Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dZMU3Nth2c5YSztLG6hBBovL-gw.roa
File: dZMU3Nth2c5YSztLG6hBBovL-gw.roa (raw, json)
Hash identifier: H21vfqnNeAu5dRJV+Jo6c14itedO59g6UCot7DvZpkg=
Subject key identifier: 75:93:14:DC:DB:61:D9:CE:58:4B:3B:4B:1B:A8:41:06:8B:CB:FA:0C
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01927CD20885D707CE9F9E41ED0876BF9086
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dZMU3Nth2c5YSztLG6hBBovL-gw.roa
Signing time: Fri 11 Oct 2024 18:23:12 +0000
ROA not before: Fri 11 Oct 2024 18:23:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56771
IP address blocks: 194.102.56.0/24 maxlen: 24
217.156.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7c:d2:08:85:d7:07:ce:9f:9e:41:ed:08:76:bf:90:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Oct 11 18:23:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=759314dcdb61d9ce584b3b4b1ba841068bcbfa0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:24:2b:2b:0a:b9:d2:b6:97:a7:8e:ae:99:3e:
1b:4d:a6:46:2a:22:1b:2b:fe:92:72:b1:73:f0:6f:
16:0b:ac:5d:29:e2:c0:cc:ba:9f:50:3b:1b:75:31:
07:a3:45:fe:b6:50:53:69:33:65:d1:b9:b0:48:34:
d2:ca:5a:62:26:f7:18:c1:e3:61:8f:34:65:76:9c:
ed:8a:aa:f9:2e:12:8e:78:48:52:10:e6:0e:1f:59:
95:55:0f:81:3f:61:a0:78:a6:c8:85:cf:a7:44:72:
9e:f8:ac:a7:08:be:0d:53:33:d6:7d:d1:4b:4d:13:
95:0e:37:04:8a:a0:56:5c:d8:2c:f6:cc:92:2e:82:
23:65:66:5c:ef:d0:07:f9:fe:91:01:6a:41:a5:d1:
92:04:96:62:81:08:cb:68:79:50:29:96:f2:0c:08:
0c:38:6c:8c:20:77:b4:0c:dd:bc:18:91:9e:bb:66:
21:6f:7d:22:a4:a6:2c:9e:fa:1d:bc:73:87:28:22:
ce:ef:75:1f:cd:01:f5:34:e8:4b:73:8c:95:b3:0e:
04:d4:93:8d:cf:da:38:ee:df:da:15:12:e5:85:f7:
a5:47:b3:54:58:7f:25:b2:03:b5:be:f5:4d:da:66:
9d:33:ed:1a:b9:67:05:b2:c6:9f:0c:46:4d:10:45:
a7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:93:14:DC:DB:61:D9:CE:58:4B:3B:4B:1B:A8:41:06:8B:CB:FA:0C
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/dZMU3Nth2c5YSztLG6hBBovL-gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.56.0/24
217.156.33.0/24
Signature Algorithm: sha256WithRSAEncryption
89:dc:1e:77:ba:60:6b:91:71:13:91:3f:e8:81:0e:f9:b6:bf:
ca:1b:c2:14:eb:8e:9f:1d:c7:92:f4:66:c0:a3:63:ce:71:bd:
3b:c6:82:59:8a:6f:1a:04:62:e0:81:26:7a:6e:a6:e7:87:05:
0d:c1:aa:5d:96:3a:97:09:20:a5:fe:62:28:3b:49:6c:b4:f0:
f1:93:1e:38:37:d5:db:cc:12:d1:78:b3:4c:60:7b:b2:a2:50:
2b:67:aa:b9:6e:a1:80:ee:32:8b:35:21:70:be:6b:a0:8c:fc:
c7:1f:d5:17:cf:d1:b6:e3:3d:6b:3d:91:4a:00:b4:00:32:c7:
aa:4e:87:4b:74:9c:f3:94:01:48:f2:bd:5b:fb:aa:38:c2:90:
77:f8:fd:d6:e9:45:22:64:71:a8:86:df:71:9c:4b:1a:7d:2b:
4a:3e:02:cd:33:5a:04:f8:bd:95:be:62:75:09:1b:8f:eb:ab:
80:27:8b:60:5e:fe:f6:bf:ed:8f:ea:b1:7d:1c:bb:e2:a0:17:
8a:aa:61:d6:aa:73:90:62:0d:24:a4:9b:15:08:ce:e6:49:06:
88:78:51:f5:e1:93:0d:30:76:38:a9:47:67:78:32:ac:92:86:
2e:a0:d8:5c:d6:62:13:4b:41:79:fc:74:b1:e8:b8:2c:b8:6e:
5d:95:39:4a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZJ80giF1wfOn55B7Qh2v5CGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjQxMDExMTgyMzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTkzMTRkY2RiNjFkOWNlNTg0YjNiNGIxYmE4NDEwNjhiY2JmYTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3SQrKwq50raXp46umT4bTaZGKiIb
K/6ScrFz8G8WC6xdKeLAzLqfUDsbdTEHo0X+tlBTaTNl0bmwSDTSylpiJvcYweNh
jzRldpztiqr5LhKOeEhSEOYOH1mVVQ+BP2GgeKbIhc+nRHKe+KynCL4NUzPWfdFL
TROVDjcEiqBWXNgs9sySLoIjZWZc79AH+f6RAWpBpdGSBJZigQjLaHlQKZbyDAgM
OGyMIHe0DN28GJGeu2Yhb30ipKYsnvodvHOHKCLO73UfzQH1NOhLc4yVsw4E1JON
z9o47t/aFRLlhfelR7NUWH8lsgO1vvVN2madM+0auWcFssafDEZNEEWn4QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHWTFNzbYdnOWEs7SxuoQQaLy/oMMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvZFpNVTNOdGgyYzVZU3p0TEc2aEJCb3ZMLWd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwmY4AwQA
2ZwhMA0GCSqGSIb3DQEBCwUAA4IBAQCJ3B53umBrkXETkT/ogQ75tr/KG8IU646f
HceS9GbAo2POcb07xoJZim8aBGLggSZ6bqbnhwUNwapdljqXCSCl/mIoO0lstPDx
kx44N9XbzBLReLNMYHuyolArZ6q5bqGA7jKLNSFwvmugjPzHH9UXz9G24z1rPZFK
ALQAMseqTodLdJzzlAFI8r1b+6o4wpB3+P3W6UUiZHGoht9xnEsafStKPgLNM1oE
+L2VvmJ1CRuP66uAJ4tgXv72v+2P6rF9HLvioBeKqmHWqnOQYg0kpJsVCM7mSQaI
eFH14ZMNMHY4qUdneDKskoYuoNhc1mITS0F5/HSx6LgsuG5dlTlK
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:48 2025 by rpki-client