Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/E0rhjS8PkVeNhtd19TOSzvGXe_w.roa
File: E0rhjS8PkVeNhtd19TOSzvGXe_w.roa (raw, json)
Hash identifier: b+XSKNixr7+QJ/aON/kSuIGZ24ngaiKdDi5Y5fKA68Y=
Subject key identifier: 13:4A:E1:8D:2F:0F:91:57:8D:86:D7:75:F5:33:92:CE:F1:97:7B:FC
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 0192E6DFD54D95C006FC56ACB257C0D4F42C
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/E0rhjS8PkVeNhtd19TOSzvGXe_w.roa
Signing time: Fri 01 Nov 2024 08:38:01 +0000
ROA not before: Fri 01 Nov 2024 08:38:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 193.233.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 26 Nov 2024 15:11:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e6:df:d5:4d:95:c0:06:fc:56:ac:b2:57:c0:d4:f4:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Nov 1 08:38:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=134ae18d2f0f91578d86d775f53392cef1977bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:38:f3:01:cd:5a:4f:42:b6:db:0e:d0:8c:43:
34:a2:18:d1:3e:6d:b6:c5:c7:f0:c7:a5:ca:3b:8d:
43:04:1c:e9:94:3b:cb:a7:36:d4:7b:58:25:ca:9d:
d1:0f:61:b0:21:8c:ef:41:41:5d:16:19:0b:61:77:
70:5b:e6:e6:6e:b2:89:37:07:a1:f5:fb:aa:f0:01:
60:b6:fe:90:12:5b:0a:bf:f8:5f:89:11:1f:db:a1:
05:8f:14:2d:5e:6f:a8:2a:ec:c1:1b:e1:30:21:85:
cf:07:16:41:f6:63:06:9e:62:d3:bb:86:e6:5b:bb:
eb:54:cf:a9:42:22:51:da:51:16:1e:7f:61:cc:98:
2a:b0:18:8c:8d:3d:bf:2e:93:c3:28:e4:8d:66:22:
8e:18:06:ab:1f:d9:ba:14:c6:b9:8a:d1:cd:83:43:
73:51:71:de:03:96:82:a8:87:9f:4d:c7:95:58:26:
38:c2:ea:f3:3e:f2:5f:bb:d4:35:b9:37:8e:bf:c5:
45:57:53:9d:08:18:74:0c:58:56:2e:f2:6f:f6:f9:
a3:90:1e:af:3e:4f:4f:f7:50:04:5d:86:23:4d:5a:
6a:cf:fc:95:bd:95:59:bf:0e:1e:0a:67:f6:c1:83:
b1:5e:1c:a5:3f:1b:bd:11:6a:87:7b:78:7b:6c:5b:
12:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4A:E1:8D:2F:0F:91:57:8D:86:D7:75:F5:33:92:CE:F1:97:7B:FC
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/E0rhjS8PkVeNhtd19TOSzvGXe_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.108.0/22
Signature Algorithm: sha256WithRSAEncryption
65:08:cd:71:1e:45:06:e3:69:e2:f3:90:0e:fe:cd:9b:d0:f3:
74:3b:d7:64:49:da:28:38:8a:69:00:79:f9:bc:17:8a:de:e5:
7e:4b:03:7e:f9:be:f7:af:7c:03:a2:1b:a5:a2:8d:6e:32:3f:
fc:50:3b:8c:f6:3a:40:c0:06:4c:20:5a:54:db:24:58:7c:7b:
24:ed:0c:30:39:a2:b9:47:57:03:95:f8:65:4c:2b:be:b6:1a:
15:09:e9:90:08:2f:8e:ec:d6:f8:d1:3f:4d:16:69:dc:08:2e:
b0:06:15:d8:d7:45:83:38:bc:9f:03:b5:c8:12:ab:06:a4:9a:
63:71:24:06:7b:58:6f:6b:16:c2:fb:63:95:74:8a:10:dc:9c:
64:8e:72:b4:03:c3:8e:05:1b:d1:b4:a6:f9:ad:5a:d2:62:84:
39:18:4a:12:3a:68:a3:29:74:98:72:f4:b8:45:c5:10:eb:4c:
18:da:4d:5c:e8:f2:8f:4c:d6:82:79:ca:13:c1:9d:56:6a:9a:
c0:b5:e3:c3:4c:1b:66:1e:ae:91:6e:cc:29:c5:e8:76:d5:f8:
39:e8:d9:6b:07:ee:10:66:55:35:80:94:50:2a:d2:05:b4:8a:
85:6d:f8:63:1d:65:3b:47:f6:9c:b3:3a:24:c0:77:82:11:a7:
6c:4d:99:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZLm39VNlcAG/FasslfA1PQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjQxMTAxMDgzODAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzRhZTE4ZDJmMGY5MTU3OGQ4NmQ3NzVmNTMzOTJjZWYxOTc3YmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDjzAc1aT0K22w7QjEM0ohjRPm22
xcfwx6XKO41DBBzplDvLpzbUe1glyp3RD2GwIYzvQUFdFhkLYXdwW+bmbrKJNweh
9fuq8AFgtv6QElsKv/hfiREf26EFjxQtXm+oKuzBG+EwIYXPBxZB9mMGnmLTu4bm
W7vrVM+pQiJR2lEWHn9hzJgqsBiMjT2/LpPDKOSNZiKOGAarH9m6FMa5itHNg0Nz
UXHeA5aCqIefTceVWCY4wurzPvJfu9Q1uTeOv8VFV1OdCBh0DFhWLvJv9vmjkB6v
Pk9P91AEXYYjTVpqz/yVvZVZvw4eCmf2wYOxXhylPxu9EWqHe3h7bFsSkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBNK4Y0vD5FXjYbXdfUzks7xl3v8MB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvRTByaGpTOFBrVmVOaHRkMTlUT1N6dkdYZV93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwelsMA0G
CSqGSIb3DQEBCwUAA4IBAQBlCM1xHkUG42ni85AO/s2b0PN0O9dkSdooOIppAHn5
vBeK3uV+SwN++b73r3wDohuloo1uMj/8UDuM9jpAwAZMIFpU2yRYfHsk7QwwOaK5
R1cDlfhlTCu+thoVCemQCC+O7Nb40T9NFmncCC6wBhXY10WDOLyfA7XIEqsGpJpj
cSQGe1hvaxbC+2OVdIoQ3JxkjnK0A8OOBRvRtKb5rVrSYoQ5GEoSOmijKXSYcvS4
RcUQ60wY2k1c6PKPTNaCecoTwZ1WaprAtePDTBtmHq6Rbswpxeh21fg56NlrB+4Q
ZlU1gJRQKtIFtIqFbfhjHWU7R/acszokwHeCEadsTZlR
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:54:09 2025 by rpki-client