Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/9b81c8-732c-43f2-b6ab-484014a4d94e/1/1TJ52o2C8dhVIzL-JNwRztGbqps.roa
File: 1TJ52o2C8dhVIzL-JNwRztGbqps.roa (raw, json)
Hash identifier: cqfbwW7USRiV1Yx3b59G9vE2xlsd5TJ4fG9epU12mp0=
Subject key identifier: D5:32:79:DA:8D:82:F1:D8:55:23:32:FE:24:DC:11:CE:D1:9B:AA:9B
Certificate issuer: /CN=2bed62935fb48af6e44cba19426efab51f1c5410
Certificate serial: 018CC348FA4CBBEDC11B20676563C763A95F
Authority key identifier: 2B:ED:62:93:5F:B4:8A:F6:E4:4C:BA:19:42:6E:FA:B5:1F:1C:54:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K-1ik1-0ivbkTLoZQm76tR8cVBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/9b81c8-732c-43f2-b6ab-484014a4d94e/1/1TJ52o2C8dhVIzL-JNwRztGbqps.roa
Signing time: Mon 01 Jan 2024 04:29:48 +0000
ROA not before: Mon 01 Jan 2024 04:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35010
IP address blocks: 193.202.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 07:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:fa:4c:bb:ed:c1:1b:20:67:65:63:c7:63:a9:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bed62935fb48af6e44cba19426efab51f1c5410
Validity
Not Before: Jan 1 04:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d53279da8d82f1d8552332fe24dc11ced19baa9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a9:1d:a6:52:da:f8:0c:e6:72:b4:9c:30:48:
1e:18:5f:bd:57:04:ac:43:33:bd:c4:b7:47:bc:e1:
66:ed:91:2a:af:9a:da:19:e7:03:74:7f:a4:da:47:
18:9b:b6:8a:b2:1d:e1:ad:70:a9:09:3b:09:1d:fb:
5f:b1:52:91:55:00:01:a0:c6:44:4c:bd:1b:b7:e1:
f9:f8:73:c9:81:54:c1:cc:86:87:7e:3c:c4:2e:28:
3f:15:cb:6b:a0:58:12:9f:0c:24:3d:9e:34:1a:91:
da:fb:40:18:4b:d6:cc:77:44:be:96:2f:aa:78:b8:
2e:eb:23:fb:1b:da:19:e0:f7:70:37:64:0a:9c:1a:
12:c8:13:66:e9:28:e8:b5:7b:75:3c:8f:0e:e5:03:
80:8a:1a:5f:40:98:ae:9e:2f:44:fe:30:f3:53:ed:
1a:5a:43:c6:01:fe:81:5e:77:59:05:5a:43:3d:d1:
5d:bb:25:29:e3:f1:82:1c:6e:ed:4f:66:6d:78:52:
8b:78:43:2b:db:07:6c:c7:bc:db:e6:25:92:b3:50:
0e:89:a3:ac:40:31:26:1e:68:2c:b4:60:75:0d:16:
6c:fa:47:81:f1:f6:6f:d9:7e:65:f3:33:ac:16:a4:
e7:26:6e:09:67:68:a6:f4:60:42:65:20:b2:77:8e:
f1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:32:79:DA:8D:82:F1:D8:55:23:32:FE:24:DC:11:CE:D1:9B:AA:9B
X509v3 Authority Key Identifier:
keyid:2B:ED:62:93:5F:B4:8A:F6:E4:4C:BA:19:42:6E:FA:B5:1F:1C:54:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K-1ik1-0ivbkTLoZQm76tR8cVBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9b81c8-732c-43f2-b6ab-484014a4d94e/1/1TJ52o2C8dhVIzL-JNwRztGbqps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9b81c8-732c-43f2-b6ab-484014a4d94e/1/K-1ik1-0ivbkTLoZQm76tR8cVBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.22.0/24
Signature Algorithm: sha256WithRSAEncryption
13:9a:f4:48:3a:de:1c:6b:43:2d:d4:3f:d4:5b:14:4a:7c:8c:
26:8f:0c:2c:c1:ab:21:ee:f7:d8:9c:52:6b:0d:eb:28:71:78:
c8:b2:1e:3e:58:37:d2:48:b7:5f:ed:b5:9e:a2:1c:43:03:a7:
4e:a3:77:50:eb:88:f4:64:58:68:b6:2d:a0:38:22:5e:bf:77:
76:1c:36:41:d5:1b:09:05:1e:0a:4d:fe:9d:f6:b9:86:ee:f7:
6f:e7:21:46:73:2b:d4:f9:20:f4:75:b9:2b:4d:fc:36:3a:6f:
57:67:2e:3e:98:b2:df:39:1c:a8:99:71:c2:78:21:7a:ca:ee:
36:84:38:af:77:bd:77:69:bc:1c:87:48:da:f0:4c:59:72:c8:
07:84:ca:19:bf:87:66:52:e4:fe:65:ca:5e:9c:c2:8f:1c:83:
86:a0:24:b1:7a:3b:db:ad:aa:7f:46:c2:13:e6:e4:ba:c5:4c:
8d:a1:f5:3a:c2:ef:37:e7:8e:66:dc:fc:96:5c:47:cd:a5:ca:
2b:41:17:a5:f7:d3:0d:dd:a4:e8:bb:bb:d3:b8:c1:58:09:c3:
3d:a7:bb:81:89:30:5f:1e:c1:27:7f:83:26:05:fd:48:ca:a3:
48:bb:ed:3b:13:d0:35:00:47:79:8c:eb:f1:3c:e9:13:0e:8f:
dd:57:44:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSPpMu+3BGyBnZWPHY6lfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiZWQ2MjkzNWZiNDhhZjZlNDRjYmExOTQyNmVmYWI1MWYx
YzU0MTAwHhcNMjQwMTAxMDQyOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTMyNzlkYThkODJmMWQ4NTUyMzMyZmUyNGRjMTFjZWQxOWJhYTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6kdplLa+AzmcrScMEgeGF+9VwSs
QzO9xLdHvOFm7ZEqr5raGecDdH+k2kcYm7aKsh3hrXCpCTsJHftfsVKRVQABoMZE
TL0bt+H5+HPJgVTBzIaHfjzELig/FctroFgSnwwkPZ40GpHa+0AYS9bMd0S+li+q
eLgu6yP7G9oZ4PdwN2QKnBoSyBNm6SjotXt1PI8O5QOAihpfQJiuni9E/jDzU+0a
WkPGAf6BXndZBVpDPdFduyUp4/GCHG7tT2ZteFKLeEMr2wdsx7zb5iWSs1AOiaOs
QDEmHmgstGB1DRZs+keB8fZv2X5l8zOsFqTnJm4JZ2im9GBCZSCyd47x2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNUyedqNgvHYVSMy/iTcEc7Rm6qbMB8GA1UdIwQY
MBaAFCvtYpNftIr25Ey6GUJu+rUfHFQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSy0xaWsxLTBpdmJrVExvWlFtNzZ0UjhjVkJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS85YjgxYzgtNzMyYy00M2YyLWI2YWIt
NDg0MDE0YTRkOTRlLzEvMVRKNTJvMkM4ZGhWSXpMLUpOd1J6dEdicXBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS85YjgxYzgtNzMyYy00M2YyLWI2YWItNDg0MDE0YTRkOTRl
LzEvSy0xaWsxLTBpdmJrVExvWlFtNzZ0UjhjVkJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcoWMA0G
CSqGSIb3DQEBCwUAA4IBAQATmvRIOt4ca0Mt1D/UWxRKfIwmjwwswash7vfYnFJr
DesocXjIsh4+WDfSSLdf7bWeohxDA6dOo3dQ64j0ZFhoti2gOCJev3d2HDZB1RsJ
BR4KTf6d9rmG7vdv5yFGcyvU+SD0dbkrTfw2Om9XZy4+mLLfORyomXHCeCF6yu42
hDivd713abwch0ja8ExZcsgHhMoZv4dmUuT+ZcpenMKPHIOGoCSxejvbrap/RsIT
5uS6xUyNofU6wu83545m3PyWXEfNpcorQRel99MN3aTou7vTuMFYCcM9p7uBiTBf
HsEnf4MmBf1IyqNIu+07E9A1AEd5jOvxPOkTDo/dV0RB
-----END CERTIFICATE-----
Generated at Thu Jan 25 11:57:12 2024 by rpki-client on console-fra.rpki-client.org