Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/_XyKk3NcTGkFc0DgC4dpJXXA6Bk.roa
File: _XyKk3NcTGkFc0DgC4dpJXXA6Bk.roa (raw, json)
Hash identifier: XhjTMvrmuGp+b85nyybE2KGAFv/yEAT+d3eLAiXmXi4=
Subject key identifier: FD:7C:8A:93:73:5C:4C:69:05:73:40:E0:0B:87:69:25:75:C0:E8:19
Certificate issuer: /CN=193743467b4da41c6295e9351153309586ba2399
Certificate serial: 018C656153DA5D052D4DFACCD0CFF6615697
Authority key identifier: 19:37:43:46:7B:4D:A4:1C:62:95:E9:35:11:53:30:95:86:BA:23:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GTdDRntNpBxilek1EVMwlYa6I5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/_XyKk3NcTGkFc0DgC4dpJXXA6Bk.roa
Signing time: Wed 13 Dec 2023 22:52:06 +0000
ROA not before: Wed 13 Dec 2023 22:52:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199702
IP address blocks: 213.149.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Dec 2023 23:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:65:61:53:da:5d:05:2d:4d:fa:cc:d0:cf:f6:61:56:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=193743467b4da41c6295e9351153309586ba2399
Validity
Not Before: Dec 13 22:52:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd7c8a93735c4c69057340e00b87692575c0e819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a4:6f:40:12:5b:a5:15:4b:ba:8e:ea:dc:0a:
af:34:26:ec:17:a0:fd:2d:9a:1d:62:3e:b0:c1:83:
b4:c3:d2:18:e1:2e:db:5e:e0:83:5c:a6:17:ab:13:
75:ca:38:ec:4f:5d:ab:b5:fa:09:a8:5c:15:ae:f7:
34:56:15:c7:2f:36:f9:c8:85:94:92:2f:0b:8f:4e:
21:73:bf:7a:2f:ba:6a:b1:63:22:fd:0b:6e:a7:8f:
39:77:93:18:1d:0a:db:6b:43:18:2c:91:1e:6e:70:
18:4c:69:e5:b2:02:f3:82:e5:7d:7d:6e:e0:8f:2b:
1d:9e:45:a4:81:36:69:dc:e8:25:4f:46:6c:47:8a:
b2:8c:bb:e0:62:b7:1f:e0:06:b3:e4:3b:45:4e:e1:
ee:0d:ba:64:c0:b0:c5:31:69:16:2d:bf:a4:32:8d:
77:ac:b0:6a:d5:fb:35:f2:1b:22:66:86:a0:01:a6:
60:9f:5f:88:c1:e4:ff:5f:73:f8:c9:d9:ca:23:9c:
10:be:c6:f5:4b:45:ae:2e:be:fb:ab:01:01:8a:87:
7a:be:f8:1c:d9:76:71:1d:d9:08:ac:2f:47:ea:19:
82:49:2b:32:04:45:14:9e:8f:45:8b:a1:5a:c3:39:
8a:a9:38:de:ed:da:cf:66:95:a2:fb:01:71:3d:1c:
32:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7C:8A:93:73:5C:4C:69:05:73:40:E0:0B:87:69:25:75:C0:E8:19
X509v3 Authority Key Identifier:
keyid:19:37:43:46:7B:4D:A4:1C:62:95:E9:35:11:53:30:95:86:BA:23:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GTdDRntNpBxilek1EVMwlYa6I5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/_XyKk3NcTGkFc0DgC4dpJXXA6Bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/36703a-122b-4116-b317-ca5fccbf7a8c/1/GTdDRntNpBxilek1EVMwlYa6I5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.149.157.0/24
Signature Algorithm: sha256WithRSAEncryption
23:aa:63:d9:de:7d:77:a4:5d:3d:c2:a5:4a:08:20:d4:73:74:
f0:20:c2:be:f9:b8:b8:87:d3:c7:4a:50:4a:f8:ff:33:0e:bb:
0a:4a:44:42:d6:44:cb:fa:fc:2d:e4:6b:cf:15:b1:08:7c:c9:
92:45:95:a6:d8:50:21:17:d4:16:c9:c0:2f:69:5c:25:4f:bd:
af:a4:dd:56:41:27:05:56:88:d0:be:4b:1c:d0:ca:7c:90:3a:
42:17:8c:65:d0:9f:8b:e9:d2:46:c1:e0:73:52:9e:4c:80:68:
01:a0:03:7f:a2:48:1e:01:ee:26:fa:63:97:8e:e0:7c:a4:1f:
4a:3b:09:f7:c8:95:92:69:30:2c:47:17:5c:70:99:43:14:c9:
c9:f6:13:c7:69:a7:e9:e9:d4:a5:03:8b:03:42:ab:22:75:4b:
bf:78:db:0f:fa:4d:5d:53:2a:17:55:33:7f:b2:60:05:72:26:
87:83:d2:ff:42:4a:5c:63:84:72:40:4f:c2:45:f7:ad:d4:ac:
e5:ed:f4:d9:ff:bb:c6:bb:41:1d:2d:ba:92:29:8a:f2:09:ce:
b7:36:d2:e0:35:9f:8e:2d:8f:33:21:60:89:bd:a4:d6:65:82:
d4:2f:04:29:80:a2:d9:5d:56:0c:d2:cf:29:f5:61:3f:e8:94:
1f:92:cc:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxlYVPaXQUtTfrM0M/2YVaXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5Mzc0MzQ2N2I0ZGE0MWM2Mjk1ZTkzNTExNTMzMDk1ODZi
YTIzOTkwHhcNMjMxMjEzMjI1MjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDdjOGE5MzczNWM0YzY5MDU3MzQwZTAwYjg3NjkyNTc1YzBlODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaRvQBJbpRVLuo7q3AqvNCbsF6D9
LZodYj6wwYO0w9IY4S7bXuCDXKYXqxN1yjjsT12rtfoJqFwVrvc0VhXHLzb5yIWU
ki8Lj04hc796L7pqsWMi/Qtup485d5MYHQrba0MYLJEebnAYTGnlsgLzguV9fW7g
jysdnkWkgTZp3OglT0ZsR4qyjLvgYrcf4Aaz5DtFTuHuDbpkwLDFMWkWLb+kMo13
rLBq1fs18hsiZoagAaZgn1+IweT/X3P4ydnKI5wQvsb1S0WuLr77qwEBiod6vvgc
2XZxHdkIrC9H6hmCSSsyBEUUno9Fi6FawzmKqTje7drPZpWi+wFxPRwy3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP18ipNzXExpBXNA4AuHaSV1wOgZMB8GA1UdIwQY
MBaAFBk3Q0Z7TaQcYpXpNRFTMJWGuiOZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1RkRFJudE5wQnhpbGVrMUVWTXdsWWE2STVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8zNjcwM2EtMTIyYi00MTE2LWIzMTct
Y2E1ZmNjYmY3YThjLzEvX1h5S2szTmNUR2tGYzBEZ0M0ZHBKWFhBNkJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8zNjcwM2EtMTIyYi00MTE2LWIzMTctY2E1ZmNjYmY3YThj
LzEvR1RkRFJudE5wQnhpbGVrMUVWTXdsWWE2STVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ZWdMA0G
CSqGSIb3DQEBCwUAA4IBAQAjqmPZ3n13pF09wqVKCCDUc3TwIMK++bi4h9PHSlBK
+P8zDrsKSkRC1kTL+vwt5GvPFbEIfMmSRZWm2FAhF9QWycAvaVwlT72vpN1WQScF
VojQvksc0Mp8kDpCF4xl0J+L6dJGweBzUp5MgGgBoAN/okgeAe4m+mOXjuB8pB9K
Own3yJWSaTAsRxdccJlDFMnJ9hPHaafp6dSlA4sDQqsidUu/eNsP+k1dUyoXVTN/
smAFciaHg9L/QkpcY4RyQE/CRfet1Kzl7fTZ/7vGu0EdLbqSKYryCc63NtLgNZ+O
LY8zIWCJvaTWZYLULwQpgKLZXVYM0s8p9WE/6JQfksx+
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:39 2024 by rpki-client on console-ams.rpki-client.org