Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/c991ee-bd41-4ad1-b88d-6fc5fca09629/1/vwj0T7NcJMaRLJVolq5LnjekpbQ.roa
File: vwj0T7NcJMaRLJVolq5LnjekpbQ.roa (raw, json)
Hash identifier: mUpjclf31BV05j0RHLUizy47en/cG/siubCk+S3IbEo=
Subject key identifier: BF:08:F4:4F:B3:5C:24:C6:91:2C:95:68:96:AE:4B:9E:37:A4:A5:B4
Certificate issuer: /CN=4ff86cf33e15ea4089da29e2a7881d746df826ef
Certificate serial: 01856FF982EAEA60D2EDA5CB73B195A15E19
Authority key identifier: 4F:F8:6C:F3:3E:15:EA:40:89:DA:29:E2:A7:88:1D:74:6D:F8:26:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T_hs8z4V6kCJ2inip4gddG34Ju8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/c991ee-bd41-4ad1-b88d-6fc5fca09629/1/vwj0T7NcJMaRLJVolq5LnjekpbQ.roa
Signing time: Mon 02 Jan 2023 00:55:00 +0000
ROA not before: Mon 02 Jan 2023 00:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48314
IP address blocks: 193.29.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:82:ea:ea:60:d2:ed:a5:cb:73:b1:95:a1:5e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ff86cf33e15ea4089da29e2a7881d746df826ef
Validity
Not Before: Jan 2 00:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf08f44fb35c24c6912c956896ae4b9e37a4a5b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:08:53:68:b9:e8:d6:ef:52:f4:23:42:d6:db:
33:7d:54:60:e3:bf:d0:87:35:c1:91:51:59:33:0d:
c4:c9:fc:6e:67:2a:fb:f8:7c:14:02:ec:b7:a5:03:
dd:4b:3f:7d:1d:e4:84:88:d8:d4:12:3d:13:74:c7:
51:cf:51:83:b4:76:ca:60:4a:e9:7b:87:69:d9:c2:
02:2d:79:bc:95:b1:9b:a1:75:d1:9c:a5:bf:9d:8c:
6e:ea:32:27:e2:e5:49:a4:46:ce:53:6e:a9:82:db:
32:e6:3e:c0:9a:66:da:0b:5b:01:b1:23:31:40:c8:
93:44:c0:a9:e5:3c:9a:60:e4:05:f8:1e:3a:7d:36:
7a:94:62:b9:52:a2:1e:f4:5f:bc:66:90:17:28:bb:
78:9a:66:46:85:63:3e:38:e2:ad:5c:b7:26:73:37:
63:3b:6e:82:81:62:14:9b:f0:19:ad:b1:31:df:68:
b8:bc:9e:8b:a5:bc:5e:66:d5:45:2a:53:c8:e3:5e:
49:ae:f5:58:28:cc:f4:3c:e0:17:50:2f:6b:c8:62:
33:0c:98:db:0f:b0:82:a7:6e:64:90:b2:78:59:5c:
be:ce:fc:24:18:13:60:9f:0d:2c:73:c1:a4:bf:cb:
b4:70:e6:35:eb:f6:ae:66:e8:4d:97:3b:29:16:c4:
a7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:08:F4:4F:B3:5C:24:C6:91:2C:95:68:96:AE:4B:9E:37:A4:A5:B4
X509v3 Authority Key Identifier:
keyid:4F:F8:6C:F3:3E:15:EA:40:89:DA:29:E2:A7:88:1D:74:6D:F8:26:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T_hs8z4V6kCJ2inip4gddG34Ju8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c991ee-bd41-4ad1-b88d-6fc5fca09629/1/vwj0T7NcJMaRLJVolq5LnjekpbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c991ee-bd41-4ad1-b88d-6fc5fca09629/1/T_hs8z4V6kCJ2inip4gddG34Ju8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.56.0/22
Signature Algorithm: sha256WithRSAEncryption
21:24:ce:f9:45:60:53:e1:42:c9:f2:5c:b9:0c:c8:6f:73:10:
60:fd:89:03:dc:20:c5:d4:5e:47:e1:a2:66:b6:ea:b1:1b:61:
23:f1:47:82:86:a3:25:46:30:5f:ba:f4:5c:40:a4:dd:89:de:
e6:23:48:b0:d8:e4:db:e4:2f:3d:11:57:94:9e:0e:20:11:a8:
c0:b5:e1:5a:49:d0:9c:a8:37:34:8a:9a:42:2f:6b:e4:38:63:
41:84:5f:ea:c0:f5:d7:db:b1:07:a0:6f:0c:ba:0f:42:fc:d9:
ec:b8:04:3f:8f:a2:7a:bf:9a:48:eb:2c:6e:6c:e7:f5:7a:44:
6c:52:83:48:b5:aa:69:0e:0c:86:a1:49:bf:cf:dc:00:10:8f:
c4:d3:85:e2:ab:e1:0c:51:06:95:7c:31:48:5a:7b:a6:e2:c4:
86:9d:63:e6:49:05:1f:12:c1:f8:2e:7b:fe:c8:e0:3f:89:cb:
b1:22:37:08:a2:9d:c1:46:e8:2b:b7:a6:2d:c4:38:d7:61:38:
e1:99:ac:a8:4a:ca:6e:c6:fb:53:d7:eb:14:d7:14:46:e1:ab:
a6:fa:b9:d2:23:20:1c:87:09:12:bd:a9:73:5c:9e:51:a8:89:
05:f7:de:44:de:e2:9c:81:63:99:60:4c:98:d2:04:09:fc:07:
83:e9:14:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+YLq6mDS7aXLc7GVoV4ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmZjg2Y2YzM2UxNWVhNDA4OWRhMjllMmE3ODgxZDc0NmRm
ODI2ZWYwHhcNMjMwMTAyMDA1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjA4ZjQ0ZmIzNWMyNGM2OTEyYzk1Njg5NmFlNGI5ZTM3YTRhNWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAhTaLno1u9S9CNC1tszfVRg47/Q
hzXBkVFZMw3EyfxuZyr7+HwUAuy3pQPdSz99HeSEiNjUEj0TdMdRz1GDtHbKYErp
e4dp2cICLXm8lbGboXXRnKW/nYxu6jIn4uVJpEbOU26pgtsy5j7AmmbaC1sBsSMx
QMiTRMCp5TyaYOQF+B46fTZ6lGK5UqIe9F+8ZpAXKLt4mmZGhWM+OOKtXLcmczdj
O26CgWIUm/AZrbEx32i4vJ6LpbxeZtVFKlPI415JrvVYKMz0POAXUC9ryGIzDJjb
D7CCp25kkLJ4WVy+zvwkGBNgnw0sc8Gkv8u0cOY16/auZuhNlzspFsSnYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL8I9E+zXCTGkSyVaJauS543pKW0MB8GA1UdIwQY
MBaAFE/4bPM+FepAidop4qeIHXRt+CbvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVF9oczh6NFY2a0NKMmluaXA0Z2RkRzM0SnU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9jOTkxZWUtYmQ0MS00YWQxLWI4OGQt
NmZjNWZjYTA5NjI5LzEvdndqMFQ3TmNKTWFSTEpWb2xxNUxuamVrcGJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9jOTkxZWUtYmQ0MS00YWQxLWI4OGQtNmZjNWZjYTA5NjI5
LzEvVF9oczh6NFY2a0NKMmluaXA0Z2RkRzM0SnU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwR04MA0G
CSqGSIb3DQEBCwUAA4IBAQAhJM75RWBT4ULJ8ly5DMhvcxBg/YkD3CDF1F5H4aJm
tuqxG2Ej8UeChqMlRjBfuvRcQKTdid7mI0iw2OTb5C89EVeUng4gEajAteFaSdCc
qDc0ippCL2vkOGNBhF/qwPXX27EHoG8Mug9C/NnsuAQ/j6J6v5pI6yxubOf1ekRs
UoNItappDgyGoUm/z9wAEI/E04Xiq+EMUQaVfDFIWnum4sSGnWPmSQUfEsH4Lnv+
yOA/icuxIjcIop3BRugrt6YtxDjXYTjhmayoSspuxvtT1+sU1xRG4aum+rnSIyAc
hwkSvalzXJ5RqIkF995E3uKcgWOZYEyY0gQJ/AeD6RQG
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:46 2024 by rpki-client on console-ams.rpki-client.org