Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/q6I42trD9MrEF6qUPxolkfR-u8w.roa
File: q6I42trD9MrEF6qUPxolkfR-u8w.roa (raw, json)
Hash identifier: eJBeLdr1/drCCBhK+oN6ESLieYOvm3RBrnRQHP+d8uU=
Subject key identifier: AB:A2:38:DA:DA:C3:F4:CA:C4:17:AA:94:3F:1A:25:91:F4:7E:BB:CC
Certificate issuer: /CN=fb9e390bdcbd95afab4a5ff8c4ed9efc43687bd1
Certificate serial: 01856E01DE2ED0B4E8853242C691451906C3
Authority key identifier: FB:9E:39:0B:DC:BD:95:AF:AB:4A:5F:F8:C4:ED:9E:FC:43:68:7B:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-545C9y9la-rSl_4xO2e_ENoe9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/q6I42trD9MrEF6qUPxolkfR-u8w.roa
Signing time: Sun 01 Jan 2023 15:44:54 +0000
ROA not before: Sun 01 Jan 2023 15:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 93.191.148.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:de:2e:d0:b4:e8:85:32:42:c6:91:45:19:06:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb9e390bdcbd95afab4a5ff8c4ed9efc43687bd1
Validity
Not Before: Jan 1 15:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aba238dadac3f4cac417aa943f1a2591f47ebbcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8e:d0:5f:63:b1:2e:cc:f4:a2:2c:46:5d:86:
df:a9:2d:26:fe:fd:c3:0f:8c:b3:75:25:f9:4f:f2:
05:26:c7:cf:37:55:fc:d1:d0:eb:9f:da:7a:e4:18:
4f:fb:0d:b0:bf:2a:b6:63:1b:d7:09:ab:4c:5f:80:
a0:d5:50:e9:f9:f4:ca:52:9d:67:27:98:46:7a:96:
dc:77:c6:0b:f4:93:7f:d0:9f:b3:7f:be:e1:e0:d2:
e0:5c:52:2e:de:ec:c7:20:d3:f8:5e:27:cd:ec:c1:
cd:ad:69:f9:43:6f:26:3e:43:e7:9d:ae:05:43:2a:
2c:fb:18:71:b2:42:2c:6b:4c:3e:6a:e5:85:71:ef:
71:14:53:b7:9b:dc:16:01:77:b3:23:04:54:0a:33:
e9:a9:d0:92:a2:a7:e8:a1:84:1f:02:9e:74:07:a8:
e4:f4:03:b5:7c:5e:80:28:29:4c:ce:aa:3a:5a:d6:
9a:4d:60:90:d5:96:6b:7b:56:b1:fb:8e:0d:15:29:
14:b5:be:bc:28:ed:af:48:30:a2:0a:de:0b:f4:27:
11:9e:35:ce:f5:81:ce:fd:99:85:67:29:72:5c:cc:
11:2c:18:e5:fa:c6:53:c0:1d:bb:c8:64:9a:e5:fa:
b4:6b:c8:79:04:30:9a:45:16:e6:d9:59:b8:32:0c:
ef:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A2:38:DA:DA:C3:F4:CA:C4:17:AA:94:3F:1A:25:91:F4:7E:BB:CC
X509v3 Authority Key Identifier:
keyid:FB:9E:39:0B:DC:BD:95:AF:AB:4A:5F:F8:C4:ED:9E:FC:43:68:7B:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-545C9y9la-rSl_4xO2e_ENoe9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/q6I42trD9MrEF6qUPxolkfR-u8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d902ca-cdf3-4f29-b232-72426d92601b/1/1-545C9y9la-rSl_4xO2e_ENoe9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.191.148.0/23
Signature Algorithm: sha256WithRSAEncryption
00:a4:cc:08:f1:04:e8:f0:77:2d:36:59:dd:42:d9:bd:03:97:
73:d5:e9:72:b0:8e:0f:5e:57:eb:8d:54:c8:d3:84:19:e6:99:
92:49:df:ba:b7:04:7d:50:3e:2b:49:89:45:d9:b6:3a:1b:07:
57:e6:f4:da:58:ce:23:23:e0:3b:f0:10:9d:ba:2d:94:e9:0c:
c4:c7:c9:5b:f9:07:86:f5:38:92:4e:4d:c7:1e:a9:01:61:d4:
ca:86:53:1d:21:7a:c6:cb:b1:e6:12:bc:cd:51:c7:82:b2:bf:
16:3f:df:a5:17:51:6a:4f:66:b2:cb:d5:c5:4a:c8:45:e5:28:
f2:87:bf:48:c2:e6:da:8d:7a:dd:df:82:58:00:20:68:3e:d5:
55:b1:70:57:47:6b:b9:a2:77:a7:60:42:a1:09:52:a7:dc:f7:
33:ca:e1:23:80:88:90:b2:54:2b:ff:da:2f:48:64:97:64:de:
3e:35:ee:39:11:a0:22:da:86:69:0d:47:07:ae:6b:ef:19:75:
33:ea:b2:f8:a6:c6:2e:0d:4e:6d:d7:97:de:16:d1:b5:87:e9:
06:55:dc:64:29:f7:26:1b:85:26:f8:5f:75:a9:3e:c0:3e:c9:
bb:e8:ce:96:42:c8:14:e4:bc:d9:95:ce:ed:a6:ca:7f:e2:24:
4a:c5:59:b5
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVuAd4u0LTohTJCxpFFGQbDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiOWUzOTBiZGNiZDk1YWZhYjRhNWZmOGM0ZWQ5ZWZjNDM2
ODdiZDEwHhcNMjMwMTAxMTU0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmEyMzhkYWRhYzNmNGNhYzQxN2FhOTQzZjFhMjU5MWY0N2ViYmNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgo7QX2OxLsz0oixGXYbfqS0m/v3D
D4yzdSX5T/IFJsfPN1X80dDrn9p65BhP+w2wvyq2YxvXCatMX4Cg1VDp+fTKUp1n
J5hGepbcd8YL9JN/0J+zf77h4NLgXFIu3uzHINP4XifN7MHNrWn5Q28mPkPnna4F
Qyos+xhxskIsa0w+auWFce9xFFO3m9wWAXezIwRUCjPpqdCSoqfooYQfAp50B6jk
9AO1fF6AKClMzqo6WtaaTWCQ1ZZre1ax+44NFSkUtb68KO2vSDCiCt4L9CcRnjXO
9YHO/ZmFZylyXMwRLBjl+sZTwB27yGSa5fq0a8h5BDCaRRbm2Vm4MgzvJwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFKuiONraw/TKxBeqlD8aJZH0frvMMB8GA1UdIwQY
MBaAFPueOQvcvZWvq0pf+MTtnvxDaHvRMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS01NDVDOXk5bGEtclNsXzR4TzJlX0VOb2U5RS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQvZDkwMmNhLWNkZjMtNGYyOS1iMjMy
LTcyNDI2ZDkyNjAxYi8xL3E2STQydHJEOU1yRUY2cVVQeG9sa2ZSLXU4dy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMjQvZDkwMmNhLWNkZjMtNGYyOS1iMjMyLTcyNDI2ZDkyNjAx
Yi8xLzEtNTQ1Qzl5OWxhLXJTbF80eE8yZV9FTm9lOUUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFdv5Qw
DQYJKoZIhvcNAQELBQADggEBAACkzAjxBOjwdy02Wd1C2b0Dl3PV6XKwjg9eV+uN
VMjThBnmmZJJ37q3BH1QPitJiUXZtjobB1fm9NpYziMj4DvwEJ26LZTpDMTHyVv5
B4b1OJJOTcceqQFh1MqGUx0hesbLseYSvM1Rx4KyvxY/36UXUWpPZrLL1cVKyEXl
KPKHv0jC5tqNet3fglgAIGg+1VWxcFdHa7mid6dgQqEJUqfc9zPK4SOAiJCyVCv/
2i9IZJdk3j417jkRoCLahmkNRweua+8ZdTPqsvimxi4NTm3Xl94W0bWH6QZV3GQp
9yYbhSb4X3WpPsA+ybvozpZCyBTkvNmVzu2myn/iJErFWbU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:29 2024 by rpki-client on console-ams.rpki-client.org