Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/AyJpGNRGszmvp0z6ebZ4_5m_PJo.roa
File: AyJpGNRGszmvp0z6ebZ4_5m_PJo.roa (raw, json)
Hash identifier: zYVt+KaKd1UcsiiC+NpiyGrxjd1345VQ1PPQF6ZRJWc=
Subject key identifier: 03:22:69:18:D4:46:B3:39:AF:A7:4C:FA:79:B6:78:FF:99:BF:3C:9A
Certificate issuer: /CN=ef477ca3b449bbc41247e8c921e4c8dabfc1afae
Certificate serial: 01856EC2088055FB927EEAB15E799B8F0EE5
Authority key identifier: EF:47:7C:A3:B4:49:BB:C4:12:47:E8:C9:21:E4:C8:DA:BF:C1:AF:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70d8o7RJu8QSR-jJIeTI2r_Br64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/AyJpGNRGszmvp0z6ebZ4_5m_PJo.roa
Signing time: Sun 01 Jan 2023 19:14:47 +0000
ROA not before: Sun 01 Jan 2023 19:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16245
IP address blocks: 193.17.206.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:08:80:55:fb:92:7e:ea:b1:5e:79:9b:8f:0e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef477ca3b449bbc41247e8c921e4c8dabfc1afae
Validity
Not Before: Jan 1 19:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03226918d446b339afa74cfa79b678ff99bf3c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:36:b1:b8:aa:fb:64:e4:d0:1d:fe:ea:c6:2a:
42:80:03:83:00:15:c9:69:81:ef:10:b6:ba:cf:86:
b5:a7:29:20:02:7d:77:25:ad:2b:da:16:1f:68:1f:
27:62:e7:c1:0d:26:76:ca:de:17:f7:40:14:60:b0:
c6:74:fb:21:9c:b8:9e:8c:9d:a1:e1:a9:33:38:63:
50:26:24:b4:45:5a:a4:2c:ca:11:b2:70:c5:d7:7c:
f8:55:97:6f:cc:78:51:65:bc:56:5d:50:51:e2:b1:
98:36:91:40:cb:c4:2f:ee:8c:25:57:fd:a0:23:ca:
55:47:69:72:f1:87:a0:20:aa:c2:54:72:14:13:43:
28:62:fd:02:71:66:f5:f7:39:20:47:2a:cd:5e:0e:
b4:6f:bd:e3:9d:be:ff:46:a2:58:ba:8c:81:fe:a9:
cc:c4:d1:49:f3:ab:a2:c4:39:7e:fc:68:4d:3c:a9:
20:96:69:c4:75:aa:4b:48:79:bd:54:4c:1c:ef:08:
b5:fb:ec:ec:df:ec:14:93:d7:a6:92:cf:28:f7:17:
f6:4a:c5:8a:be:37:02:4d:ad:71:63:6e:86:fa:5f:
97:b2:da:3b:53:d9:a6:34:3a:ec:63:6a:62:e7:44:
87:98:b0:8e:2a:90:b4:84:77:3c:f0:a5:4a:69:b1:
ae:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:22:69:18:D4:46:B3:39:AF:A7:4C:FA:79:B6:78:FF:99:BF:3C:9A
X509v3 Authority Key Identifier:
keyid:EF:47:7C:A3:B4:49:BB:C4:12:47:E8:C9:21:E4:C8:DA:BF:C1:AF:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70d8o7RJu8QSR-jJIeTI2r_Br64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/AyJpGNRGszmvp0z6ebZ4_5m_PJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1eea2-9582-4a65-b5be-603aa1f209d8/1/70d8o7RJu8QSR-jJIeTI2r_Br64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.206.0/24
Signature Algorithm: sha256WithRSAEncryption
38:b7:04:21:d7:da:c8:05:0a:13:50:64:3b:b3:09:6c:e8:b5:
44:97:e2:f9:bb:8d:58:10:62:ee:4a:0f:ac:0f:51:49:d7:9d:
2c:88:d3:43:86:f6:18:10:39:2e:68:6a:8a:81:fe:e7:d2:2b:
62:45:ce:cc:4e:03:50:bb:c3:24:b0:1a:5a:38:3b:88:bf:75:
08:bd:95:9d:a0:9d:d6:07:27:26:21:b0:ed:d7:f2:c6:56:f4:
a8:92:02:e6:d3:e8:c9:e2:cd:be:be:a2:0b:b8:0f:7f:71:c4:
21:17:0a:31:62:c9:b7:7d:17:5d:44:15:59:31:cd:3b:a9:24:
2f:17:44:ec:f6:4b:96:86:32:68:98:32:61:47:93:e7:b7:85:
4e:4c:c8:6f:6d:a9:90:0e:5b:f3:b0:1d:6e:03:5c:d2:3a:28:
97:81:df:ff:26:42:0b:87:88:f4:5b:e2:97:1c:0c:7c:79:e8:
99:17:ba:c2:6b:76:50:af:ec:81:4f:6a:1f:78:a3:0b:7d:47:
b0:91:fa:27:67:2d:97:26:d7:01:4f:41:ae:36:93:d7:ab:11:
33:c8:e8:da:45:a4:58:4e:c6:61:83:77:a2:ce:32:26:bc:f0:
64:28:26:8d:3a:70:0e:fe:ce:54:8a:81:4d:16:75:43:f9:12:
66:00:1b:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuwgiAVfuSfuqxXnmbjw7lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDc3Y2EzYjQ0OWJiYzQxMjQ3ZThjOTIxZTRjOGRhYmZj
MWFmYWUwHhcNMjMwMTAxMTkxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzIyNjkxOGQ0NDZiMzM5YWZhNzRjZmE3OWI2NzhmZjk5YmYzYzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDaxuKr7ZOTQHf7qxipCgAODABXJ
aYHvELa6z4a1pykgAn13Ja0r2hYfaB8nYufBDSZ2yt4X90AUYLDGdPshnLiejJ2h
4akzOGNQJiS0RVqkLMoRsnDF13z4VZdvzHhRZbxWXVBR4rGYNpFAy8Qv7owlV/2g
I8pVR2ly8YegIKrCVHIUE0MoYv0CcWb19zkgRyrNXg60b73jnb7/RqJYuoyB/qnM
xNFJ86uixDl+/GhNPKkglmnEdapLSHm9VEwc7wi1++zs3+wUk9emks8o9xf2SsWK
vjcCTa1xY26G+l+Xsto7U9mmNDrsY2pi50SHmLCOKpC0hHc88KVKabGuLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAMiaRjURrM5r6dM+nm2eP+ZvzyaMB8GA1UdIwQY
MBaAFO9HfKO0SbvEEkfoySHkyNq/wa+uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBkOG83Ukp1OFFTUi1qSkllVEkycl9CcjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMWVlYTItOTU4Mi00YTY1LWI1YmUt
NjAzYWExZjIwOWQ4LzEvQXlKcEdOUkdzem12cDB6NmViWjRfNW1fUEpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9mMWVlYTItOTU4Mi00YTY1LWI1YmUtNjAzYWExZjIwOWQ4
LzEvNzBkOG83Ukp1OFFTUi1qSkllVEkycl9CcjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRHOMA0G
CSqGSIb3DQEBCwUAA4IBAQA4twQh19rIBQoTUGQ7swls6LVEl+L5u41YEGLuSg+s
D1FJ150siNNDhvYYEDkuaGqKgf7n0itiRc7MTgNQu8MksBpaODuIv3UIvZWdoJ3W
BycmIbDt1/LGVvSokgLm0+jJ4s2+vqILuA9/ccQhFwoxYsm3fRddRBVZMc07qSQv
F0Ts9kuWhjJomDJhR5Pnt4VOTMhvbamQDlvzsB1uA1zSOiiXgd//JkILh4j0W+KX
HAx8eeiZF7rCa3ZQr+yBT2ofeKMLfUewkfonZy2XJtcBT0GuNpPXqxEzyOjaRaRY
TsZhg3eizjImvPBkKCaNOnAO/s5UioFNFnVD+RJmABvx
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:22 2024 by rpki-client on console-fra.rpki-client.org