Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/3dJFipy4CgDXiac_GKZ-1iUm3s0.roa
File: 3dJFipy4CgDXiac_GKZ-1iUm3s0.roa (raw, json)
Hash identifier: TwgEqMwxVkzOCb8sjTAME6OeKzIN7e8aShM4geTNnak=
Subject key identifier: DD:D2:45:8A:9C:B8:0A:00:D7:89:A7:3F:18:A6:7E:D6:25:26:DE:CD
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 0189B0501BE549C530C74E92AA0E802EA13B
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/3dJFipy4CgDXiac_GKZ-1iUm3s0.roa
Signing time: Tue 01 Aug 2023 08:56:27 +0000
ROA not before: Tue 01 Aug 2023 08:56:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210353
IP address blocks: 194.44.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b0:50:1b:e5:49:c5:30:c7:4e:92:aa:0e:80:2e:a1:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: Aug 1 08:56:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddd2458a9cb80a00d789a73f18a67ed62526decd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:19:cf:87:e3:1d:33:49:ab:8b:43:00:84:f6:
44:bb:f3:1a:37:e6:d3:22:90:16:96:28:58:ce:b3:
07:19:9c:ca:e7:6a:64:32:2b:4b:53:c3:53:ef:aa:
db:6e:77:82:90:9a:46:5d:7b:aa:97:ac:37:50:3b:
8f:71:88:1b:04:d3:41:1b:63:c2:3f:d9:92:eb:65:
c0:39:bd:cf:5d:ff:f3:52:7c:c3:33:10:5a:69:e9:
63:5e:92:4a:f2:90:d6:39:9d:92:e0:39:0a:0b:f4:
68:a4:a2:0f:12:7e:78:b0:da:4f:95:83:c2:fd:48:
d7:56:e0:a5:94:53:30:dd:80:cd:86:0e:67:7b:e6:
81:d8:81:2d:e9:51:8d:ec:de:35:56:92:35:83:7f:
17:0f:bb:b5:9a:a5:a9:8f:58:6d:25:a0:ba:7a:78:
6e:f0:a8:55:a7:1c:fe:e5:7f:f0:40:99:79:46:5e:
9a:ec:dc:85:ca:6d:4c:84:9a:cb:52:04:8b:4f:80:
0c:dc:47:2c:72:6a:09:62:87:0d:78:34:b0:f2:dd:
f8:a9:5a:45:4e:fb:b5:cc:8c:2f:a8:da:b4:89:34:
4e:da:50:da:9c:5f:a7:bc:6c:31:e9:c6:19:7a:5d:
19:f9:c9:f9:da:b2:a8:08:ff:b6:71:3a:e5:29:0e:
d2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D2:45:8A:9C:B8:0A:00:D7:89:A7:3F:18:A6:7E:D6:25:26:DE:CD
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/3dJFipy4CgDXiac_GKZ-1iUm3s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.44.234.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b7:a6:5a:f4:5f:78:dc:ec:bb:43:2a:82:36:6c:ee:f7:cd:
2f:6f:1d:6c:15:66:71:d2:a2:62:43:04:a4:c9:d3:c2:1e:8a:
83:bf:0e:27:10:69:f3:f1:6e:25:98:6e:8c:fd:48:f3:95:8b:
40:3d:ca:e3:74:53:c5:dd:3c:f9:de:d4:89:3c:1f:da:85:52:
1e:db:27:b5:f6:d9:52:da:c1:ab:ea:5b:cf:86:a8:2a:df:41:
2e:e1:83:70:e9:12:64:ee:aa:e9:b2:f4:3f:5f:8a:97:d5:73:
43:ad:5c:94:f2:e3:58:06:44:87:5f:f2:e5:af:df:66:20:cd:
4b:59:3e:37:27:7f:17:4a:ea:6f:25:c7:8d:ad:d2:c6:9c:14:
75:3f:e0:06:07:7b:1e:b8:33:d3:89:98:d5:42:20:95:c2:04:
5e:d0:47:8d:f2:2d:c6:46:a1:c6:72:70:31:30:a1:cf:a9:d3:
bf:9e:cd:e4:dd:0e:25:c9:18:cd:c4:f8:8e:6f:e2:c2:9b:aa:
34:43:b6:8e:89:4f:4f:b0:d0:58:20:36:91:43:cf:31:bc:87:
c1:cd:ba:9e:2f:49:ff:50:45:b5:80:c3:b4:13:76:e0:05:b6:
b5:9f:cc:a6:9b:c4:9f:86:c3:66:d8:5a:46:91:ff:d6:02:16:
ca:8c:90:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmwUBvlScUwx06Sqg6ALqE7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzZmI0MDNhMjQxODgzZTU4ZmNlZDUyZDM5ZDgwZWFiZDUy
YmIzNmYwHhcNMjMwODAxMDg1NjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGQyNDU4YTljYjgwYTAwZDc4OWE3M2YxOGE2N2VkNjI1MjZkZWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhnPh+MdM0mri0MAhPZEu/MaN+bT
IpAWlihYzrMHGZzK52pkMitLU8NT76rbbneCkJpGXXuql6w3UDuPcYgbBNNBG2PC
P9mS62XAOb3PXf/zUnzDMxBaaeljXpJK8pDWOZ2S4DkKC/RopKIPEn54sNpPlYPC
/UjXVuCllFMw3YDNhg5ne+aB2IEt6VGN7N41VpI1g38XD7u1mqWpj1htJaC6enhu
8KhVpxz+5X/wQJl5Rl6a7NyFym1MhJrLUgSLT4AM3EcscmoJYocNeDSw8t34qVpF
Tvu1zIwvqNq0iTRO2lDanF+nvGwx6cYZel0Z+cn52rKoCP+2cTrlKQ7SkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN3SRYqcuAoA14mnPximftYlJt7NMB8GA1UdIwQY
MBaAFMP7QDokGIPlj87VLTnYDqvVK7NvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd190QU9pUVlnLVdQenRVdE9kZ09xOVVyczI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC80ZGM2MjUtN2MxYy00ZGFjLTg5OWUt
YTlhNzc5MDI2ZjBhLzEvM2RKRmlweTRDZ0RYaWFjX0dLWi0xaVVtM3MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC80ZGM2MjUtN2MxYy00ZGFjLTg5OWUtYTlhNzc5MDI2ZjBh
LzEvd190QU9pUVlnLVdQenRVdE9kZ09xOVVyczI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwizqMA0G
CSqGSIb3DQEBCwUAA4IBAQANt6Za9F943Oy7QyqCNmzu980vbx1sFWZx0qJiQwSk
ydPCHoqDvw4nEGnz8W4lmG6M/UjzlYtAPcrjdFPF3Tz53tSJPB/ahVIe2ye19tlS
2sGr6lvPhqgq30Eu4YNw6RJk7qrpsvQ/X4qX1XNDrVyU8uNYBkSHX/Llr99mIM1L
WT43J38XSupvJceNrdLGnBR1P+AGB3seuDPTiZjVQiCVwgRe0EeN8i3GRqHGcnAx
MKHPqdO/ns3k3Q4lyRjNxPiOb+LCm6o0Q7aOiU9PsNBYIDaRQ88xvIfBzbqeL0n/
UEW1gMO0E3bgBba1n8ymm8SfhsNm2FpGkf/WAhbKjJB4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org