Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/_SVtmILHwqMzyzC9gei3kk4PQ0I.roa
File: _SVtmILHwqMzyzC9gei3kk4PQ0I.roa (raw, json)
Hash identifier: ucZi7IX34pPcDSGpX55MPrMh8V1CRlE6zHOeqjfqZIQ=
Subject key identifier: FD:25:6D:98:82:C7:C2:A3:33:CB:30:BD:81:E8:B7:92:4E:0F:43:42
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01926D9A75F231CBA3DB61855DA2C9693F0E
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/_SVtmILHwqMzyzC9gei3kk4PQ0I.roa
Signing time: Tue 08 Oct 2024 19:28:11 +0000
ROA not before: Tue 08 Oct 2024 19:28:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215467
IP address blocks: 188.93.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 05:37:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6d:9a:75:f2:31:cb:a3:db:61:85:5d:a2:c9:69:3f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Oct 8 19:28:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd256d9882c7c2a333cb30bd81e8b7924e0f4342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:70:6e:ac:6e:be:4c:2b:d2:d5:cb:56:b9:43:
5c:d9:77:87:cb:df:5f:37:c7:6b:16:37:81:7a:bc:
3c:81:2e:53:cc:c9:9c:07:d1:9b:ea:12:71:0e:41:
13:79:fb:19:01:18:99:ed:2d:3f:4f:12:4e:f9:90:
e7:ee:2b:72:6e:6d:14:bf:26:cb:06:22:93:cb:e8:
71:70:f3:67:6b:34:d5:4c:30:46:20:31:79:28:88:
c2:af:fb:d7:f8:a8:8b:37:1a:f5:63:ee:c8:22:6f:
63:d3:1f:50:13:eb:0c:52:39:e8:b7:91:0a:fa:85:
17:7a:7c:ff:5f:2a:cc:c7:31:db:fe:67:67:4a:fa:
a4:82:52:1f:21:4f:f4:0b:78:bb:f6:d0:15:3e:e3:
04:d3:41:49:16:eb:de:30:bb:11:7a:4a:8e:e5:0c:
f9:b3:e2:85:b3:2e:33:17:36:8d:5d:38:87:5b:95:
8e:ed:ca:6d:7f:95:78:97:31:f2:e1:5d:1c:55:4c:
c3:0b:be:e5:46:3b:ec:74:6b:a4:95:ce:0d:76:9d:
bb:33:01:68:a9:55:ec:55:e1:5f:c8:8c:78:ed:45:
c4:5d:93:76:93:8c:a7:57:b4:75:bd:5d:f3:e8:9a:
17:8f:44:81:48:d5:c4:c2:5c:46:f9:21:72:31:74:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:25:6D:98:82:C7:C2:A3:33:CB:30:BD:81:E8:B7:92:4E:0F:43:42
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/_SVtmILHwqMzyzC9gei3kk4PQ0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.138.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5f:38:bb:a9:4d:f3:aa:88:38:34:60:be:55:39:d7:4d:a1:
16:dc:bc:3a:04:39:05:61:1b:1a:e8:90:be:89:5b:cb:9b:66:
28:58:c4:7f:0e:44:41:7d:26:85:28:11:c9:85:c5:d2:18:5b:
42:39:27:68:1d:65:55:7a:0c:ca:77:11:a3:7c:79:f4:ac:ce:
3e:78:f6:a0:21:f5:75:fa:53:1b:29:86:84:a2:8c:23:6e:14:
af:14:b3:76:7e:53:1d:73:6e:d0:5d:f0:c3:91:4c:fa:db:99:
ab:33:ce:dc:09:1b:ea:fd:75:8b:e2:60:a5:61:ba:2d:46:2b:
20:81:08:1f:79:f5:38:44:41:df:b3:af:75:13:1b:b5:03:b4:
c1:d4:6d:da:b7:04:1d:53:09:4d:44:03:7d:6b:a0:d8:22:d9:
f4:19:3d:3d:73:3b:b9:ea:f4:a1:c4:63:c3:6a:fc:27:d0:81:
2a:af:ef:12:74:cf:3b:0e:ee:9a:a5:95:75:f4:1e:71:1b:c7:
ff:2c:87:69:4d:6a:d7:88:8e:62:8b:ac:5b:e3:1e:f9:fc:42:
6c:b1:68:c4:c1:b7:c3:54:cc:77:64:1e:d6:2c:e6:80:c9:17:
c3:72:bb:02:9c:f2:3b:1d:59:c4:59:ca:c6:af:94:7f:e7:1e:
eb:60:9c:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJtmnXyMcuj22GFXaLJaT8OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjQxMDA4MTkyODExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDI1NmQ5ODgyYzdjMmEzMzNjYjMwYmQ4MWU4Yjc5MjRlMGY0MzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXBurG6+TCvS1ctWuUNc2XeHy99f
N8drFjeBerw8gS5TzMmcB9Gb6hJxDkETefsZARiZ7S0/TxJO+ZDn7itybm0UvybL
BiKTy+hxcPNnazTVTDBGIDF5KIjCr/vX+KiLNxr1Y+7IIm9j0x9QE+sMUjnot5EK
+oUXenz/XyrMxzHb/mdnSvqkglIfIU/0C3i79tAVPuME00FJFuveMLsRekqO5Qz5
s+KFsy4zFzaNXTiHW5WO7cptf5V4lzHy4V0cVUzDC77lRjvsdGuklc4Ndp27MwFo
qVXsVeFfyIx47UXEXZN2k4ynV7R1vV3z6JoXj0SBSNXEwlxG+SFyMXQxdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP0lbZiCx8KjM8swvYHot5JOD0NCMB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEvX1NWdG1JTEh3cU16eXpDOWdlaTNrazRQUTBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvF2KMA0G
CSqGSIb3DQEBCwUAA4IBAQAzXzi7qU3zqog4NGC+VTnXTaEW3Lw6BDkFYRsa6JC+
iVvLm2YoWMR/DkRBfSaFKBHJhcXSGFtCOSdoHWVVegzKdxGjfHn0rM4+ePagIfV1
+lMbKYaEoowjbhSvFLN2flMdc27QXfDDkUz625mrM87cCRvq/XWL4mClYbotRisg
gQgfefU4REHfs691Exu1A7TB1G3atwQdUwlNRAN9a6DYItn0GT09czu56vShxGPD
avwn0IEqr+8SdM87Du6apZV19B5xG8f/LIdpTWrXiI5ii6xb4x75/EJssWjEwbfD
VMx3ZB7WLOaAyRfDcrsCnPI7HVnEWcrGr5R/5x7rYJzu
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:13 2025 by rpki-client