Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/R8bTv_XZAAdg0vZIMKcigSG9OTI.roa
File: R8bTv_XZAAdg0vZIMKcigSG9OTI.roa (raw, json)
Hash identifier: Du/HSufKX+CbUon7X0TUh8CXhhj/8VAaSRlRfS/UElE=
Subject key identifier: 47:C6:D3:BF:F5:D9:00:07:60:D2:F6:48:30:A7:22:81:21:BD:39:32
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 018828C19D581ECB2A90C5F94B6299867CBE
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/R8bTv_XZAAdg0vZIMKcigSG9OTI.roa
Signing time: Wed 17 May 2023 08:09:17 +0000
ROA not before: Wed 17 May 2023 08:09:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211201
IP address blocks: 193.33.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:28:c1:9d:58:1e:cb:2a:90:c5:f9:4b:62:99:86:7c:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: May 17 08:09:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47c6d3bff5d9000760d2f64830a7228121bd3932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:41:45:22:2a:d0:8d:d9:23:b0:49:b2:a4:c2:
f0:b0:56:8b:16:5a:8d:43:99:c2:56:19:e6:5d:37:
f2:d1:5e:0e:be:3c:a2:2b:5e:d3:05:74:91:6d:92:
43:f3:54:8f:af:36:4d:ee:19:ab:94:70:01:67:50:
95:1f:2c:74:0a:3e:62:55:07:c9:8f:24:b4:35:1b:
a9:73:3f:df:74:b0:96:1a:bb:9c:1a:48:62:2e:b5:
3b:0f:ec:b5:6b:32:28:10:89:6e:d9:9f:cb:7d:f9:
09:8a:b9:b5:ac:35:6b:10:4a:39:f1:e2:a7:fe:9d:
b1:68:97:d3:9e:af:e4:69:c5:a4:c9:f5:59:f2:4c:
24:40:bf:6f:70:9a:01:ac:ef:96:9d:be:0e:7c:1f:
d5:e4:2d:8e:a3:db:e4:b5:0f:7f:de:28:e9:01:45:
0b:92:f5:9a:9c:6c:60:00:10:f7:69:fc:1f:ad:12:
04:1d:70:72:34:66:5b:de:f6:40:b7:45:a5:32:dc:
94:96:e6:13:84:f6:fa:69:c5:24:88:31:f8:35:8f:
7a:13:38:7a:23:94:16:47:a9:ad:bc:52:42:a6:ae:
90:3b:8b:4b:c1:ed:9c:9a:0e:c4:65:53:93:a8:1b:
8b:b5:26:bd:e3:68:4d:c3:10:f0:0b:77:52:1a:b8:
f4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C6:D3:BF:F5:D9:00:07:60:D2:F6:48:30:A7:22:81:21:BD:39:32
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/R8bTv_XZAAdg0vZIMKcigSG9OTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.96.0/24
Signature Algorithm: sha256WithRSAEncryption
87:be:53:60:a9:fe:26:73:55:06:69:e9:2f:79:72:c9:f4:4f:
93:60:7d:13:d9:76:5a:33:95:6e:13:15:b7:d8:18:e3:1c:ca:
e3:65:6e:42:8d:93:ad:ae:50:18:f0:8d:bc:85:b7:99:f7:1c:
8b:94:91:aa:5b:44:76:60:ac:91:f7:2f:83:90:6b:42:71:cf:
b0:9f:ed:e0:90:3f:44:3e:bd:c7:7d:a7:0b:aa:83:32:45:59:
87:0f:96:1f:6d:ff:19:66:ed:4f:75:ff:af:41:2c:bc:09:57:
02:70:91:4f:a3:06:9e:f4:7d:24:2b:10:2b:88:01:76:fe:85:
2b:23:ae:48:45:4f:55:18:65:0b:d0:c3:02:29:45:c8:89:cb:
0c:fb:28:69:aa:53:fa:7f:23:24:ff:dd:76:ac:95:df:ad:de:
d4:b9:1c:0a:6b:25:1a:1b:d7:00:07:d5:26:b6:b2:a8:3f:4d:
6e:46:46:ce:5c:ba:0b:11:a8:9e:7b:68:33:2e:e0:17:90:02:
6a:59:a7:6b:b9:63:20:dd:8c:4c:e2:52:d3:fa:26:f7:23:79:
b5:40:f4:4b:7c:df:6c:05:00:51:45:b0:51:f4:bc:ec:4e:d5:
cf:fd:64:f0:f4:d1:25:98:be:62:89:c3:41:9a:93:67:ad:4b:
7f:ec:94:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgowZ1YHssqkMX5S2KZhny+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh
OTgyOGQwHhcNMjMwNTE3MDgwOTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2M2ZDNiZmY1ZDkwMDA3NjBkMmY2NDgzMGE3MjI4MTIxYmQzOTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiEFFIirQjdkjsEmypMLwsFaLFlqN
Q5nCVhnmXTfy0V4OvjyiK17TBXSRbZJD81SPrzZN7hmrlHABZ1CVHyx0Cj5iVQfJ
jyS0NRupcz/fdLCWGrucGkhiLrU7D+y1azIoEIlu2Z/LffkJirm1rDVrEEo58eKn
/p2xaJfTnq/kacWkyfVZ8kwkQL9vcJoBrO+Wnb4OfB/V5C2Oo9vktQ9/3ijpAUUL
kvWanGxgABD3afwfrRIEHXByNGZb3vZAt0WlMtyUluYThPb6acUkiDH4NY96Ezh6
I5QWR6mtvFJCpq6QO4tLwe2cmg7EZVOTqBuLtSa942hNwxDwC3dSGrj06QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEfG07/12QAHYNL2SDCnIoEhvTkyMB8GA1UdIwQY
MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt
MjlkZjRlMjYxMWYxLzEvUjhiVHZfWFpBQWRnMHZaSU1LY2lnU0c5T1RJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx
LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSFgMA0G
CSqGSIb3DQEBCwUAA4IBAQCHvlNgqf4mc1UGaekveXLJ9E+TYH0T2XZaM5VuExW3
2BjjHMrjZW5CjZOtrlAY8I28hbeZ9xyLlJGqW0R2YKyR9y+DkGtCcc+wn+3gkD9E
Pr3HfacLqoMyRVmHD5Yfbf8ZZu1Pdf+vQSy8CVcCcJFPowae9H0kKxAriAF2/oUr
I65IRU9VGGUL0MMCKUXIicsM+yhpqlP6fyMk/912rJXfrd7UuRwKayUaG9cAB9Um
trKoP01uRkbOXLoLEaiee2gzLuAXkAJqWadruWMg3YxM4lLT+ib3I3m1QPRLfN9s
BQBRRbBR9LzsTtXP/WTw9NElmL5iicNBmpNnrUt/7JTI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:24 2024 by rpki-client on console-fra.rpki-client.org