Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/nO-vP-Sifjax_g55iBCKiSbItmU.roa
File: nO-vP-Sifjax_g55iBCKiSbItmU.roa (raw, json)
Hash identifier: YXiZR6Xe4cI+KQDhjHjPxlPHzmes3BzO5oTE2+tqOQI=
Subject key identifier: 9C:EF:AF:3F:E4:A2:7E:36:B1:FE:0E:79:88:10:8A:89:26:C8:B6:65
Certificate issuer: /CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Certificate serial: 018570951C35CE7F7F134175C9A94F7F23FA
Authority key identifier: A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/nO-vP-Sifjax_g55iBCKiSbItmU.roa
Signing time: Mon 02 Jan 2023 03:44:58 +0000
ROA not before: Mon 02 Jan 2023 03:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.150.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Jan 2023 22:15:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:1c:35:ce:7f:7f:13:41:75:c9:a9:4f:7f:23:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5b0c05731efa4bbe5c2a30ae5189f7785d2d499
Validity
Not Before: Jan 2 03:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cefaf3fe4a27e36b1fe0e7988108a8926c8b665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1d:62:67:c5:10:28:c0:e4:9b:33:f0:0b:c4:
0e:a0:9d:dd:71:4d:27:8f:cf:11:54:ac:5d:95:32:
c3:cd:83:f1:75:9c:29:67:93:be:61:b4:d0:41:83:
e1:85:8a:dc:8e:1f:b8:40:2e:76:fc:3b:5c:21:36:
77:c2:18:9c:c6:e6:7f:9a:f3:66:da:25:9d:a4:5f:
c6:7d:4d:42:c9:f9:79:bd:08:0a:50:d7:51:44:02:
2e:9f:e3:31:72:3b:c4:3e:a0:1e:fd:e5:70:6c:84:
14:99:dd:7b:13:c0:5c:36:a4:bd:1e:92:0b:39:af:
a2:ce:13:75:b6:9d:d8:7d:10:4f:41:d7:d5:a7:49:
e7:f8:37:c3:5e:a1:25:81:ba:52:e1:58:ca:24:9e:
62:b2:81:8f:52:4d:29:5d:b3:54:e2:73:16:a1:3a:
5d:2b:3e:cf:82:72:00:c9:c1:b5:08:3b:18:2b:b3:
c4:42:9b:50:c0:70:ec:33:77:dd:97:21:62:86:f2:
dd:44:94:87:f6:56:0a:c1:a5:eb:00:0a:0d:07:bf:
06:0a:4c:c9:9d:00:10:01:7f:e1:22:59:00:58:bf:
bd:57:c5:cc:2b:54:87:a6:90:e1:ba:5a:dd:97:82:
84:c0:2a:03:6f:13:9c:c4:c7:fe:20:8d:df:69:02:
2b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EF:AF:3F:E4:A2:7E:36:B1:FE:0E:79:88:10:8A:89:26:C8:B6:65
X509v3 Authority Key Identifier:
keyid:A5:B0:C0:57:31:EF:A4:BB:E5:C2:A3:0A:E5:18:9F:77:85:D2:D4:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/nO-vP-Sifjax_g55iBCKiSbItmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/25149c-0932-4683-8ab8-d15febdf5ecf/1/pbDAVzHvpLvlwqMK5Rifd4XS1Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.188.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:ba:27:a3:6e:97:c0:5d:a7:43:80:2e:55:67:ce:e0:b3:12:
ca:54:5f:08:54:7e:9e:7c:b6:3a:ba:4f:bc:c8:87:6f:c1:8c:
97:ea:a4:55:e3:1d:f1:6c:33:66:3f:0e:60:cd:a0:bd:fe:59:
c9:22:ee:f3:f8:74:7f:7d:54:47:55:d0:d0:be:0f:79:d0:ae:
0e:b3:70:1b:d2:74:98:d4:5e:2f:a3:28:c3:b6:72:64:5c:d3:
cc:74:09:49:75:d7:73:d1:84:93:7b:b9:8b:2a:b9:17:9f:7b:
6f:5e:4a:cc:aa:3b:ee:fb:a5:58:38:af:9d:19:b9:c8:11:9e:
f5:e4:a2:99:db:65:1d:e6:da:28:32:21:f1:11:a9:ec:fb:14:
0d:3c:d3:7c:97:fd:bd:4f:15:bd:f4:ff:4d:67:14:c3:3c:61:
1f:77:e8:c8:fe:36:3c:fb:de:b9:9c:34:1b:4f:ff:e7:77:99:
68:79:c0:ee:dc:24:1a:80:6b:9b:24:03:d5:46:34:e3:3f:39:
4c:ee:9c:cb:fa:90:a1:40:91:7f:5c:e4:91:9a:11:cc:68:cb:
a9:84:18:f6:1c:89:51:a6:5d:66:1f:31:ea:c4:40:e7:8d:28:
bf:5c:fe:31:ef:0b:de:bf:51:f1:01:a4:c9:87:05:34:32:82:
58:e0:cb:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlRw1zn9/E0F1yalPfyP6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YjBjMDU3MzFlZmE0YmJlNWMyYTMwYWU1MTg5Zjc3ODVk
MmQ0OTkwHhcNMjMwMTAyMDM0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2VmYWYzZmU0YTI3ZTM2YjFmZTBlNzk4ODEwOGE4OTI2YzhiNjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjR1iZ8UQKMDkmzPwC8QOoJ3dcU0n
j88RVKxdlTLDzYPxdZwpZ5O+YbTQQYPhhYrcjh+4QC52/DtcITZ3whicxuZ/mvNm
2iWdpF/GfU1Cyfl5vQgKUNdRRAIun+MxcjvEPqAe/eVwbIQUmd17E8BcNqS9HpIL
Oa+izhN1tp3YfRBPQdfVp0nn+DfDXqElgbpS4VjKJJ5isoGPUk0pXbNU4nMWoTpd
Kz7PgnIAycG1CDsYK7PEQptQwHDsM3fdlyFihvLdRJSH9lYKwaXrAAoNB78GCkzJ
nQAQAX/hIlkAWL+9V8XMK1SHppDhulrdl4KEwCoDbxOcxMf+II3faQIrdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJzvrz/kon42sf4OeYgQiokmyLZlMB8GA1UdIwQY
MBaAFKWwwFcx76S75cKjCuUYn3eF0tSZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGJEQVZ6SHZwTHZsd3FNSzVSaWZkNFhTMUprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8yNTE0OWMtMDkzMi00NjgzLThhYjgt
ZDE1ZmViZGY1ZWNmLzEvbk8tdlAtU2lmamF4X2c1NWlCQ0tpU2JJdG1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8yNTE0OWMtMDkzMi00NjgzLThhYjgtZDE1ZmViZGY1ZWNm
LzEvcGJEQVZ6SHZwTHZsd3FNSzVSaWZkNFhTMUprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwZa8MA0G
CSqGSIb3DQEBCwUAA4IBAQBOuiejbpfAXadDgC5VZ87gsxLKVF8IVH6efLY6uk+8
yIdvwYyX6qRV4x3xbDNmPw5gzaC9/lnJIu7z+HR/fVRHVdDQvg950K4Os3Ab0nSY
1F4voyjDtnJkXNPMdAlJdddz0YSTe7mLKrkXn3tvXkrMqjvu+6VYOK+dGbnIEZ71
5KKZ22Ud5tooMiHxEans+xQNPNN8l/29TxW99P9NZxTDPGEfd+jI/jY8+965nDQb
T//nd5loecDu3CQagGubJAPVRjTjPzlM7pzL+pChQJF/XOSRmhHMaMuphBj2HIlR
pl1mHzHqxEDnjSi/XP4x7wvev1HxAaTJhwU0MoJY4MsJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:17 2024 by rpki-client on console-ams.rpki-client.org