Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/3As9rwxLI134wQyJ13-esvF9NDY.roa
File: 3As9rwxLI134wQyJ13-esvF9NDY.roa (raw, json)
Hash identifier: HKOQImoxitVHcMTKCQfQipMevs1S4U5azFinf0JDIeo=
Subject key identifier: DC:0B:3D:AF:0C:4B:23:5D:F8:C1:0C:89:D7:7F:9E:B2:F1:7D:34:36
Certificate issuer: /CN=6764b9eeca258ae78c4d51321a8bdfef9a2b6a3c
Certificate serial: 01856CCABB67D86844954890D0FE0F030371
Authority key identifier: 67:64:B9:EE:CA:25:8A:E7:8C:4D:51:32:1A:8B:DF:EF:9A:2B:6A:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2S57soliueMTVEyGovf75orajw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/3As9rwxLI134wQyJ13-esvF9NDY.roa
Signing time: Sun 01 Jan 2023 10:05:03 +0000
ROA not before: Sun 01 Jan 2023 10:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39719
IP address blocks: 193.36.110.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:bb:67:d8:68:44:95:48:90:d0:fe:0f:03:03:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6764b9eeca258ae78c4d51321a8bdfef9a2b6a3c
Validity
Not Before: Jan 1 10:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc0b3daf0c4b235df8c10c89d77f9eb2f17d3436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fb:85:c9:39:6b:11:eb:a3:ef:d9:48:eb:d9:
08:e1:bc:e7:01:10:46:67:7c:38:69:76:72:98:44:
9c:df:8e:79:e9:a6:09:9d:0f:e2:d2:2f:dc:0f:e3:
3b:a2:2f:44:2b:7b:b7:36:ae:3a:21:63:18:64:ef:
d7:8b:23:51:90:e0:b4:a2:8a:16:2d:15:c1:d1:4d:
2e:95:c6:c8:64:ab:34:1c:29:b8:e0:c5:0b:58:8c:
4c:a8:fd:e2:1a:b0:70:c4:45:15:fa:84:79:b3:dd:
7d:97:2a:03:75:04:c5:c4:03:e3:3c:7f:24:62:41:
73:c6:b6:ff:07:11:57:ee:37:13:30:ea:a6:91:9a:
66:7f:25:92:1e:dd:9f:f1:dd:43:37:18:ef:18:9d:
d1:1c:21:ab:2e:e4:93:a0:40:95:e4:c9:77:e8:e2:
c8:ed:f7:25:f0:df:f5:26:7e:72:ba:be:cc:22:ec:
ef:6b:dd:ca:c0:e5:42:8d:be:37:a6:6f:da:2c:3f:
19:c8:cd:4a:0b:eb:fd:4b:10:0f:8c:2a:a9:db:a1:
66:de:bb:a1:09:80:21:12:f3:d4:b2:88:d2:08:21:
b3:99:9c:ef:32:74:05:0a:7d:33:b8:85:a0:a0:44:
dc:a1:40:a3:60:11:d3:ba:9b:7a:80:a8:bf:de:36:
02:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0B:3D:AF:0C:4B:23:5D:F8:C1:0C:89:D7:7F:9E:B2:F1:7D:34:36
X509v3 Authority Key Identifier:
keyid:67:64:B9:EE:CA:25:8A:E7:8C:4D:51:32:1A:8B:DF:EF:9A:2B:6A:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2S57soliueMTVEyGovf75orajw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/3As9rwxLI134wQyJ13-esvF9NDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/e3335f-4114-4482-8e12-4256a46afeec/1/Z2S57soliueMTVEyGovf75orajw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.110.0/23
Signature Algorithm: sha256WithRSAEncryption
03:7c:50:2b:72:59:ec:e3:f3:f0:d4:78:fd:37:b3:b8:87:1c:
3a:0c:19:1b:3b:53:70:43:3b:0d:f6:ed:e1:ed:b9:26:b7:36:
79:38:77:ba:ac:58:61:a8:8b:cb:ac:dc:32:56:bd:f5:33:71:
5c:bc:14:04:65:29:4a:cc:47:58:6a:02:0b:bf:33:d4:9e:8f:
4d:a7:8a:58:d9:27:9f:61:1a:fa:5a:ca:18:2e:b0:a8:fc:e1:
e0:4c:b3:28:da:17:f2:ff:32:aa:8e:3c:5e:6b:b6:2d:c3:bf:
f1:3a:21:f1:32:3a:d0:62:4e:1b:67:2e:0f:68:be:26:61:d5:
b4:04:4d:f1:91:da:bf:4e:0e:37:ee:50:a5:5b:d4:4f:3e:0d:
ab:c6:89:77:ee:fd:87:17:16:2c:a8:70:02:7c:c4:a5:fa:18:
51:d6:34:56:1e:e8:73:37:3b:40:ab:48:70:01:73:7b:33:dc:
94:a1:58:57:70:ba:c6:c3:e0:5a:0c:49:47:d1:de:28:89:2c:
55:4f:ac:50:7d:15:14:45:c7:3f:d0:b8:58:b7:8b:9b:e8:cd:
c1:b3:cd:78:48:7c:71:2c:34:da:1f:ba:06:a8:a4:65:f1:cf:
54:75:b3:2e:13:1f:28:25:70:75:67:67:46:73:f4:35:12:02:
1e:dd:b2:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsyrtn2GhElUiQ0P4PAwNxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NjRiOWVlY2EyNThhZTc4YzRkNTEzMjFhOGJkZmVmOWEy
YjZhM2MwHhcNMjMwMTAxMTAwNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzBiM2RhZjBjNGIyMzVkZjhjMTBjODlkNzdmOWViMmYxN2QzNDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/uFyTlrEeuj79lI69kI4bznARBG
Z3w4aXZymESc34556aYJnQ/i0i/cD+M7oi9EK3u3Nq46IWMYZO/XiyNRkOC0oooW
LRXB0U0ulcbIZKs0HCm44MULWIxMqP3iGrBwxEUV+oR5s919lyoDdQTFxAPjPH8k
YkFzxrb/BxFX7jcTMOqmkZpmfyWSHt2f8d1DNxjvGJ3RHCGrLuSToECV5Ml36OLI
7fcl8N/1Jn5yur7MIuzva93KwOVCjb43pm/aLD8ZyM1KC+v9SxAPjCqp26Fm3ruh
CYAhEvPUsojSCCGzmZzvMnQFCn0zuIWgoETcoUCjYBHTupt6gKi/3jYCoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNwLPa8MSyNd+MEMidd/nrLxfTQ2MB8GA1UdIwQY
MBaAFGdkue7KJYrnjE1RMhqL3++aK2o8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjJTNTdzb2xpdWVNVFZFeUdvdmY3NW9yYWp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9lMzMzNWYtNDExNC00NDgyLThlMTIt
NDI1NmE0NmFmZWVjLzEvM0FzOXJ3eExJMTM0d1F5SjEzLWVzdkY5TkRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9lMzMzNWYtNDExNC00NDgyLThlMTItNDI1NmE0NmFmZWVj
LzEvWjJTNTdzb2xpdWVNVFZFeUdvdmY3NW9yYWp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSRuMA0G
CSqGSIb3DQEBCwUAA4IBAQADfFArclns4/Pw1Hj9N7O4hxw6DBkbO1NwQzsN9u3h
7bkmtzZ5OHe6rFhhqIvLrNwyVr31M3FcvBQEZSlKzEdYagILvzPUno9Np4pY2Sef
YRr6WsoYLrCo/OHgTLMo2hfy/zKqjjxea7Ytw7/xOiHxMjrQYk4bZy4PaL4mYdW0
BE3xkdq/Tg437lClW9RPPg2rxol37v2HFxYsqHACfMSl+hhR1jRWHuhzNztAq0hw
AXN7M9yUoVhXcLrGw+BaDElH0d4oiSxVT6xQfRUURcc/0LhYt4ub6M3Bs814SHxx
LDTaH7oGqKRl8c9UdbMuEx8oJXB1Z2dGc/Q1EgIe3bIn
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:57 2024 by rpki-client on console-ams.rpki-client.org