Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/eRUgSpyHgWmgycVDCR35GnxZsZg.roa
File: eRUgSpyHgWmgycVDCR35GnxZsZg.roa (raw, json)
Hash identifier: hf7Ntc68n1Cs2+NY1rQp30UQ5L1CPoBVdHqLvo4pH48=
Subject key identifier: 79:15:20:4A:9C:87:81:69:A0:C9:C5:43:09:1D:F9:1A:7C:59:B1:98
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CC5011BCA665EAC05DCF71854E7DDECFC
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/eRUgSpyHgWmgycVDCR35GnxZsZg.roa
Signing time: Mon 01 Jan 2024 12:30:33 +0000
ROA not before: Mon 01 Jan 2024 12:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202468
IP address blocks: 193.109.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 17:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:1b:ca:66:5e:ac:05:dc:f7:18:54:e7:dd:ec:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 12:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7915204a9c878169a0c9c543091df91a7c59b198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:04:35:d4:f8:04:15:5e:56:be:b8:9f:f1:
a4:29:e7:d0:40:9d:22:1d:f0:4c:f9:70:17:35:69:
1c:ed:fc:17:1d:07:a6:8a:ee:39:1d:65:a5:99:24:
ed:71:ff:9a:85:b3:01:de:25:1e:03:c9:c5:73:1f:
2f:4c:24:90:1a:74:fc:8c:ad:6a:e8:79:64:82:8e:
d1:86:2b:79:64:e8:61:6f:3e:ca:e3:d2:a7:50:01:
ea:c1:5a:c3:78:9e:fb:c6:5f:36:e6:e2:8d:9e:db:
04:c7:2e:70:0e:85:6f:8b:38:8c:9d:dd:aa:32:fd:
fc:e9:1c:00:4b:3d:2a:a1:a8:ff:aa:8e:bb:fc:0f:
22:12:e2:47:49:0e:59:dd:47:7f:6a:29:76:1b:8e:
b4:57:35:cb:06:fe:a2:05:15:72:5e:e5:6b:1e:8a:
14:97:33:89:9a:38:63:8b:cb:03:c5:02:e2:8d:9a:
6a:f6:34:b9:b4:61:39:6f:fe:9e:8d:a5:2c:20:d1:
dd:bc:9d:df:ca:2e:64:53:17:b0:79:24:f2:f4:64:
fe:ba:5c:6a:94:2a:e8:8e:73:e2:c8:c7:72:60:a9:
88:b0:d5:78:75:21:5b:66:24:02:cf:90:3b:f2:f3:
e6:2c:84:fb:0c:cd:a9:b1:72:96:42:0b:8d:4f:c0:
9c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:15:20:4A:9C:87:81:69:A0:C9:C5:43:09:1D:F9:1A:7C:59:B1:98
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/eRUgSpyHgWmgycVDCR35GnxZsZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.137.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a9:77:8e:64:01:0b:3f:81:d9:e6:16:4e:b3:54:69:39:7a:
8c:6e:3b:ed:da:2d:40:c9:52:8d:7c:c9:de:04:98:33:29:0c:
b8:26:ca:80:78:bf:75:7b:9a:2b:6c:8a:21:f4:41:57:fb:7b:
b8:18:d3:2f:ba:db:56:6e:21:0d:da:29:16:d0:a3:a4:76:04:
84:4a:90:c6:30:3a:d5:7a:99:69:46:7c:73:b7:dd:3d:90:ff:
e7:66:bf:e9:74:c7:60:bb:9d:48:9e:11:b5:e0:b2:5f:fb:65:
48:df:77:82:b8:fe:ee:29:dc:56:fb:3b:ac:9d:c6:00:59:dc:
0c:4e:21:01:a4:56:c1:dc:10:dc:43:31:46:85:ad:3c:a4:00:
7b:db:4d:bc:39:84:bc:cf:81:29:e2:89:00:1b:01:24:1f:75:
0d:4c:dc:aa:6c:3e:a8:02:6b:08:7e:dd:cf:94:84:19:27:3d:
24:9e:27:c9:9b:27:d7:fa:47:a2:1e:52:44:4f:35:8f:cd:b6:
83:c4:2d:ec:6b:bc:5c:52:54:a7:70:13:d7:ff:1f:27:93:3f:
19:44:3a:b4:b8:6b:3e:e0:30:f8:d2:85:f9:91:23:20:36:2a:
27:de:5a:76:b3:f5:c9:d4:9c:3d:55:cf:0e:48:94:6b:0e:14:
cc:b0:4d:12
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFARvKZl6sBdz3GFTn3ez8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwMTAxMTIzMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OTE1MjA0YTljODc4MTY5YTBjOWM1NDMwOTFkZjkxYTdjNTliMTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs00ENdT4BBVeVr64n/GkKefQQJ0i
HfBM+XAXNWkc7fwXHQemiu45HWWlmSTtcf+ahbMB3iUeA8nFcx8vTCSQGnT8jK1q
6Hlkgo7Rhit5ZOhhbz7K49KnUAHqwVrDeJ77xl825uKNntsExy5wDoVviziMnd2q
Mv386RwASz0qoaj/qo67/A8iEuJHSQ5Z3Ud/ail2G460VzXLBv6iBRVyXuVrHooU
lzOJmjhji8sDxQLijZpq9jS5tGE5b/6ejaUsINHdvJ3fyi5kUxeweSTy9GT+ulxq
lCrojnPiyMdyYKmIsNV4dSFbZiQCz5A78vPmLIT7DM2psXKWQguNT8CcuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHkVIEqch4FpoMnFQwkd+Rp8WbGYMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvZVJVZ1NweUhnV21neWNWRENSMzVHbnhac1pnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwW2JMA0G
CSqGSIb3DQEBCwUAA4IBAQABqXeOZAELP4HZ5hZOs1RpOXqMbjvt2i1AyVKNfMne
BJgzKQy4JsqAeL91e5orbIoh9EFX+3u4GNMvuttWbiEN2ikW0KOkdgSESpDGMDrV
eplpRnxzt909kP/nZr/pdMdgu51InhG14LJf+2VI33eCuP7uKdxW+zusncYAWdwM
TiEBpFbB3BDcQzFGha08pAB72028OYS8z4Ep4okAGwEkH3UNTNyqbD6oAmsIft3P
lIQZJz0knifJmyfX+keiHlJETzWPzbaDxC3sa7xcUlSncBPX/x8nkz8ZRDq0uGs+
4DD40oX5kSMgNion3lp2s/XJ1Jw9Vc8OSJRrDhTMsE0S
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org