Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/vLTLs7O5VdIKBEBR8t3yq7608B0.roa
File: vLTLs7O5VdIKBEBR8t3yq7608B0.roa (raw, json)
Hash identifier: kC7nVune9QJgAqEjEbHtL8fYbnQwzPiEjliwvFRmLSU=
Subject key identifier: BC:B4:CB:B3:B3:B9:55:D2:0A:04:40:51:F2:DD:F2:AB:BE:B4:F0:1D
Certificate issuer: /CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Certificate serial: 018572FA6148F5D95700CCF5C39BA867DD86
Authority key identifier: 5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/vLTLs7O5VdIKBEBR8t3yq7608B0.roa
Signing time: Mon 02 Jan 2023 14:54:49 +0000
ROA not before: Mon 02 Jan 2023 14:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19330
IP address blocks: 193.58.199.0/24 maxlen: 24
212.121.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:61:48:f5:d9:57:00:cc:f5:c3:9b:a8:67:dd:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Validity
Not Before: Jan 2 14:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcb4cbb3b3b955d20a044051f2ddf2abbeb4f01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:08:41:8f:08:03:93:4c:3f:08:a6:8e:30:85:
6b:d5:d7:21:29:9f:b8:01:8c:97:c5:cd:c0:2c:0e:
17:f1:b2:9f:e6:23:82:84:e8:29:d4:1e:be:4a:4b:
9b:06:f9:f6:b0:01:f5:22:ce:e8:ca:e6:dc:fd:6b:
61:e9:6e:0a:a7:c3:77:2f:25:df:40:c9:b4:bf:b9:
da:4f:4f:c4:a7:01:78:1c:e6:c0:bc:73:93:fe:13:
5e:dc:1d:a0:7d:ad:8f:43:fd:35:ec:0c:27:d3:11:
b7:31:e9:e0:b3:5b:39:61:98:a6:4c:bf:19:b7:aa:
27:92:6a:fd:51:c9:b3:09:09:60:c0:86:ab:a3:49:
61:d0:d6:e4:90:3d:d7:55:7a:ad:b2:d1:f7:ac:9a:
b5:69:4d:0a:61:15:2c:17:6a:3e:fb:97:17:2a:f4:
75:87:f7:91:37:99:2c:09:5b:22:8a:ae:0c:86:b1:
64:51:ef:46:6a:2d:4c:65:f0:49:3d:1d:a1:59:36:
2e:33:da:5a:50:8c:b1:ea:ed:40:5a:b8:5f:6a:43:
f6:0c:e3:f7:70:40:4d:6d:3b:85:89:93:f5:b5:8f:
72:86:d9:3b:c5:97:20:ef:10:cb:00:b0:e7:40:63:
9c:fe:15:55:82:6a:5a:a9:97:5a:f6:e0:db:8b:43:
16:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:B4:CB:B3:B3:B9:55:D2:0A:04:40:51:F2:DD:F2:AB:BE:B4:F0:1D
X509v3 Authority Key Identifier:
keyid:5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/vLTLs7O5VdIKBEBR8t3yq7608B0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.199.0/24
212.121.37.0/24
Signature Algorithm: sha256WithRSAEncryption
79:37:67:28:c7:41:9c:01:e6:da:6c:f9:ac:b8:45:55:6a:5d:
e7:0c:14:54:b8:5b:5f:73:a0:24:6a:6f:18:a4:0e:b0:82:63:
b9:cf:1c:ca:90:75:b9:45:89:9f:bb:01:49:e7:3c:e1:c2:1b:
49:96:6a:d9:a8:c7:c7:ba:89:48:1c:1c:46:8d:8f:7f:03:6f:
a2:5e:54:1f:79:43:d5:4d:05:1a:cf:d8:2b:f4:ac:36:9b:49:
25:d5:d6:36:81:fd:df:02:ec:43:05:a1:e0:20:67:2b:c2:48:
57:e4:ee:b8:d2:e9:ee:87:11:c5:81:75:76:f2:4d:41:c2:a1:
1d:22:41:ff:24:05:2f:68:c6:47:ea:86:fb:8c:f2:a7:40:34:
fe:35:5f:64:ca:38:ba:53:9b:8c:cd:f2:06:bf:1b:f4:bb:41:
cb:c3:23:a8:73:59:c3:49:91:be:ce:1c:c7:f2:b7:fb:f9:ee:
6d:a5:6d:45:cf:59:bd:66:d1:fa:54:a1:0a:61:8c:ae:48:c7:
ec:92:f5:6d:e2:94:e0:1b:23:2c:4d:af:7e:c4:27:ad:94:33:
2b:09:6c:a3:71:10:2c:b5:77:1a:ec:66:a0:45:a4:a9:c7:f8:
6e:32:a0:ee:c9:7c:ba:1d:7e:e9:be:69:dd:57:ed:bf:4f:f5:
6c:6f:5f:85
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVy+mFI9dlXAMz1w5uoZ92GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNDAwYWMyMzk2YWUyMjhkMmIyZTU2ZjRiMDY3Mzk5Njkz
NzllNDQwHhcNMjMwMTAyMTQ1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2I0Y2JiM2IzYjk1NWQyMGEwNDQwNTFmMmRkZjJhYmJlYjRmMDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QhBjwgDk0w/CKaOMIVr1dchKZ+4
AYyXxc3ALA4X8bKf5iOChOgp1B6+SkubBvn2sAH1Is7oyubc/Wth6W4Kp8N3LyXf
QMm0v7naT0/EpwF4HObAvHOT/hNe3B2gfa2PQ/017Awn0xG3Mengs1s5YZimTL8Z
t6onkmr9UcmzCQlgwIaro0lh0NbkkD3XVXqtstH3rJq1aU0KYRUsF2o++5cXKvR1
h/eRN5ksCVsiiq4MhrFkUe9Gai1MZfBJPR2hWTYuM9paUIyx6u1AWrhfakP2DOP3
cEBNbTuFiZP1tY9yhtk7xZcg7xDLALDnQGOc/hVVgmpaqZda9uDbi0MW/QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLy0y7OzuVXSCgRAUfLd8qu+tPAdMB8GA1UdIwQY
MBaAFF5ACsI5auIo0rLlb0sGc5lpN55EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGtBS3dqbHE0aWpTc3VWdlN3WnptV2szbmtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9kNjdhOTUtY2IzNi00OTM3LTkyMjYt
ZGZlZDEyZjFhMDFlLzEvdkxUTHM3TzVWZElLQkVCUjh0M3lxNzYwOEIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC9kNjdhOTUtY2IzNi00OTM3LTkyMjYtZGZlZDEyZjFhMDFl
LzEvWGtBS3dqbHE0aWpTc3VWdlN3WnptV2szbmtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwTrHAwQA
1HklMA0GCSqGSIb3DQEBCwUAA4IBAQB5N2cox0GcAebabPmsuEVVal3nDBRUuFtf
c6Akam8YpA6wgmO5zxzKkHW5RYmfuwFJ5zzhwhtJlmrZqMfHuolIHBxGjY9/A2+i
XlQfeUPVTQUaz9gr9Kw2m0kl1dY2gf3fAuxDBaHgIGcrwkhX5O640unuhxHFgXV2
8k1BwqEdIkH/JAUvaMZH6ob7jPKnQDT+NV9kyji6U5uMzfIGvxv0u0HLwyOoc1nD
SZG+zhzH8rf7+e5tpW1Fz1m9ZtH6VKEKYYyuSMfskvVt4pTgGyMsTa9+xCetlDMr
CWyjcRAstXca7GagRaSpx/huMqDuyXy6HX7pvmndV+2/T/Vsb1+F
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:46 2024 by rpki-client on console-ams.rpki-client.org