:25:15:c8:15:1d:09:cd:a3:fb:30:20:ca:6b:76:53:82:
dc:9a:19:bc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBKGQ/GIc9fpvxjGy7TngetMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNjI0MTE1NDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjcyN2Y5N2E3MGM4M2RhZjA1MGY4MWFhODZhODJjZWU0YTNmNzc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsq2cbTUXnKbrvzTEvu9fvQpLsB4q
vElDsRT/VKWdKaeuKxWBiEJsb76KDYVZEqoaTHhDrMibb15NYqbR9Ot12up60ExQ
uDRjLBnrW1IuZkMn+t70aPC2Qve0SFyl2bayUtevgPGXySWG9A4n8ZiJgXsB6wlS
ZicETErqwYx++ZjsAC4Gr/FqABa0QAE3sMVIAr6wzIbQdXTA1x9CXDIoFa+1QRLF
ZqVSXk0Y8zyIwH8Cm1EVLcdBJEajltbPbLnARkwWQ6qIHxg97d6oxe6yybJ3ByAT
/qANqSWeWSIHQhwoVA1rj+Bdt6FzdWEMAgAyH4YpDE17TuoFYoFyUNWnEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO9yf5enDIPa8FD4Gqhqgs7ko/d0MB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvNzNKX2w2Y01nOXJ3VVBnYXFHcUN6dVNqOTNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwd5jMA0G
CSqGSIb3DQEBCwUAA4IBAQA7Os7XC/3w8cVileokrLFOVZZjowHXuMqxv308xivf
odYWyglcrYHW6IfzC/jjY4+v3zavtflMObtRQLD2gB/YyVn5rM15HR6oOdKn1msf
LtqNFnqbhJdd9R2irqy7bLljYA41mPtSN/OKKr8fLTzbIDpJxtdtGSZFRoXqH3BQ
Xx2UtV47e3CFlj+hkHJJ03SNEf/kVBBNPCPXRxetKNb/AZ93IbzoA413fxNfitrR
b6kFQuJ4jrO+LXKdRZOqnBd5M9+2gcXEdWe+QS7p7Aj5oBPitDP3YS+Hgdbt/Yk/
z9rem8qR+0M3gMt1tSUVyBUdCc2j+zAgymt2U4Lcmhm8
-----END CERTIFICATE-----
Generated at Wed Aug 21 19:59:36 2024 by rpki-client on console-ams.rpki-client.org