Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/TS6JjD2kykGOShDZDn0XNmKL0gQ.roa
File: TS6JjD2kykGOShDZDn0XNmKL0gQ.roa (raw, json)
Hash identifier: o8+6tPHjcoJX6buu2fBt6RJzERiWwhh6ZqznEmI/tS8=
Subject key identifier: 4D:2E:89:8C:3D:A4:CA:41:8E:4A:10:D9:0E:7D:17:36:62:8B:D2:04
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0187B4C943CDB1F44F5AF128C3AF79CE1BD0
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/TS6JjD2kykGOShDZDn0XNmKL0gQ.roa
Signing time: Mon 24 Apr 2023 19:41:41 +0000
ROA not before: Mon 24 Apr 2023 19:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.93.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 04:06:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b4:c9:43:cd:b1:f4:4f:5a:f1:28:c3:af:79:ce:1b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Apr 24 19:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d2e898c3da4ca418e4a10d90e7d1736628bd204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d1:a8:d2:24:c9:3d:38:7a:61:08:d1:a7:67:
9f:c1:8e:22:9d:9a:9b:0b:57:22:55:16:fd:7d:22:
e4:35:bb:7d:8d:98:58:41:47:96:5a:ff:fd:48:f6:
66:78:fd:88:7a:a6:a7:4c:ee:cc:84:4e:e2:af:a0:
33:a5:09:63:0d:a4:12:7d:6a:12:ae:87:65:5a:03:
3b:45:d9:0b:93:89:d3:39:44:c1:89:35:36:c8:b1:
c1:d5:5e:73:51:7a:7f:96:76:73:69:e3:0d:d6:ea:
01:3f:f9:d0:dc:fc:90:d5:95:3d:a9:6b:0a:a3:76:
eb:43:01:94:95:92:2e:a4:8a:54:09:43:2f:5e:b5:
aa:68:b9:8a:f5:56:0f:1c:ec:7b:ef:36:08:3e:97:
35:a6:ee:1b:28:9d:c0:b1:05:bb:5d:db:cc:71:22:
45:e4:2d:ec:02:9b:c3:31:44:f8:33:b7:84:a8:0a:
72:93:1a:ce:d6:62:71:96:31:9c:a6:03:f1:84:df:
20:3b:1d:5a:7e:cb:e7:24:df:b6:5e:ff:27:90:71:
bf:48:06:61:79:d6:6d:99:f9:45:64:b1:91:a8:c8:
bb:42:ca:91:49:0b:0d:4d:b3:55:6a:7d:64:cc:5f:
60:91:64:48:c7:50:c7:49:ba:c3:2f:0a:58:42:ac:
8e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2E:89:8C:3D:A4:CA:41:8E:4A:10:D9:0E:7D:17:36:62:8B:D2:04
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/TS6JjD2kykGOShDZDn0XNmKL0gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.52.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:87:99:e5:c1:2d:7f:df:e7:89:91:f8:30:22:0f:96:a6:6c:
4b:ba:98:33:97:35:c9:9b:a2:f1:42:a8:d1:06:8c:11:f2:da:
1c:61:ef:ac:a9:f9:4a:c4:25:b4:6b:22:42:ab:a9:6e:a2:b9:
1a:75:4f:a4:4a:67:8e:5b:da:c0:02:2f:1f:68:78:29:83:75:
cf:9f:c8:f7:5a:53:03:27:ef:8d:f9:54:41:05:13:ff:52:8b:
ff:ad:37:7a:7a:3b:6b:05:1a:22:37:cb:a7:5d:12:a0:44:97:
c4:4f:c9:ae:5f:01:96:3e:c7:de:35:b7:85:67:2a:56:89:44:
99:3d:0d:2e:5d:24:a8:11:4e:71:ae:3c:0e:f2:d8:06:cb:b3:
4a:7f:40:45:0a:cb:57:0c:51:07:02:eb:5a:a8:0d:76:fa:e2:
c2:ae:a4:3d:6e:e2:6a:65:ef:46:5a:6e:30:2b:bb:4f:f3:1c:
82:e3:8b:2a:71:04:8b:0a:43:28:0f:c2:a7:0d:8f:17:3a:78:
ca:bd:1d:e8:fb:fc:59:50:54:a0:c5:ef:e5:30:4f:22:82:69:
07:9e:bd:e2:f8:d2:93:01:aa:5e:72:f1:b3:5e:20:98:5b:de:
0c:3a:70:e1:19:17:97:5f:52:56:4f:da:b9:45:9a:6e:ea:95:
0e:0b:a0:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe0yUPNsfRPWvEow695zhvQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwNDI0MTk0MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDJlODk4YzNkYTRjYTQxOGU0YTEwZDkwZTdkMTczNjYyOGJkMjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdGo0iTJPTh6YQjRp2efwY4inZqb
C1ciVRb9fSLkNbt9jZhYQUeWWv/9SPZmeP2IeqanTO7MhE7ir6AzpQljDaQSfWoS
rodlWgM7RdkLk4nTOUTBiTU2yLHB1V5zUXp/lnZzaeMN1uoBP/nQ3PyQ1ZU9qWsK
o3brQwGUlZIupIpUCUMvXrWqaLmK9VYPHOx77zYIPpc1pu4bKJ3AsQW7XdvMcSJF
5C3sApvDMUT4M7eEqApykxrO1mJxljGcpgPxhN8gOx1afsvnJN+2Xv8nkHG/SAZh
edZtmflFZLGRqMi7QsqRSQsNTbNVan1kzF9gkWRIx1DHSbrDLwpYQqyOzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE0uiYw9pMpBjkoQ2Q59FzZii9IEMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvVFM2SmpEMmt5a0dPU2hEWkRuMFhObUtMMGdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwV00MA0G
CSqGSIb3DQEBCwUAA4IBAQBbh5nlwS1/3+eJkfgwIg+WpmxLupgzlzXJm6LxQqjR
BowR8tocYe+sqflKxCW0ayJCq6luorkadU+kSmeOW9rAAi8faHgpg3XPn8j3WlMD
J++N+VRBBRP/Uov/rTd6ejtrBRoiN8unXRKgRJfET8muXwGWPsfeNbeFZypWiUSZ
PQ0uXSSoEU5xrjwO8tgGy7NKf0BFCstXDFEHAutaqA12+uLCrqQ9buJqZe9GWm4w
K7tP8xyC44sqcQSLCkMoD8KnDY8XOnjKvR3o+/xZUFSgxe/lME8igmkHnr3i+NKT
AapecvGzXiCYW94MOnDhGReXX1JWT9q5RZpu6pUOC6DC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org