Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/cBMe0X1QEbfk7D4ooycWDVzTgCA.roa
File: cBMe0X1QEbfk7D4ooycWDVzTgCA.roa (raw, json)
Hash identifier: Zml7K3tctZJd5bq8xw79NN0iyE5QJlR83a5bmmHfLv8=
Subject key identifier: 70:13:1E:D1:7D:50:11:B7:E4:EC:3E:28:A3:27:16:0D:5C:D3:80:20
Certificate issuer: /CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Certificate serial: 01856BEEDC3762A8E03A4FADCD019D000161
Authority key identifier: BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/cBMe0X1QEbfk7D4ooycWDVzTgCA.roa
Signing time: Sun 01 Jan 2023 06:04:54 +0000
ROA not before: Sun 01 Jan 2023 06:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9171
IP address blocks: 193.47.142.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:dc:37:62:a8:e0:3a:4f:ad:cd:01:9d:00:01:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba97c15456eb600403ecfbb16c20e08160944f8f
Validity
Not Before: Jan 1 06:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70131ed17d5011b7e4ec3e28a327160d5cd38020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7c:34:bb:c7:86:27:20:33:d3:69:25:9c:d5:
5a:00:48:dc:da:58:67:51:5c:16:03:a7:46:d5:85:
fe:73:fa:6b:ff:86:b5:fa:6f:d9:91:e6:6c:15:e7:
bb:15:e4:e8:dd:65:60:9a:23:f4:80:57:43:ad:7d:
1c:81:34:9e:5e:4d:a4:cc:a3:1d:bb:df:fb:64:b6:
2e:32:55:3e:99:85:20:aa:2a:9a:0d:30:82:7c:eb:
1b:09:5e:a9:60:a6:97:3d:2d:ca:12:1f:f7:04:15:
4f:ef:c2:0a:15:67:3b:9b:15:4d:47:1c:d8:b4:fe:
14:38:b5:28:f3:02:b1:8f:56:c5:b4:7a:bb:7e:01:
16:a6:c7:c1:cb:d2:fc:7c:21:d7:36:33:d0:cb:fb:
40:84:b2:da:34:6c:56:cb:2f:5a:0d:ee:ea:35:ab:
d8:27:1b:40:ef:9e:65:bb:41:95:75:6b:9f:72:8b:
36:55:f5:82:6b:74:65:3b:36:bf:42:92:d7:28:ee:
98:0f:94:39:b6:8d:42:82:bb:e5:0a:55:74:8a:90:
b2:66:25:76:49:1e:de:e1:19:81:cb:ae:62:0c:47:
94:26:a3:ea:be:f1:85:5d:22:09:2a:44:e6:a0:cc:
cf:df:85:2f:49:87:91:d8:99:f3:30:8e:be:c5:d9:
bf:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:13:1E:D1:7D:50:11:B7:E4:EC:3E:28:A3:27:16:0D:5C:D3:80:20
X509v3 Authority Key Identifier:
keyid:BA:97:C1:54:56:EB:60:04:03:EC:FB:B1:6C:20:E0:81:60:94:4F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/upfBVFbrYAQD7PuxbCDggWCUT48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/cBMe0X1QEbfk7D4ooycWDVzTgCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c46d1e-987d-4f65-b11b-2e2cd6435106/1/upfBVFbrYAQD7PuxbCDggWCUT48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.142.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:7a:b8:41:18:22:f8:af:cb:1d:55:2c:90:28:72:16:db:c4:
c6:ea:17:7b:35:e6:2a:48:6d:d6:a6:ca:36:03:01:16:06:49:
c0:89:40:bc:df:bb:2a:32:18:93:d3:50:7c:75:de:bd:ab:99:
05:d5:c1:a1:fb:30:5b:f1:fb:13:d3:a9:0e:16:49:95:24:c1:
73:91:38:51:0b:e6:10:93:be:26:37:7f:81:e8:b7:73:e9:9f:
0e:e1:33:3d:46:b1:49:73:ed:52:26:b3:f7:da:d2:70:b8:ea:
49:f6:e2:2f:55:50:8f:ab:4a:2b:f3:f5:7e:a6:91:66:c9:bf:
56:61:d5:58:c3:de:eb:0c:32:52:ed:e1:01:1a:f4:39:2f:5f:
c9:05:f6:dc:10:73:c7:2b:ca:28:cb:d0:06:04:28:be:5b:91:
6f:a1:c2:de:fb:a6:0d:3e:39:d9:92:ae:65:e0:42:65:e0:2f:
ae:72:37:4b:7c:b1:dc:d4:ad:5e:96:39:d0:ed:98:4d:62:7b:
24:42:a1:ac:3a:33:b1:ab:c0:21:cc:b4:3d:04:6b:25:58:13:
82:25:06:d9:b1:e9:d5:6a:e6:99:f2:f3:70:48:af:ba:20:93:
ec:0d:23:78:2e:37:30:91:13:38:8d:63:88:3e:27:5f:3d:38:
da:9e:69:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7tw3YqjgOk+tzQGdAAFhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhOTdjMTU0NTZlYjYwMDQwM2VjZmJiMTZjMjBlMDgxNjA5
NDRmOGYwHhcNMjMwMTAxMDYwNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDEzMWVkMTdkNTAxMWI3ZTRlYzNlMjhhMzI3MTYwZDVjZDM4MDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXw0u8eGJyAz02klnNVaAEjc2lhn
UVwWA6dG1YX+c/pr/4a1+m/ZkeZsFee7FeTo3WVgmiP0gFdDrX0cgTSeXk2kzKMd
u9/7ZLYuMlU+mYUgqiqaDTCCfOsbCV6pYKaXPS3KEh/3BBVP78IKFWc7mxVNRxzY
tP4UOLUo8wKxj1bFtHq7fgEWpsfBy9L8fCHXNjPQy/tAhLLaNGxWyy9aDe7qNavY
JxtA755lu0GVdWufcos2VfWCa3RlOza/QpLXKO6YD5Q5to1CgrvlClV0ipCyZiV2
SR7e4RmBy65iDEeUJqPqvvGFXSIJKkTmoMzP34UvSYeR2JnzMI6+xdm/oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHATHtF9UBG35Ow+KKMnFg1c04AgMB8GA1UdIwQY
MBaAFLqXwVRW62AEA+z7sWwg4IFglE+PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9jNDZkMWUtOTg3ZC00ZjY1LWIxMWIt
MmUyY2Q2NDM1MTA2LzEvY0JNZTBYMVFFYmZrN0Q0b295Y1dEVnpUZ0NBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9jNDZkMWUtOTg3ZC00ZjY1LWIxMWItMmUyY2Q2NDM1MTA2
LzEvdXBmQlZGYnJZQVFEN1B1eGJDRGdnV0NVVDQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwS+OMA0G
CSqGSIb3DQEBCwUAA4IBAQCgerhBGCL4r8sdVSyQKHIW28TG6hd7NeYqSG3Wpso2
AwEWBknAiUC837sqMhiT01B8dd69q5kF1cGh+zBb8fsT06kOFkmVJMFzkThRC+YQ
k74mN3+B6Ldz6Z8O4TM9RrFJc+1SJrP32tJwuOpJ9uIvVVCPq0or8/V+ppFmyb9W
YdVYw97rDDJS7eEBGvQ5L1/JBfbcEHPHK8ooy9AGBCi+W5FvocLe+6YNPjnZkq5l
4EJl4C+ucjdLfLHc1K1eljnQ7ZhNYnskQqGsOjOxq8AhzLQ9BGslWBOCJQbZsenV
auaZ8vNwSK+6IJPsDSN4LjcwkRM4jWOIPidfPTjanmlU
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:04 2024 by rpki-client on console-fra.rpki-client.org