Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/7op6q9zqOZHOPyJmPBxOAqlRi7M.roa
File: 7op6q9zqOZHOPyJmPBxOAqlRi7M.roa (raw, json)
Hash identifier: +gwjGnuVL95pyftHMGb9l+brs8se5OFm35jynR2nXyM=
Subject key identifier: EE:8A:7A:AB:DC:EA:39:91:CE:3F:22:66:3C:1C:4E:02:A9:51:8B:B3
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 01917931A5D9C3EA7C17EBA649DF78DEC752
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/7op6q9zqOZHOPyJmPBxOAqlRi7M.roa
Signing time: Thu 22 Aug 2024 08:26:22 +0000
ROA not before: Thu 22 Aug 2024 08:26:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42446
IP address blocks: 193.142.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:47:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:79:31:a5:d9:c3:ea:7c:17:eb:a6:49:df:78:de:c7:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: Aug 22 08:26:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee8a7aabdcea3991ce3f22663c1c4e02a9518bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9c:10:ce:b8:aa:45:dc:3d:42:79:5c:f3:74:
a0:ab:81:3f:5a:83:eb:99:a7:6d:17:2d:17:ff:5e:
93:42:7d:38:b6:c2:99:80:02:2a:b0:9e:44:78:a8:
89:cd:a3:cf:60:b4:02:58:3e:e3:bb:07:99:64:f0:
f2:56:e2:d3:58:df:35:32:ce:7d:56:a6:f9:1e:97:
09:2a:fd:2f:44:fe:d7:63:d2:1f:c5:da:eb:75:6b:
f6:8e:b0:0c:68:4c:9d:6e:30:dd:56:80:02:59:18:
e6:62:30:66:46:f4:d6:ed:8a:27:31:2f:b6:75:4a:
af:2c:a5:ff:6f:fa:88:32:d5:c3:2d:d4:dc:1c:ac:
17:f8:41:73:98:b3:f3:b2:0b:75:07:4a:85:eb:74:
6e:66:7d:2a:2a:b9:63:f1:c0:a3:da:c4:2a:17:98:
12:2e:1e:b8:50:56:ba:97:e3:81:89:b0:6e:2e:91:
f5:e0:ae:70:53:08:2b:52:1f:85:b5:80:1c:05:63:
da:bb:ea:71:8c:04:17:5f:cf:50:a1:cf:92:f7:38:
d4:3f:08:b1:06:fd:23:06:1c:95:8e:ef:2f:5c:40:
0d:34:3b:cd:93:62:fd:7d:36:60:0a:11:b4:19:aa:
9d:5c:37:e3:7d:3c:8d:17:d9:eb:b0:74:2a:40:7b:
5c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8A:7A:AB:DC:EA:39:91:CE:3F:22:66:3C:1C:4E:02:A9:51:8B:B3
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/7op6q9zqOZHOPyJmPBxOAqlRi7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.0.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ee:d3:a4:4c:11:82:d4:34:8e:0c:8a:f6:d7:3d:53:9a:ff:
c2:ed:d9:7a:02:4d:05:54:f9:97:2e:56:c2:18:5f:2b:ff:bb:
8c:b8:73:ca:5e:c8:bd:06:fe:2b:f5:07:4c:5d:2d:7a:4c:24:
ff:42:4a:11:03:1c:14:e8:83:47:13:23:55:7f:05:b1:6c:41:
08:e2:aa:ba:c3:80:7b:a0:a6:e0:d6:ee:1d:ce:43:da:93:f3:
f5:b3:a1:d3:7d:91:26:a4:72:b4:3a:70:43:ba:a7:ce:ca:de:
25:22:9b:14:04:fc:b8:f4:1e:e4:2b:5d:a8:ff:03:a6:a8:6d:
27:a7:3b:10:e8:0e:a9:ae:e4:6e:32:00:95:7d:5f:18:10:29:
0e:cb:ce:ee:13:ea:da:99:ee:6c:40:2d:c9:84:c2:a1:ba:60:
ef:e0:8a:3b:32:76:f2:16:a1:fe:23:33:b3:ee:87:8c:70:70:
27:ed:a9:fb:f4:7c:d8:f2:48:9f:e0:89:cb:bb:24:28:5a:50:
32:5d:ca:e7:ab:a7:8b:45:cf:cf:e8:40:2c:7a:2a:21:ca:d4:
0e:e0:91:06:e7:a4:f5:c4:8c:68:17:4f:a1:40:3b:97:18:32:
2f:fd:fa:34:15:58:b4:ca:61:f4:b6:23:e7:a8:43:3e:f2:e4:
96:fe:ac:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZF5MaXZw+p8F+umSd943sdSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiMzU2MDg3YzIwYzdhMzI1NDE2ZmRhODAzY2I3NmYzZGE3
OTQ3YTkwHhcNMjQwODIyMDgyNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZThhN2FhYmRjZWEzOTkxY2UzZjIyNjYzYzFjNGUwMmE5NTE4YmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpwQzriqRdw9Qnlc83Sgq4E/WoPr
madtFy0X/16TQn04tsKZgAIqsJ5EeKiJzaPPYLQCWD7juweZZPDyVuLTWN81Ms59
Vqb5HpcJKv0vRP7XY9IfxdrrdWv2jrAMaEydbjDdVoACWRjmYjBmRvTW7YonMS+2
dUqvLKX/b/qIMtXDLdTcHKwX+EFzmLPzsgt1B0qF63RuZn0qKrlj8cCj2sQqF5gS
Lh64UFa6l+OBibBuLpH14K5wUwgrUh+FtYAcBWPau+pxjAQXX89Qoc+S9zjUPwix
Bv0jBhyVju8vXEANNDvNk2L9fTZgChG0GaqdXDfjfTyNF9nrsHQqQHtcsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO6Keqvc6jmRzj8iZjwcTgKpUYuzMB8GA1UdIwQY
MBaAFAs1YIfCDHoyVBb9qAPLdvPaeUepMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3pWZ2g4SU1lakpVRnYyb0E4dDI4OXA1UjZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9kN2NmOTQtYWM2MS00ZmJmLWFkZjAt
NTdlYWY4MzNhYjBiLzEvN29wNnE5enFPWkhPUHlKbVBCeE9BcWxSaTdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9kN2NmOTQtYWM2MS00ZmJmLWFkZjAtNTdlYWY4MzNhYjBi
LzEvQ3pWZ2g4SU1lakpVRnYyb0E4dDI4OXA1UjZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwY4AMA0G
CSqGSIb3DQEBCwUAA4IBAQBQ7tOkTBGC1DSODIr21z1Tmv/C7dl6Ak0FVPmXLlbC
GF8r/7uMuHPKXsi9Bv4r9QdMXS16TCT/QkoRAxwU6INHEyNVfwWxbEEI4qq6w4B7
oKbg1u4dzkPak/P1s6HTfZEmpHK0OnBDuqfOyt4lIpsUBPy49B7kK12o/wOmqG0n
pzsQ6A6pruRuMgCVfV8YECkOy87uE+rame5sQC3JhMKhumDv4Io7MnbyFqH+IzOz
7oeMcHAn7an79HzY8kif4InLuyQoWlAyXcrnq6eLRc/P6EAseiohytQO4JEG56T1
xIxoF0+hQDuXGDIv/fo0FVi0ymH0tiPnqEM+8uSW/qx9
-----END CERTIFICATE-----
Generated at Tue Mar 11 05:03:46 2025 by rpki-client