Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/Eg9Sag64PG0nV0BtjI7VjOm4_3A.roa
File: Eg9Sag64PG0nV0BtjI7VjOm4_3A.roa (raw, json)
Hash identifier: gX8uCWCqN75L0eCwW/NSylBaWpOHg56zEa0WmT0S/VE=
Subject key identifier: 12:0F:52:6A:0E:B8:3C:6D:27:57:40:6D:8C:8E:D5:8C:E9:B8:FF:70
Certificate issuer: /CN=aa8093354e565ac4838a51f47d2769769c66944e
Certificate serial: 01893A57F622C966367A0CAAA46F4C2763A7
Authority key identifier: AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/Eg9Sag64PG0nV0BtjI7VjOm4_3A.roa
Signing time: Sun 09 Jul 2023 11:09:50 +0000
ROA not before: Sun 09 Jul 2023 11:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212165
IP address blocks: 193.163.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3a:57:f6:22:c9:66:36:7a:0c:aa:a4:6f:4c:27:63:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8093354e565ac4838a51f47d2769769c66944e
Validity
Not Before: Jul 9 11:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=120f526a0eb83c6d2757406d8c8ed58ce9b8ff70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:59:9b:5a:d3:f8:ba:56:9f:58:d1:af:1d:bf:
02:be:f9:11:e2:d3:66:f2:b2:5b:6f:e6:67:88:eb:
a7:be:62:2e:18:23:71:0c:d9:55:53:5d:50:be:71:
25:60:68:b8:19:3d:7f:70:06:19:ed:fe:5b:85:5b:
87:fc:27:07:4c:a7:02:b4:aa:9e:d0:4b:34:e0:34:
ff:ce:a0:59:a3:43:c1:44:64:1a:79:d8:e3:e3:ea:
b0:8e:71:ae:ab:8f:1f:36:bb:25:b0:b4:9e:5b:03:
da:0a:b4:48:63:23:4a:11:4c:03:08:26:60:6b:01:
86:0e:27:24:75:81:ff:4b:56:73:50:0e:d3:c6:fb:
df:37:0d:73:2f:4e:ba:bb:ff:46:0e:5c:83:c1:c3:
b9:db:b4:7c:ec:7a:15:23:66:a2:47:00:08:a1:44:
1b:b0:48:56:3c:89:aa:78:5e:28:26:00:4b:23:dc:
b7:76:71:6f:17:1d:78:2f:73:74:0a:09:59:b9:12:
a1:67:45:34:cf:62:01:78:2d:37:0a:40:9d:b7:a2:
3c:70:76:72:89:eb:b3:28:ec:ba:6c:c3:a6:44:90:
18:7b:d2:9c:96:ed:1b:37:a9:5c:e3:dd:f6:0e:9b:
09:b3:87:61:5c:2a:d5:ac:de:3e:ed:62:19:25:4a:
2c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0F:52:6A:0E:B8:3C:6D:27:57:40:6D:8C:8E:D5:8C:E9:B8:FF:70
X509v3 Authority Key Identifier:
keyid:AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/Eg9Sag64PG0nV0BtjI7VjOm4_3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b1:92:b2:a4:4d:44:de:20:4d:6f:77:e7:55:6f:a9:ff:db:
79:20:bf:95:10:76:b3:b1:b6:a5:d2:65:1c:4f:10:58:29:33:
ac:4a:51:16:2e:a2:d9:97:1b:1f:2a:f5:e4:dc:b1:22:ef:0b:
2d:b4:c9:e5:12:b0:9c:61:a6:5f:ce:09:12:c5:aa:57:1c:72:
71:0d:cd:ac:eb:7d:9a:cf:57:b8:92:b5:9d:64:f1:5f:1e:eb:
aa:22:8b:ad:27:cc:d3:7e:88:02:3b:9b:d5:40:d4:3d:41:56:
d6:8f:45:b8:46:27:9a:07:64:b7:3c:04:b3:34:98:81:e1:4f:
64:3d:34:27:cd:10:2e:fd:3f:24:e6:18:b7:4f:f3:fb:f1:2d:
b0:f5:56:c4:dc:15:b0:87:3a:0f:24:b1:6e:7f:06:6e:db:45:
21:2a:d9:fe:22:89:e3:e6:d2:c9:a4:69:cb:20:30:b5:c6:8c:
35:0f:5b:c1:1f:41:33:7e:6d:72:57:25:11:9e:cb:ec:b1:6c:
50:75:10:91:13:56:76:ff:ce:7e:eb:ca:16:b0:32:03:b0:8c:
d3:f5:15:64:b1:e9:7c:d4:9a:16:f4:03:3c:b2:4d:1f:45:46:
0f:81:a6:db:1f:63:65:b7:e1:dd:17:c8:ee:b0:58:bd:83:21:
b2:d9:9b:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYk6V/YiyWY2egyqpG9MJ2OnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhODA5MzM1NGU1NjVhYzQ4MzhhNTFmNDdkMjc2OTc2OWM2
Njk0NGUwHhcNMjMwNzA5MTEwOTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjBmNTI2YTBlYjgzYzZkMjc1NzQwNmQ4YzhlZDU4Y2U5YjhmZjcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1mbWtP4ulafWNGvHb8CvvkR4tNm
8rJbb+ZniOunvmIuGCNxDNlVU11QvnElYGi4GT1/cAYZ7f5bhVuH/CcHTKcCtKqe
0Es04DT/zqBZo0PBRGQaedjj4+qwjnGuq48fNrslsLSeWwPaCrRIYyNKEUwDCCZg
awGGDickdYH/S1ZzUA7TxvvfNw1zL066u/9GDlyDwcO527R87HoVI2aiRwAIoUQb
sEhWPImqeF4oJgBLI9y3dnFvFx14L3N0CglZuRKhZ0U0z2IBeC03CkCdt6I8cHZy
ieuzKOy6bMOmRJAYe9Kclu0bN6lc4932DpsJs4dhXCrVrN4+7WIZJUosQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBIPUmoOuDxtJ1dAbYyO1YzpuP9wMB8GA1UdIwQY
MBaAFKqAkzVOVlrEg4pR9H0naXacZpROMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW9DVE5VNVdXc1NEaWxIMGZTZHBkcHhtbEU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lZTlkZGMtYWNkMC00ODFkLThjMGIt
Nzg4YjQ2ZTEwNDk3LzEvRWc5U2FnNjRQRzBuVjBCdGpJN1ZqT200XzNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9lZTlkZGMtYWNkMC00ODFkLThjMGItNzg4YjQ2ZTEwNDk3
LzEvcW9DVE5VNVdXc1NEaWxIMGZTZHBkcHhtbEU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaOqMA0G
CSqGSIb3DQEBCwUAA4IBAQBasZKypE1E3iBNb3fnVW+p/9t5IL+VEHazsbal0mUc
TxBYKTOsSlEWLqLZlxsfKvXk3LEi7wsttMnlErCcYaZfzgkSxapXHHJxDc2s632a
z1e4krWdZPFfHuuqIoutJ8zTfogCO5vVQNQ9QVbWj0W4RieaB2S3PASzNJiB4U9k
PTQnzRAu/T8k5hi3T/P78S2w9VbE3BWwhzoPJLFufwZu20UhKtn+Ionj5tLJpGnL
IDC1xow1D1vBH0Ezfm1yVyURnsvssWxQdRCRE1Z2/85+68oWsDIDsIzT9RVksel8
1JoW9AM8sk0fRUYPgabbH2Nlt+HdF8jusFi9gyGy2ZsQ
-----END CERTIFICATE-----
Generated at Fri Nov 10 09:01:49 2023 by rpki-client on console-fra.rpki-client.org