Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J08s6tvHLlG8MGK0T7GJkHSpO-0.roa
File: J08s6tvHLlG8MGK0T7GJkHSpO-0.roa (raw, json)
Hash identifier: vBGjhRZ6UemRbmMF1mW3fObJGslL5N+2B+G4QRI/vcs=
Subject key identifier: 27:4F:2C:EA:DB:C7:2E:51:BC:30:62:B4:4F:B1:89:90:74:A9:3B:ED
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0188D288F55643587661811ABB1258023BA1
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J08s6tvHLlG8MGK0T7GJkHSpO-0.roa
Signing time: Mon 19 Jun 2023 07:22:51 +0000
ROA not before: Mon 19 Jun 2023 07:22:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.57.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 20:21:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:88:f5:56:43:58:76:61:81:1a:bb:12:58:02:3b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jun 19 07:22:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=274f2ceadbc72e51bc3062b44fb1899074a93bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1e:70:1f:6a:be:95:9a:ea:d2:34:c1:ed:16:
8a:e2:e6:23:2a:cc:ed:0d:b7:ee:10:23:e6:25:5c:
10:54:48:42:da:10:8b:59:7c:4a:5a:69:7e:e6:72:
29:38:c5:5a:b8:12:03:45:f1:02:fc:ed:64:cc:4b:
8c:da:83:89:89:06:86:87:75:1f:52:d6:98:88:44:
74:a7:c4:d0:61:45:f1:86:42:5c:97:17:86:5d:65:
fd:b5:b2:06:af:8d:f5:d7:21:f4:ef:f2:dd:2e:89:
65:08:85:13:c1:1c:ff:06:13:81:c9:de:45:15:cc:
b8:0f:6c:bb:9c:67:d1:43:13:23:9c:f9:7c:29:a8:
f8:76:4f:14:76:d4:21:42:8f:f4:b2:fa:a3:af:bf:
c1:6c:dc:57:53:f4:46:ed:ba:34:b7:e0:1f:19:a4:
94:d0:26:d0:d4:82:51:ca:d5:d5:d6:b7:cd:7b:81:
60:e2:ab:6f:ca:bc:1b:2b:5a:aa:e1:a0:aa:7e:85:
0f:c7:48:c5:c7:b3:9d:9d:ba:a6:66:e0:a7:a0:5c:
db:f6:4a:85:94:c7:26:57:8c:36:14:ed:60:94:77:
d9:98:10:d2:c2:68:1e:87:c7:89:c4:cf:d3:5c:d5:
70:49:ad:ba:44:f5:06:d6:d9:1e:77:e6:6d:6a:0a:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4F:2C:EA:DB:C7:2E:51:BC:30:62:B4:4F:B1:89:90:74:A9:3B:ED
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/J08s6tvHLlG8MGK0T7GJkHSpO-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.41.0/24
Signature Algorithm: sha256WithRSAEncryption
05:78:fe:92:90:73:a4:50:59:32:34:ae:8d:8c:68:1c:41:3c:
4d:89:36:87:c5:a7:d4:8f:db:f7:af:7c:d0:4b:0c:c6:ff:76:
76:db:1f:51:b7:e9:a2:4b:c4:19:6c:6c:da:42:03:88:2c:a9:
22:97:ef:dd:57:5a:2e:34:87:52:1d:4f:59:13:43:2b:8c:39:
cb:e6:45:fe:d0:b7:12:6a:78:20:e3:ec:3f:c0:24:bd:04:94:
4f:ec:90:b4:b8:be:ec:90:17:29:1d:8f:cd:95:75:9f:0d:ee:
47:db:e8:66:63:0a:f2:af:c6:5c:9a:26:a7:2e:db:3b:96:c2:
4c:43:dd:e0:b0:46:c0:45:54:7e:2b:96:97:21:70:79:b3:3f:
e3:43:06:d6:41:48:2c:13:ce:65:bc:24:65:9b:8c:e3:65:44:
fb:d0:24:25:10:02:5c:f6:99:7c:89:69:44:05:b8:18:87:8a:
53:35:54:2a:2d:7b:66:86:83:a9:42:ab:aa:38:05:6f:55:44:
af:34:3c:1a:70:5c:ee:5f:b1:33:c9:5e:d9:7a:7a:93:77:56:
9a:ce:84:b2:85:ea:8a:45:26:24:33:5b:b0:69:64:56:d3:f6:
f3:27:8b:71:2b:9e:52:8b:62:17:f0:94:a4:70:f7:cb:7d:4a:
a0:4c:cc:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjSiPVWQ1h2YYEauxJYAjuhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMwNjE5MDcyMjUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzRmMmNlYWRiYzcyZTUxYmMzMDYyYjQ0ZmIxODk5MDc0YTkzYmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgx5wH2q+lZrq0jTB7RaK4uYjKszt
DbfuECPmJVwQVEhC2hCLWXxKWml+5nIpOMVauBIDRfEC/O1kzEuM2oOJiQaGh3Uf
UtaYiER0p8TQYUXxhkJclxeGXWX9tbIGr4311yH07/LdLollCIUTwRz/BhOByd5F
Fcy4D2y7nGfRQxMjnPl8Kaj4dk8UdtQhQo/0svqjr7/BbNxXU/RG7bo0t+AfGaSU
0CbQ1IJRytXV1rfNe4Fg4qtvyrwbK1qq4aCqfoUPx0jFx7OdnbqmZuCnoFzb9kqF
lMcmV4w2FO1glHfZmBDSwmgeh8eJxM/TXNVwSa26RPUG1tked+ZtagrbjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCdPLOrbxy5RvDBitE+xiZB0qTvtMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvSjA4czZ0dkhMbEc4TUdLMFQ3R0prSFNwTy0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTkpMA0G
CSqGSIb3DQEBCwUAA4IBAQAFeP6SkHOkUFkyNK6NjGgcQTxNiTaHxafUj9v3r3zQ
SwzG/3Z22x9Rt+miS8QZbGzaQgOILKkil+/dV1ouNIdSHU9ZE0MrjDnL5kX+0LcS
angg4+w/wCS9BJRP7JC0uL7skBcpHY/NlXWfDe5H2+hmYwryr8ZcmianLts7lsJM
Q93gsEbARVR+K5aXIXB5sz/jQwbWQUgsE85lvCRlm4zjZUT70CQlEAJc9pl8iWlE
BbgYh4pTNVQqLXtmhoOpQquqOAVvVUSvNDwacFzuX7EzyV7ZenqTd1aazoSyheqK
RSYkM1uwaWRW0/bzJ4txK55Si2IX8JSkcPfLfUqgTMxI
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org