Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/2H0oQKR0q5IM55i1EKUx2LY3Ltc.roa
File: 2H0oQKR0q5IM55i1EKUx2LY3Ltc.roa (raw, json)
Hash identifier: tTLrQYGn5krpimxDJVIVlQhvvWhcEU0Xz8PPTyIYO7Q=
Subject key identifier: D8:7D:28:40:A4:74:AB:92:0C:E7:98:B5:10:A5:31:D8:B6:37:2E:D7
Certificate issuer: /CN=d50051613d3cc6b3eb81d5bb400ae0d4e2412c80
Certificate serial: 0185720338C32FBCA725A488649C5B3A71A9
Authority key identifier: D5:00:51:61:3D:3C:C6:B3:EB:81:D5:BB:40:0A:E0:D4:E2:41:2C:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/2H0oQKR0q5IM55i1EKUx2LY3Ltc.roa
Signing time: Mon 02 Jan 2023 10:24:51 +0000
ROA not before: Mon 02 Jan 2023 10:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48026
IP address blocks: 193.42.150.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:38:c3:2f:bc:a7:25:a4:88:64:9c:5b:3a:71:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50051613d3cc6b3eb81d5bb400ae0d4e2412c80
Validity
Not Before: Jan 2 10:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d87d2840a474ab920ce798b510a531d8b6372ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c8:00:21:b9:f4:ae:ff:9b:82:af:d2:bc:83:
de:1a:f9:53:82:3e:ed:81:d2:ac:bb:4e:d1:75:c1:
64:d3:09:a2:d8:e1:ad:e4:41:66:43:a1:93:82:c0:
89:de:07:7c:12:de:f3:db:0e:d8:95:e7:4e:13:da:
24:33:f7:96:fa:79:f7:a9:95:cd:c0:d2:8e:ad:a5:
2d:48:77:40:fd:ee:a8:40:a0:09:41:b8:88:39:db:
44:39:bd:e4:e3:dd:d1:80:ff:15:cb:8d:fe:3c:80:
b6:0e:ab:6d:55:b4:c7:fb:f5:4f:49:36:68:93:f7:
aa:6e:f7:8b:55:11:f5:ea:10:aa:0d:83:bc:ad:f8:
c4:37:c0:49:96:64:81:86:bf:83:fa:5d:96:6f:67:
ae:ed:b7:b7:0e:e9:cb:ea:da:e4:c8:ee:05:72:b9:
c0:a1:48:cd:b7:cb:e0:5f:c4:6b:aa:f4:a8:93:ad:
d4:39:17:2a:80:68:a8:98:8f:1e:ce:8a:6f:c9:a1:
36:16:1e:64:d5:75:28:0f:8a:57:d5:7d:33:54:ba:
77:39:46:ad:c7:b9:d4:f0:e9:b5:e5:44:4e:0c:88:
b6:c3:14:72:ec:cc:f4:c4:19:c0:71:94:50:1a:23:
74:9a:b3:25:60:8c:df:cc:1a:4e:9a:97:45:f5:8b:
db:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:7D:28:40:A4:74:AB:92:0C:E7:98:B5:10:A5:31:D8:B6:37:2E:D7
X509v3 Authority Key Identifier:
keyid:D5:00:51:61:3D:3C:C6:B3:EB:81:D5:BB:40:0A:E0:D4:E2:41:2C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QBRYT08xrPrgdW7QArg1OJBLIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/2H0oQKR0q5IM55i1EKUx2LY3Ltc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/59fc26-f8dd-4f5e-bca2-225d8adfe8bb/1/1QBRYT08xrPrgdW7QArg1OJBLIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.150.0/24
Signature Algorithm: sha256WithRSAEncryption
63:78:24:5f:10:8f:8f:cb:c0:15:82:f5:9e:58:27:ea:9f:d0:
26:4c:c2:7c:04:fa:a5:c7:b8:bc:9c:77:47:04:d5:e2:77:41:
f5:64:06:6a:6a:86:4c:d1:2b:ba:73:de:61:ad:b6:ad:19:c6:
eb:ff:e6:9a:89:17:3a:ce:b4:5c:e5:da:f8:60:9d:b1:22:1f:
13:3d:52:e6:2b:13:68:6f:df:33:d3:ac:97:4a:7a:37:b1:2d:
44:10:2b:33:50:7f:b8:fe:58:6d:56:e6:d1:07:e7:33:ab:f5:
ab:c7:8e:12:5b:54:ed:f8:f8:91:db:1b:84:57:cc:bf:9b:38:
cc:bc:5c:13:bd:7b:b1:4b:58:b6:e7:88:13:bf:0d:24:66:b4:
c4:22:54:49:a7:0b:09:47:83:8d:6a:ec:93:d0:58:85:1b:89:
a0:56:dd:b5:5f:1b:86:a5:45:11:4a:4f:76:e7:98:a0:29:a1:
b4:1f:7f:9a:59:8a:71:a6:81:b4:cf:05:b3:e7:c3:98:26:f4:
ee:52:8b:4f:a6:5a:82:ad:ae:5f:6e:91:40:40:be:e0:0c:05:
c2:cc:36:ce:d3:a9:ae:54:7a:5e:07:71:83:4c:b7:f3:29:64:
6c:99:b7:1f:eb:55:dd:ce:35:dc:bf:69:ed:ab:41:ac:13:a2:
ef:75:67:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyAzjDL7ynJaSIZJxbOnGpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1MDA1MTYxM2QzY2M2YjNlYjgxZDViYjQwMGFlMGQ0ZTI0
MTJjODAwHhcNMjMwMTAyMTAyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODdkMjg0MGE0NzRhYjkyMGNlNzk4YjUxMGE1MzFkOGI2MzcyZWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusgAIbn0rv+bgq/SvIPeGvlTgj7t
gdKsu07RdcFk0wmi2OGt5EFmQ6GTgsCJ3gd8Et7z2w7YledOE9okM/eW+nn3qZXN
wNKOraUtSHdA/e6oQKAJQbiIOdtEOb3k493RgP8Vy43+PIC2DqttVbTH+/VPSTZo
k/eqbveLVRH16hCqDYO8rfjEN8BJlmSBhr+D+l2Wb2eu7be3DunL6trkyO4FcrnA
oUjNt8vgX8RrqvSok63UORcqgGiomI8ezopvyaE2Fh5k1XUoD4pX1X0zVLp3OUat
x7nU8Om15URODIi2wxRy7Mz0xBnAcZRQGiN0mrMlYIzfzBpOmpdF9Yvb5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNh9KECkdKuSDOeYtRClMdi2Ny7XMB8GA1UdIwQY
MBaAFNUAUWE9PMaz64HVu0AK4NTiQSyAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC81OWZjMjYtZjhkZC00ZjVlLWJjYTIt
MjI1ZDhhZGZlOGJiLzEvMkgwb1FLUjBxNUlNNTVpMUVLVXgyTFkzTHRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC81OWZjMjYtZjhkZC00ZjVlLWJjYTItMjI1ZDhhZGZlOGJi
LzEvMVFCUllUMDh4clByZ2RXN1FBcmcxT0pCTElBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSqWMA0G
CSqGSIb3DQEBCwUAA4IBAQBjeCRfEI+Py8AVgvWeWCfqn9AmTMJ8BPqlx7i8nHdH
BNXid0H1ZAZqaoZM0Su6c95hrbatGcbr/+aaiRc6zrRc5dr4YJ2xIh8TPVLmKxNo
b98z06yXSno3sS1EECszUH+4/lhtVubRB+czq/Wrx44SW1Tt+PiR2xuEV8y/mzjM
vFwTvXuxS1i254gTvw0kZrTEIlRJpwsJR4ONauyT0FiFG4mgVt21XxuGpUURSk92
55igKaG0H3+aWYpxpoG0zwWz58OYJvTuUotPplqCra5fbpFAQL7gDAXCzDbO06mu
VHpeB3GDTLfzKWRsmbcf61XdzjXcv2ntq0GsE6LvdWey
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:14 2024 by rpki-client on console-ams.rpki-client.org