Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/6sUU6KCuplGeLxVgOcq1rSSTFs0.roa
File: 6sUU6KCuplGeLxVgOcq1rSSTFs0.roa (raw, json)
Hash identifier: RSwS7YOAbu2ehB048EGc7HBtYmzFPDXs/XwQIfz6uQk=
Subject key identifier: EA:C5:14:E8:A0:AE:A6:51:9E:2F:15:60:39:CA:B5:AD:24:93:16:CD
Certificate issuer: /CN=1cdc76327e92f25fc471b345a37d243cc8393500
Certificate serial: 01856C53B78ABBA93C8F93A40447370D5795
Authority key identifier: 1C:DC:76:32:7E:92:F2:5F:C4:71:B3:45:A3:7D:24:3C:C8:39:35:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/6sUU6KCuplGeLxVgOcq1rSSTFs0.roa
Signing time: Sun 01 Jan 2023 07:55:03 +0000
ROA not before: Sun 01 Jan 2023 07:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13039
IP address blocks: 193.102.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:b7:8a:bb:a9:3c:8f:93:a4:04:47:37:0d:57:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdc76327e92f25fc471b345a37d243cc8393500
Validity
Not Before: Jan 1 07:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eac514e8a0aea6519e2f156039cab5ad249316cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:91:7f:ed:14:de:77:1b:bf:2c:02:fa:87:7c:
11:56:a9:65:4a:53:88:f5:d3:94:46:53:96:71:21:
15:62:45:3c:99:e1:7b:d5:68:df:5b:83:f9:af:3d:
b7:4a:a2:f1:23:1b:46:b7:eb:12:4a:64:66:35:37:
94:4d:e2:c0:38:44:96:70:3b:31:1c:a1:17:0f:8e:
10:fa:38:fa:ac:57:2b:49:03:32:f1:57:fc:a5:ea:
44:cd:e0:02:58:59:b4:cd:1b:76:eb:f3:2e:58:47:
01:70:4e:eb:0b:8f:dc:5e:07:4e:4a:94:3b:b9:45:
a5:9b:bb:37:50:96:13:49:d9:be:9e:f5:cc:dc:57:
01:74:0d:50:2a:7f:b3:28:f6:cb:48:5b:f9:9d:22:
06:43:ff:ff:43:d3:a9:e5:33:6e:f9:50:6f:50:01:
af:e8:c0:c1:45:09:fd:41:eb:7c:55:82:bb:ce:6d:
4a:39:90:c1:45:85:07:51:7c:85:74:98:a1:06:3b:
ef:80:39:6d:0d:55:39:24:38:bb:dd:44:75:bf:06:
be:33:b0:af:cf:12:0d:89:75:f1:c1:e4:2b:8c:2e:
33:40:af:e9:90:c5:1e:77:60:d8:09:fd:b9:8a:38:
8d:89:88:28:60:62:20:18:d7:57:4c:c6:2d:87:ad:
09:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C5:14:E8:A0:AE:A6:51:9E:2F:15:60:39:CA:B5:AD:24:93:16:CD
X509v3 Authority Key Identifier:
keyid:1C:DC:76:32:7E:92:F2:5F:C4:71:B3:45:A3:7D:24:3C:C8:39:35:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNx2Mn6S8l_EcbNFo30kPMg5NQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/6sUU6KCuplGeLxVgOcq1rSSTFs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b78a1c-1300-4ef8-ae96-80736950aa94/1/HNx2Mn6S8l_EcbNFo30kPMg5NQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.102.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:1a:5d:fc:f1:9a:30:6e:10:6a:88:d7:c4:7e:a4:f9:a3:2b:
84:81:a0:ae:3e:17:48:e6:28:02:1b:3a:a7:75:4e:94:c0:25:
25:1b:3f:48:4e:1f:e2:c1:4a:5f:62:95:3f:dc:22:82:47:82:
82:19:dc:cb:68:1d:18:04:82:dd:38:ae:27:05:48:9e:29:fd:
ab:2e:e9:e1:14:cb:31:d6:66:09:e9:10:a3:1b:d5:06:3c:a2:
4f:fd:74:e3:1d:3f:c7:3c:f2:a9:23:9b:7f:a6:6f:2f:02:ef:
1d:7b:da:3a:d3:ef:26:da:13:39:54:11:db:9e:34:39:6d:7f:
4b:67:85:68:d4:f1:ca:11:33:53:4e:f5:88:a9:73:98:de:90:
c3:1a:c6:20:de:1a:5b:01:0d:d2:ae:e8:e4:4b:2a:a3:98:4d:
e0:f8:da:29:7f:33:61:da:95:41:63:15:e8:d3:3c:b2:91:b0:
da:52:ff:e3:de:e2:dc:5f:9c:3f:0e:b4:a4:d8:61:b8:84:04:
7a:04:b3:cc:b4:a0:e0:92:37:2b:c0:87:01:ff:b5:32:da:47:
20:2e:e7:f0:3f:09:f6:37:81:c6:6b:20:00:dd:a4:bd:37:e4:
fe:bb:36:53:92:4f:32:29:77:fe:51:f4:86:75:61:88:36:38:
8f:96:20:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU7eKu6k8j5OkBEc3DVeVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjZGM3NjMyN2U5MmYyNWZjNDcxYjM0NWEzN2QyNDNjYzgz
OTM1MDAwHhcNMjMwMTAxMDc1NTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWM1MTRlOGEwYWVhNjUxOWUyZjE1NjAzOWNhYjVhZDI0OTMxNmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZF/7RTedxu/LAL6h3wRVqllSlOI
9dOURlOWcSEVYkU8meF71WjfW4P5rz23SqLxIxtGt+sSSmRmNTeUTeLAOESWcDsx
HKEXD44Q+jj6rFcrSQMy8Vf8pepEzeACWFm0zRt26/MuWEcBcE7rC4/cXgdOSpQ7
uUWlm7s3UJYTSdm+nvXM3FcBdA1QKn+zKPbLSFv5nSIGQ///Q9Op5TNu+VBvUAGv
6MDBRQn9Qet8VYK7zm1KOZDBRYUHUXyFdJihBjvvgDltDVU5JDi73UR1vwa+M7Cv
zxINiXXxweQrjC4zQK/pkMUed2DYCf25ijiNiYgoYGIgGNdXTMYth60JYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOrFFOigrqZRni8VYDnKta0kkxbNMB8GA1UdIwQY
MBaAFBzcdjJ+kvJfxHGzRaN9JDzIOTUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSE54Mk1uNlM4bF9FY2JORm8zMGtQTWc1TlFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iNzhhMWMtMTMwMC00ZWY4LWFlOTYt
ODA3MzY5NTBhYTk0LzEvNnNVVTZLQ3VwbEdlTHhWZ09jcTFyU1NURnMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9iNzhhMWMtMTMwMC00ZWY4LWFlOTYtODA3MzY5NTBhYTk0
LzEvSE54Mk1uNlM4bF9FY2JORm8zMGtQTWc1TlFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWa9MA0G
CSqGSIb3DQEBCwUAA4IBAQClGl388ZowbhBqiNfEfqT5oyuEgaCuPhdI5igCGzqn
dU6UwCUlGz9ITh/iwUpfYpU/3CKCR4KCGdzLaB0YBILdOK4nBUieKf2rLunhFMsx
1mYJ6RCjG9UGPKJP/XTjHT/HPPKpI5t/pm8vAu8de9o60+8m2hM5VBHbnjQ5bX9L
Z4Vo1PHKETNTTvWIqXOY3pDDGsYg3hpbAQ3SrujkSyqjmE3g+NopfzNh2pVBYxXo
0zyykbDaUv/j3uLcX5w/DrSk2GG4hAR6BLPMtKDgkjcrwIcB/7Uy2kcgLufwPwn2
N4HGayAA3aS9N+T+uzZTkk8yKXf+UfSGdWGINjiPliAN
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:19 2024 by rpki-client on console-ams.rpki-client.org