Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/OWzEgVEy5sM7Yb1qINCMMlyG91s.roa
File: OWzEgVEy5sM7Yb1qINCMMlyG91s.roa (raw, json)
Hash identifier: 0ZqAStcVfesrsBU78aIys1dS7/Ul0kbZBFMmpoXzd/o=
Subject key identifier: 39:6C:C4:81:51:32:E6:C3:3B:61:BD:6A:20:D0:8C:32:5C:86:F7:5B
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 0185704BE941F3BF112F896995D6084105D3
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/OWzEgVEy5sM7Yb1qINCMMlyG91s.roa
Signing time: Mon 02 Jan 2023 02:25:01 +0000
ROA not before: Mon 02 Jan 2023 02:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59579
IP address blocks: 193.41.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:e9:41:f3:bf:11:2f:89:69:95:d6:08:41:05:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Jan 2 02:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=396cc4815132e6c33b61bd6a20d08c325c86f75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:db:01:51:5a:40:c8:74:60:73:ac:79:47:50:
f9:e8:5e:5f:f2:7c:90:a6:79:67:89:5f:7e:3b:6d:
96:15:b4:92:e2:44:33:bf:24:52:f9:c6:82:6b:5b:
78:2f:85:33:fe:79:94:df:1e:ab:c7:6f:01:ab:03:
00:6c:8a:3f:17:aa:21:e7:d6:7e:78:9e:21:96:a3:
bd:f6:86:8f:f6:e8:8d:a6:88:3c:1e:21:67:c3:ec:
66:9b:8f:38:2b:62:07:a2:d1:ed:d4:92:f6:28:6d:
2d:df:5c:2b:55:f1:61:04:76:4d:7c:4b:d1:82:79:
3b:09:5b:7b:b8:ad:8c:1d:61:8d:1b:c5:3e:e6:e9:
44:bf:17:7a:96:70:e7:d0:3a:ca:64:ac:05:6e:4d:
62:84:6b:0e:21:a2:e3:94:13:93:99:b2:71:ae:d0:
0c:ff:d1:06:1b:85:a2:47:5f:d4:38:79:d7:4a:d9:
7a:af:1a:eb:87:dc:23:85:ed:1c:b6:dc:65:bc:21:
70:f2:a3:4a:18:32:37:2d:c4:00:7e:ab:3c:e7:3a:
1a:87:45:59:71:2c:e7:d7:d2:e1:48:6a:d0:2d:70:
11:fd:06:15:5a:2a:01:78:f2:8c:30:a5:e0:91:33:
d3:bb:e6:83:b2:25:40:56:ed:d9:3f:5f:21:40:1d:
4e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6C:C4:81:51:32:E6:C3:3B:61:BD:6A:20:D0:8C:32:5C:86:F7:5B
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/OWzEgVEy5sM7Yb1qINCMMlyG91s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.44.0/24
Signature Algorithm: sha256WithRSAEncryption
63:06:bd:fb:0b:2d:f2:f9:ae:1a:a4:bb:91:bc:1b:66:24:97:
d5:36:e6:8a:86:2c:a7:83:90:9c:49:50:61:70:a1:e0:d1:25:
75:e1:d4:b7:d8:f3:7b:42:c2:ca:06:39:d1:32:d8:47:da:5f:
f5:08:bc:22:e2:1b:bf:1a:75:7b:8c:d1:27:7a:d0:0c:a7:8a:
04:11:51:63:41:f5:92:2c:91:ac:c9:41:40:e7:98:98:17:aa:
72:af:c2:e3:46:bf:a0:38:42:88:00:ff:7d:91:38:ae:d2:8a:
0f:2d:7a:ff:40:35:a0:92:59:57:a4:e0:4b:25:65:6f:09:59:
4c:b2:86:36:11:b3:c5:3d:6f:ad:89:df:50:1a:81:3b:d2:12:
85:63:cd:b0:38:95:d4:75:9a:f6:57:33:48:5a:99:01:f6:c1:
0e:47:db:6d:89:e5:b7:26:e8:90:31:32:a0:52:81:e2:27:5e:
de:3f:15:6e:6e:d5:53:da:3b:21:79:01:b9:d1:e8:47:00:90:
36:b8:e4:a4:e0:35:fd:d7:49:e2:59:c4:6f:29:6f:33:13:b1:
7d:4d:3b:4d:28:73:52:3b:9d:a9:e1:d0:c7:13:7b:f7:fb:f5:
57:24:d6:eb:76:3c:e9:9f:6b:99:54:1a:60:b2:7e:e3:b5:35:
02:8b:7e:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwS+lB878RL4lpldYIQQXTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyY2MxNzFlM2RjODQ2NzExZTA1NmUyZTM2MjQxZGFjOTk0
YTYwMGQwHhcNMjMwMTAyMDIyNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTZjYzQ4MTUxMzJlNmMzM2I2MWJkNmEyMGQwOGMzMjVjODZmNzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9sBUVpAyHRgc6x5R1D56F5f8nyQ
pnlniV9+O22WFbSS4kQzvyRS+caCa1t4L4Uz/nmU3x6rx28BqwMAbIo/F6oh59Z+
eJ4hlqO99oaP9uiNpog8HiFnw+xmm484K2IHotHt1JL2KG0t31wrVfFhBHZNfEvR
gnk7CVt7uK2MHWGNG8U+5ulEvxd6lnDn0DrKZKwFbk1ihGsOIaLjlBOTmbJxrtAM
/9EGG4WiR1/UOHnXStl6rxrrh9wjhe0cttxlvCFw8qNKGDI3LcQAfqs85zoah0VZ
cSzn19LhSGrQLXAR/QYVWioBePKMMKXgkTPTu+aDsiVAVu3ZP18hQB1OVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDlsxIFRMubDO2G9aiDQjDJchvdbMB8GA1UdIwQY
MBaAFILMFx49yEZxHgVuLjYkHayZSmANMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3N3WEhqM0lSbkVlQlc0dU5pUWRySmxLWUEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yMjEwYzctOTk1OS00NGY3LWFkYTYt
ZWZkM2FlOTg1ZWU0LzEvT1d6RWdWRXk1c003WWIxcUlOQ01NbHlHOTFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC8yMjEwYzctOTk1OS00NGY3LWFkYTYtZWZkM2FlOTg1ZWU0
LzEvZ3N3WEhqM0lSbkVlQlc0dU5pUWRySmxLWUEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSksMA0G
CSqGSIb3DQEBCwUAA4IBAQBjBr37Cy3y+a4apLuRvBtmJJfVNuaKhiyng5CcSVBh
cKHg0SV14dS32PN7QsLKBjnRMthH2l/1CLwi4hu/GnV7jNEnetAMp4oEEVFjQfWS
LJGsyUFA55iYF6pyr8LjRr+gOEKIAP99kTiu0ooPLXr/QDWgkllXpOBLJWVvCVlM
soY2EbPFPW+tid9QGoE70hKFY82wOJXUdZr2VzNIWpkB9sEOR9ttieW3JuiQMTKg
UoHiJ17ePxVubtVT2jsheQG50ehHAJA2uOSk4DX910niWcRvKW8zE7F9TTtNKHNS
O52p4dDHE3v3+/VXJNbrdjzpn2uZVBpgsn7jtTUCi36i
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:21 2024 by rpki-client on console-ams.rpki-client.org