Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/9sXuv6PkoBtpzK8_2R8bnnvAe7A.roa
File: 9sXuv6PkoBtpzK8_2R8bnnvAe7A.roa (raw, json)
Hash identifier: TRMxFY2iSeEyJWn0niZKOBUa/VWeQBFzkSBomhWj4mA=
Subject key identifier: F6:C5:EE:BF:A3:E4:A0:1B:69:CC:AF:3F:D9:1F:1B:9E:7B:C0:7B:B0
Certificate issuer: /CN=cd108c225f2478cd4230179890d07284be1636cd
Certificate serial: 018CA5C370B0F0AB247F1B2D2B8B328E62CA
Authority key identifier: CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/9sXuv6PkoBtpzK8_2R8bnnvAe7A.roa
Signing time: Tue 26 Dec 2023 10:54:58 +0000
ROA not before: Tue 26 Dec 2023 10:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 193.239.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a5:c3:70:b0:f0:ab:24:7f:1b:2d:2b:8b:32:8e:62:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd108c225f2478cd4230179890d07284be1636cd
Validity
Not Before: Dec 26 10:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6c5eebfa3e4a01b69ccaf3fd91f1b9e7bc07bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f1:f7:22:44:38:2b:a8:a2:c4:58:de:40:71:
ba:b4:93:40:8b:14:46:55:52:46:2b:0d:d1:4f:01:
e9:d1:08:1e:3f:18:27:52:97:26:40:86:19:8e:20:
cd:75:96:f5:4e:81:80:b8:65:40:7f:1f:07:43:6d:
73:9e:cb:32:98:0e:4c:91:60:61:aa:f8:c0:7c:77:
79:77:2b:ab:77:a6:cc:69:26:58:66:c6:99:d3:d1:
68:28:81:60:80:b3:4c:aa:10:13:4f:35:22:ba:52:
18:7b:f4:57:4c:00:48:b5:93:3a:9a:60:83:88:b0:
97:dd:23:cb:4d:26:97:b8:f7:a0:f0:ca:63:3c:83:
35:74:7a:c9:f1:74:b1:73:61:a4:70:bf:99:3d:a5:
29:f0:43:01:82:9d:2f:f3:7d:bb:69:1c:e0:e2:b6:
cc:ab:48:69:f3:6c:5a:d9:2d:97:f4:ce:b5:5e:24:
b8:76:86:ca:24:04:eb:53:bc:2f:82:62:fa:b8:7b:
7a:02:70:39:60:c9:eb:7b:66:5c:1b:10:df:18:92:
87:78:04:3b:bc:f5:82:fa:f0:8e:fd:6b:41:3d:b9:
e0:aa:b7:6d:b8:3f:4c:72:b4:91:31:93:13:56:15:
62:5e:42:e9:af:27:a6:37:30:e5:28:5c:b3:b5:24:
3e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C5:EE:BF:A3:E4:A0:1B:69:CC:AF:3F:D9:1F:1B:9E:7B:C0:7B:B0
X509v3 Authority Key Identifier:
keyid:CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/9sXuv6PkoBtpzK8_2R8bnnvAe7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.155.0/24
Signature Algorithm: sha256WithRSAEncryption
02:98:0f:83:30:ca:72:a8:e4:43:93:31:a1:16:77:dd:fd:e9:
9b:f9:2c:c1:71:b5:90:c7:98:97:43:18:01:c6:d5:f1:f9:bd:
23:7f:8f:83:5d:f1:a3:37:9c:d9:80:c8:b3:90:e1:a7:96:6c:
e5:1b:83:43:ae:48:fa:d0:e0:d9:8e:65:39:87:9b:c5:3c:b9:
b1:f9:e0:c3:0c:98:e3:1d:ff:e7:6e:56:d2:2c:e0:4a:48:69:
01:a3:61:d1:a7:0c:49:38:1d:f4:32:2f:5b:b9:ff:e0:b8:1a:
43:b7:31:6e:74:6a:36:c0:7f:1d:7b:2c:a8:f3:2b:a3:56:b9:
6b:42:b9:35:cb:c5:15:c8:84:e7:d2:b4:39:c7:94:06:bc:f2:
3c:d0:7e:50:30:d6:49:71:f3:1a:9c:aa:a6:31:ec:f7:e7:51:
4b:27:64:55:f6:2b:24:75:f5:f8:c1:01:00:a3:58:b5:e3:e4:
b1:71:e4:32:d6:5c:83:8b:dc:31:17:2d:66:22:01:14:87:49:
f0:a7:04:ac:a2:ec:47:79:7b:58:57:59:af:e0:31:44:fc:d5:
11:18:2a:3c:ba:10:f2:f5:ed:83:22:93:c2:cb:85:a4:51:c2:
bf:a1:3a:6a:25:25:de:00:56:8f:11:37:62:a3:8d:83:26:a2:
f0:fc:fa:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYylw3Cw8KskfxstK4syjmLKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMTA4YzIyNWYyNDc4Y2Q0MjMwMTc5ODkwZDA3Mjg0YmUx
NjM2Y2QwHhcNMjMxMjI2MTA1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNmM1ZWViZmEzZTRhMDFiNjljY2FmM2ZkOTFmMWI5ZTdiYzA3YmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifH3IkQ4K6iixFjeQHG6tJNAixRG
VVJGKw3RTwHp0QgePxgnUpcmQIYZjiDNdZb1ToGAuGVAfx8HQ21znssymA5MkWBh
qvjAfHd5dyurd6bMaSZYZsaZ09FoKIFggLNMqhATTzUiulIYe/RXTABItZM6mmCD
iLCX3SPLTSaXuPeg8MpjPIM1dHrJ8XSxc2GkcL+ZPaUp8EMBgp0v8327aRzg4rbM
q0hp82xa2S2X9M61XiS4dobKJATrU7wvgmL6uHt6AnA5YMnre2ZcGxDfGJKHeAQ7
vPWC+vCO/WtBPbngqrdtuD9McrSRMZMTVhViXkLpryemNzDlKFyztSQ+dwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPbF7r+j5KAbacyvP9kfG557wHuwMB8GA1UdIwQY
MBaAFM0QjCJfJHjNQjAXmJDQcoS+FjbNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelJDTUlsOGtlTTFDTUJlWWtOQnloTDRXTnMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8zNDhjZTUtY2EyMC00ODQ4LTg4NDQt
YWU1MDI3MzY4MWE3LzEvOXNYdXY2UGtvQnRweks4XzJSOGJubnZBZTdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8zNDhjZTUtY2EyMC00ODQ4LTg4NDQtYWU1MDI3MzY4MWE3
LzEvelJDTUlsOGtlTTFDTUJlWWtOQnloTDRXTnMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwe+bMA0G
CSqGSIb3DQEBCwUAA4IBAQACmA+DMMpyqORDkzGhFnfd/emb+SzBcbWQx5iXQxgB
xtXx+b0jf4+DXfGjN5zZgMizkOGnlmzlG4NDrkj60ODZjmU5h5vFPLmx+eDDDJjj
Hf/nblbSLOBKSGkBo2HRpwxJOB30Mi9buf/guBpDtzFudGo2wH8deyyo8yujVrlr
Qrk1y8UVyITn0rQ5x5QGvPI80H5QMNZJcfManKqmMez351FLJ2RV9iskdfX4wQEA
o1i14+SxceQy1lyDi9wxFy1mIgEUh0nwpwSsouxHeXtYV1mv4DFE/NURGCo8uhDy
9e2DIpPCy4WkUcK/oTpqJSXeAFaPETdio42DJqLw/Ppw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:56 2024 by rpki-client on console-fra.rpki-client.org