Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/gjqfNSpWxvNJBk6yNmp9FQq1FAY.roa
File: gjqfNSpWxvNJBk6yNmp9FQq1FAY.roa (raw, json)
Hash identifier: O4Z9/tRJBto01GPa0TZEGqzygozdv5x90PacbWlmGso=
Subject key identifier: 82:3A:9F:35:2A:56:C6:F3:49:06:4E:B2:36:6A:7D:15:0A:B5:14:06
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018996D06CBFB307F148FD74A51858105B86
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/gjqfNSpWxvNJBk6yNmp9FQq1FAY.roa
Signing time: Thu 27 Jul 2023 10:06:28 +0000
ROA not before: Thu 27 Jul 2023 10:06:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47217
IP address blocks: 193.57.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jul 2023 10:07:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:d0:6c:bf:b3:07:f1:48:fd:74:a5:18:58:10:5b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jul 27 10:06:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=823a9f352a56c6f349064eb2366a7d150ab51406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a7:53:d1:b4:c6:66:ed:c2:89:82:55:a4:f2:
3d:84:0d:50:62:9e:87:53:82:07:6a:57:57:d8:bf:
ec:94:e5:46:03:36:e3:a4:aa:a3:32:b2:4b:96:3d:
48:4c:ef:29:fe:0a:57:86:99:0d:4b:09:d5:e3:c5:
e9:4c:6e:0b:31:93:4a:be:cd:89:9c:23:cb:9e:5b:
94:8d:c4:20:bd:16:1d:9b:7f:c4:e1:db:9a:5d:ed:
3b:60:e8:04:e5:ea:0f:c7:12:8a:8d:a4:81:a4:79:
b2:c8:8b:6d:74:07:0c:45:a5:44:7b:07:fe:65:ac:
8a:c5:31:61:2e:8a:8f:77:73:77:b1:07:b5:5f:49:
40:3b:69:11:97:bc:14:b1:4b:08:c3:3b:7e:24:e7:
d0:ac:15:e4:97:d5:2a:99:d7:45:e0:53:2e:03:68:
89:3d:b4:e1:0c:01:a3:76:d7:b0:02:20:9e:0c:38:
a4:03:98:84:73:82:5a:9e:64:70:1b:60:77:b9:0a:
f4:82:59:5f:d5:7d:c6:b2:93:d5:c5:82:71:f2:25:
21:63:91:1b:17:2a:a0:d1:f9:e0:76:af:2f:19:03:
d7:c0:ba:dd:65:0a:f7:04:5f:9e:c7:18:f2:61:20:
7e:74:f7:83:98:9a:d6:d3:67:4e:54:79:7f:23:14:
31:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:3A:9F:35:2A:56:C6:F3:49:06:4E:B2:36:6A:7D:15:0A:B5:14:06
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/gjqfNSpWxvNJBk6yNmp9FQq1FAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.41.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:0f:c9:74:64:7c:e9:2f:46:df:2b:eb:b7:5f:a8:24:27:61:
c2:4a:2d:03:4e:83:ec:e7:3e:fb:25:2c:73:f7:c7:40:cf:3b:
04:76:ce:72:11:81:79:09:d0:e1:9f:f3:cb:0f:0d:34:4b:ee:
7a:3e:78:87:b5:79:79:40:0b:b5:cd:8e:da:b8:a1:9a:1b:b4:
5c:0b:f9:26:f9:40:4e:de:5e:e5:a5:96:87:97:f6:fa:e6:00:
e5:3a:37:82:93:c8:65:d8:7a:9d:a4:d1:dd:bd:8b:4a:46:16:
0f:8d:d8:00:89:d7:03:91:2f:cb:12:f4:29:32:65:ff:4a:30:
73:ec:72:e1:22:6f:bc:db:80:a1:c7:c2:b8:6d:6c:46:8c:24:
f1:15:08:cb:c9:a2:bf:c5:c4:fb:54:a3:6a:3c:d9:96:4d:8e:
2d:36:68:b4:4f:b5:97:92:5a:6f:d2:c1:94:56:30:d2:6f:f9:
6c:d4:b5:14:fa:ac:b3:b4:b0:41:d2:29:32:08:71:30:ae:f2:
16:e0:ed:20:8a:fc:db:8d:f0:7b:31:60:79:57:1a:84:ab:08:
20:6b:c5:54:17:ac:39:eb:b4:12:9f:4f:9a:64:7b:d0:db:da:
d3:53:cc:80:31:89:52:8b:ca:37:0c:3b:0d:aa:40:f3:65:62:
d1:08:80:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmW0Gy/swfxSP10pRhYEFuGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMwNzI3MTAwNjI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjNhOWYzNTJhNTZjNmYzNDkwNjRlYjIzNjZhN2QxNTBhYjUxNDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqdT0bTGZu3CiYJVpPI9hA1QYp6H
U4IHaldX2L/slOVGAzbjpKqjMrJLlj1ITO8p/gpXhpkNSwnV48XpTG4LMZNKvs2J
nCPLnluUjcQgvRYdm3/E4duaXe07YOgE5eoPxxKKjaSBpHmyyIttdAcMRaVEewf+
ZayKxTFhLoqPd3N3sQe1X0lAO2kRl7wUsUsIwzt+JOfQrBXkl9UqmddF4FMuA2iJ
PbThDAGjdtewAiCeDDikA5iEc4JanmRwG2B3uQr0gllf1X3GspPVxYJx8iUhY5Eb
Fyqg0fngdq8vGQPXwLrdZQr3BF+exxjyYSB+dPeDmJrW02dOVHl/IxQxbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFII6nzUqVsbzSQZOsjZqfRUKtRQGMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvZ2pxZk5TcFd4dk5KQms2eU5tcDlGUXExRkFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTkpMA0G
CSqGSIb3DQEBCwUAA4IBAQAbD8l0ZHzpL0bfK+u3X6gkJ2HCSi0DToPs5z77JSxz
98dAzzsEds5yEYF5CdDhn/PLDw00S+56PniHtXl5QAu1zY7auKGaG7RcC/km+UBO
3l7lpZaHl/b65gDlOjeCk8hl2HqdpNHdvYtKRhYPjdgAidcDkS/LEvQpMmX/SjBz
7HLhIm+824Chx8K4bWxGjCTxFQjLyaK/xcT7VKNqPNmWTY4tNmi0T7WXklpv0sGU
VjDSb/ls1LUU+qyztLBB0ikyCHEwrvIW4O0givzbjfB7MWB5VxqEqwgga8VUF6w5
67QSn0+aZHvQ29rTU8yAMYlSi8o3DDsNqkDzZWLRCICc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org