Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/iXSrqxULYoz8ohbNWnfSvYsZh68.roa
File: iXSrqxULYoz8ohbNWnfSvYsZh68.roa (raw, json)
Hash identifier: 32nwEKxF1J1TP8EO0SfGNqrfQ615G0i2BcrYVnEtwZ8=
Subject key identifier: 89:74:AB:AB:15:0B:62:8C:FC:A2:16:CD:5A:77:D2:BD:8B:19:87:AF
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018BBD66DDC426C84B96E05A828091C3096A
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/iXSrqxULYoz8ohbNWnfSvYsZh68.roa
Signing time: Sat 11 Nov 2023 08:01:57 +0000
ROA not before: Sat 11 Nov 2023 08:01:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.239.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 22:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:bd:66:dd:c4:26:c8:4b:96:e0:5a:82:80:91:c3:09:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Nov 11 08:01:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8974abab150b628cfca216cd5a77d2bd8b1987af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:ef:d7:89:b6:32:ca:94:50:50:70:29:c8:
21:c0:ce:8c:c4:39:7a:85:d6:5b:1d:56:1c:61:2b:
74:27:75:43:cf:79:dd:b1:2d:b2:28:bd:a0:aa:38:
71:0c:bf:f8:15:f2:b5:f0:ff:cf:a3:bb:d6:35:a0:
b0:25:8a:64:ef:ea:d9:cf:ee:c7:b9:e4:bd:be:1c:
69:dc:ce:6e:b6:34:4f:c4:58:5c:22:5c:52:7a:f7:
f4:02:5c:2f:ff:37:17:94:8a:49:a0:7a:79:97:2b:
1b:5b:c7:f1:e9:07:a2:5c:70:8e:b5:df:57:61:50:
e2:8a:99:67:97:58:0b:9a:97:58:66:07:7c:10:48:
d9:d8:b0:97:7e:1d:91:3d:64:e0:00:24:05:18:73:
db:3e:fc:f0:0e:b4:c8:65:b3:84:d8:ca:1c:37:d3:
85:29:2f:4a:36:03:92:94:a5:31:43:79:a6:47:88:
75:f5:8d:f7:0e:a7:2d:a8:9b:f7:fa:78:09:e9:68:
41:ff:be:52:05:e6:50:7d:94:19:63:b1:4a:7c:30:
bb:30:19:b0:32:0a:ab:a4:5e:b2:94:24:5f:f0:71:
32:53:5f:e8:85:35:4f:52:bd:88:6a:87:29:ad:98:
b9:cc:67:a7:de:f1:55:4b:2a:8e:56:a6:a3:f1:ed:
1f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:74:AB:AB:15:0B:62:8C:FC:A2:16:CD:5A:77:D2:BD:8B:19:87:AF
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/iXSrqxULYoz8ohbNWnfSvYsZh68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.197.0/24
Signature Algorithm: sha256WithRSAEncryption
49:2d:5a:ab:cb:7c:ba:a4:27:ae:c3:c8:e1:4b:c8:8b:57:20:
68:db:45:c7:8c:81:7e:b3:68:3f:e4:ce:6b:1e:13:2a:7c:ba:
56:cb:73:e0:08:e1:8a:36:74:94:4c:5e:c2:5d:18:e5:f8:dd:
69:8b:24:1a:75:fa:f1:fd:4d:95:6a:e1:16:d6:b2:c7:ee:1f:
0f:38:f6:62:b9:24:d0:af:49:47:ad:ff:3c:9e:94:42:ae:0a:
ba:09:fd:0c:5e:a8:81:ef:2a:0a:6c:1e:4c:1b:ba:78:42:2f:
5b:d0:1f:9e:fb:a5:5d:2c:53:c0:fc:6c:ca:c5:1c:d6:2f:c1:
bc:24:97:7c:03:91:37:1b:89:72:c1:df:74:57:a1:83:44:ae:
5f:80:72:60:76:92:19:3f:ea:a2:e2:66:77:e7:f0:06:73:0c:
54:99:20:a1:93:e8:2a:49:f1:31:a0:76:b7:33:2e:bd:45:0b:
ac:d9:81:c3:3f:4e:e1:75:f3:a3:5b:a1:f1:d1:59:69:c1:74:
cc:aa:60:0d:d6:11:15:c3:cd:bf:77:c9:93:3d:a5:2d:9c:1e:
95:71:0a:b5:0b:17:43:b6:05:02:38:a6:b9:0b:b5:c5:ed:d1:
e4:7c:db:10:0f:81:de:2e:3f:1f:ae:6c:64:c2:5c:57:71:3c:
a2:f1:bd:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYu9Zt3EJshLluBagoCRwwlqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjMxMTExMDgwMTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTc0YWJhYjE1MGI2MjhjZmNhMjE2Y2Q1YTc3ZDJiZDhiMTk4N2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWfv14m2MsqUUFBwKcghwM6MxDl6
hdZbHVYcYSt0J3VDz3ndsS2yKL2gqjhxDL/4FfK18P/Po7vWNaCwJYpk7+rZz+7H
ueS9vhxp3M5utjRPxFhcIlxSevf0Alwv/zcXlIpJoHp5lysbW8fx6QeiXHCOtd9X
YVDiiplnl1gLmpdYZgd8EEjZ2LCXfh2RPWTgACQFGHPbPvzwDrTIZbOE2MocN9OF
KS9KNgOSlKUxQ3mmR4h19Y33DqctqJv3+ngJ6WhB/75SBeZQfZQZY7FKfDC7MBmw
MgqrpF6ylCRf8HEyU1/ohTVPUr2IaocprZi5zGen3vFVSyqOVqaj8e0fjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIl0q6sVC2KM/KIWzVp30r2LGYevMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvaVhTcnF4VUxZb3o4b2hiTlduZlN2WXNaaDY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwe/FMA0G
CSqGSIb3DQEBCwUAA4IBAQBJLVqry3y6pCeuw8jhS8iLVyBo20XHjIF+s2g/5M5r
HhMqfLpWy3PgCOGKNnSUTF7CXRjl+N1piyQadfrx/U2VauEW1rLH7h8POPZiuSTQ
r0lHrf88npRCrgq6Cf0MXqiB7yoKbB5MG7p4Qi9b0B+e+6VdLFPA/GzKxRzWL8G8
JJd8A5E3G4lywd90V6GDRK5fgHJgdpIZP+qi4mZ35/AGcwxUmSChk+gqSfExoHa3
My69RQus2YHDP07hdfOjW6Hx0VlpwXTMqmAN1hEVw82/d8mTPaUtnB6VcQq1CxdD
tgUCOKa5C7XF7dHkfNsQD4HeLj8frmxkwlxXcTyi8b1W
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org