Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/Xu-Ylf4lWwYet3DVg_aKh5dbELM.roa
File: Xu-Ylf4lWwYet3DVg_aKh5dbELM.roa (raw, json)
Hash identifier: 9UCnTTgNuQS8SU7u8KbaMwPgYQtgdQGVRKK8avUayxQ=
Subject key identifier: 5E:EF:98:95:FE:25:5B:06:1E:B7:70:D5:83:F6:8A:87:97:5B:10:B3
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0192092D2EBB3500B145EA34619334F30668
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/Xu-Ylf4lWwYet3DVg_aKh5dbELM.roa
Signing time: Thu 19 Sep 2024 07:26:48 +0000
ROA not before: Thu 19 Sep 2024 07:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 193.168.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:09:2d:2e:bb:35:00:b1:45:ea:34:61:93:34:f3:06:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 19 07:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5eef9895fe255b061eb770d583f68a87975b10b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:53:7e:fd:2c:16:3a:91:b1:5b:93:36:a0:0b:
dc:f4:05:97:e9:19:9e:31:88:64:9c:22:11:d2:68:
da:36:08:b8:c5:32:89:35:53:4c:e2:58:b8:32:ac:
ad:04:6d:6c:57:0d:42:ac:d3:2e:6c:4f:06:1c:b2:
99:d4:a6:9b:87:58:e8:92:45:5c:ff:35:64:3d:ce:
73:3b:5a:07:52:64:c9:a5:15:06:e9:31:8e:df:98:
07:0d:eb:b9:01:57:b3:f0:29:78:14:69:28:4f:07:
dc:38:6f:aa:3f:22:98:d4:09:30:e0:b1:6d:13:16:
21:61:79:e0:82:4c:f2:b3:e5:41:80:94:ed:1d:fd:
e1:77:19:a9:6c:27:1c:ac:fc:ca:54:b2:eb:4c:5a:
d3:3e:3c:9a:4d:1d:d1:99:9a:09:bf:01:6e:e4:33:
33:61:da:23:69:a3:81:c2:7b:ce:c9:5a:76:74:a6:
d3:f6:20:b7:f9:23:f9:1d:3b:0c:01:b2:42:30:e7:
02:d3:d4:9f:29:cd:35:7d:73:29:28:3f:2f:fa:15:
06:45:51:f9:f8:90:f9:60:6d:70:3e:58:40:a5:d4:
da:f7:a8:8f:d6:fc:a7:70:09:c2:bf:54:5b:7a:4d:
b9:05:c2:85:88:de:a0:87:48:ff:ed:b1:05:11:17:
18:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:EF:98:95:FE:25:5B:06:1E:B7:70:D5:83:F6:8A:87:97:5B:10:B3
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/Xu-Ylf4lWwYet3DVg_aKh5dbELM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.202.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:7a:43:5b:3f:22:8b:8e:e4:1c:c9:43:9d:fd:60:64:22:0f:
0c:d1:99:38:84:fd:af:d4:7b:32:72:ca:26:3f:08:47:fa:b0:
84:3a:ec:f5:9b:88:f1:fc:d2:3c:c9:52:38:0e:84:8c:8e:12:
ce:ff:28:0e:dd:51:97:73:22:8b:c3:38:6f:f7:00:1f:97:6c:
46:47:b7:4b:6c:bf:a5:e8:96:d4:dc:16:ff:73:31:ed:4c:72:
90:1e:bd:f6:e1:0b:ef:14:4d:d0:e6:0a:6c:75:e6:2b:08:24:
1a:cb:1c:41:9a:4b:aa:ac:22:87:2b:72:d4:c3:66:65:11:6c:
3a:37:87:be:69:23:1b:2b:5c:ff:92:cc:16:b6:4e:e9:d4:60:
47:af:d3:28:7f:90:51:74:80:8e:9a:ef:09:d4:19:26:76:9e:
40:2d:5b:c9:d0:db:39:d9:86:e7:60:7c:08:e2:ea:2d:55:5e:
56:65:5d:f3:8f:75:67:db:31:6c:43:9e:90:e4:1b:11:8a:c7:
9a:0f:bd:f3:a0:97:12:bf:a4:72:65:1c:e7:7a:01:d3:c8:4a:
c6:c1:e5:c6:46:44:b3:32:75:f8:07:2e:08:ef:27:68:b5:8f:
cd:96:1d:51:c0:e3:88:d1:06:51:1e:db:d4:f3:6c:9a:d6:0f:
84:5d:8a:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIJLS67NQCxReo0YZM08wZoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk
ZjM1NGEwHhcNMjQwOTE5MDcyNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZWVmOTg5NWZlMjU1YjA2MWViNzcwZDU4M2Y2OGE4Nzk3NWIxMGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1N+/SwWOpGxW5M2oAvc9AWX6Rme
MYhknCIR0mjaNgi4xTKJNVNM4li4MqytBG1sVw1CrNMubE8GHLKZ1Kabh1jokkVc
/zVkPc5zO1oHUmTJpRUG6TGO35gHDeu5AVez8Cl4FGkoTwfcOG+qPyKY1Akw4LFt
ExYhYXnggkzys+VBgJTtHf3hdxmpbCccrPzKVLLrTFrTPjyaTR3RmZoJvwFu5DMz
YdojaaOBwnvOyVp2dKbT9iC3+SP5HTsMAbJCMOcC09SfKc01fXMpKD8v+hUGRVH5
+JD5YG1wPlhApdTa96iP1vyncAnCv1Rbek25BcKFiN6gh0j/7bEFERcYawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF7vmJX+JVsGHrdw1YP2ioeXWxCzMB8GA1UdIwQY
MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt
MjBlMTk3ODBjYjJlLzEvWHUtWWxmNGxXd1lldDNEVmdfYUtoNWRiRUxNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl
LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwajKMA0G
CSqGSIb3DQEBCwUAA4IBAQCeekNbPyKLjuQcyUOd/WBkIg8M0Zk4hP2v1Hsycsom
PwhH+rCEOuz1m4jx/NI8yVI4DoSMjhLO/ygO3VGXcyKLwzhv9wAfl2xGR7dLbL+l
6JbU3Bb/czHtTHKQHr324QvvFE3Q5gpsdeYrCCQayxxBmkuqrCKHK3LUw2ZlEWw6
N4e+aSMbK1z/kswWtk7p1GBHr9Mof5BRdICOmu8J1Bkmdp5ALVvJ0Ns52YbnYHwI
4uotVV5WZV3zj3Vn2zFsQ56Q5BsRiseaD73zoJcSv6RyZRznegHTyErGweXGRkSz
MnX4By4I7ydotY/Nlh1RwOOI0QZRHtvU82ya1g+EXYr8
-----END CERTIFICATE-----
Generated at Thu Oct 17 17:19:20 2024 by rpki-client on console-fra.rpki-client.org