Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/PrkRWLRNQqHmS93-baORXprvnyw.roa
File: PrkRWLRNQqHmS93-baORXprvnyw.roa (raw, json)
Hash identifier: g27BVpEPOTEPcmhRpSOZcspVOu4yCMPO1v1IiLNmz6M=
Subject key identifier: 3E:B9:11:58:B4:4D:42:A1:E6:4B:DD:FE:6D:A3:91:5E:9A:EF:9F:2C
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 018A0F100E8594D7A31A299710FED3C24A75
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/PrkRWLRNQqHmS93-baORXprvnyw.roa
Signing time: Sat 19 Aug 2023 18:30:25 +0000
ROA not before: Sat 19 Aug 2023 18:30:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.15.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 05:53:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:0f:10:0e:85:94:d7:a3:1a:29:97:10:fe:d3:c2:4a:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Aug 19 18:30:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eb91158b44d42a1e64bddfe6da3915e9aef9f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:50:96:cb:03:ef:c8:44:86:80:82:3c:67:d8:
af:8c:a5:1e:8e:c2:4b:b0:ac:fd:80:8e:d4:41:1a:
d4:a4:28:05:76:92:fc:9c:10:c0:fc:c1:24:a3:71:
65:e4:72:c7:f0:4a:98:2a:1b:11:cc:ac:2e:73:b2:
2a:46:53:43:a3:f5:a4:a0:7a:7d:51:c1:f0:b4:c9:
6f:ad:26:6a:9d:a3:fb:1b:4d:1b:84:79:95:87:3b:
c5:47:f1:f3:66:97:e6:a1:70:b6:c2:82:50:02:35:
03:68:bf:6f:35:14:64:84:c1:98:97:77:68:0f:4b:
ce:39:5b:96:62:d6:f6:5d:54:9d:8b:10:cd:2c:7b:
ee:46:ce:8c:62:97:fb:a8:7e:05:b5:b6:66:f4:fe:
16:c3:16:92:19:e5:cb:e5:a2:59:b2:e7:c7:76:17:
30:eb:ac:ae:cc:b0:67:8b:00:73:e8:ac:34:37:48:
57:d8:c0:30:eb:b8:84:e4:dd:c9:36:50:7f:ae:4d:
f0:95:27:b5:9c:44:a0:3b:95:21:f3:d1:93:00:9a:
08:22:f2:1e:f5:a0:97:55:24:09:4c:2f:17:42:b4:
2a:b4:38:f9:4e:39:99:85:55:f9:11:68:d6:1c:e9:
eb:b0:cc:a3:f5:52:cb:28:b6:61:e2:1c:61:f4:02:
36:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B9:11:58:B4:4D:42:A1:E6:4B:DD:FE:6D:A3:91:5E:9A:EF:9F:2C
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/PrkRWLRNQqHmS93-baORXprvnyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.98.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:50:f4:f8:07:09:77:75:01:5b:96:72:31:af:b7:56:1c:cd:
29:3e:df:26:d6:d2:8c:51:f8:3f:c1:c2:38:62:a0:bb:75:78:
26:10:bb:3c:67:e3:f2:fe:26:20:ef:55:46:44:ea:b7:fb:fe:
d9:41:ec:d5:90:a7:3f:6a:43:65:d6:a9:76:6e:0b:62:b8:3e:
41:d7:da:2e:50:07:09:79:9d:70:c6:41:30:97:02:4b:84:36:
0a:92:51:96:ab:1e:ad:6d:ca:73:f9:e7:d8:2c:7e:a2:92:b4:
7b:db:0b:11:a3:98:04:aa:32:2f:20:5f:07:c1:f5:7f:c5:4f:
84:d4:00:9d:bf:4b:57:df:a9:16:fc:24:95:0a:10:19:51:c1:
eb:8e:48:da:29:97:69:30:0a:8a:30:f9:53:18:3d:04:1b:39:
ee:18:f5:14:39:23:5c:1e:70:b9:a9:c8:e5:13:9f:e1:29:fc:
96:3c:4a:b4:06:90:cb:ec:6b:0e:ab:dd:fc:87:cb:ae:57:64:
26:d3:db:6e:5b:41:73:79:99:ad:68:66:5e:bc:43:1a:c5:34:
9f:ee:68:61:cb:00:68:06:d1:98:eb:f0:6f:a1:76:73:d0:63:
2b:4f:a0:58:38:64:1f:09:bf:38:9d:4b:e7:f1:3e:a3:fd:20:
6a:e7:f7:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoPEA6FlNejGimXEP7Twkp1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2RhMjAxOTkwOWQ5ZmMzNzgyOWZkOWVjMjlkOTQ4ZWNm
ZjdjOTIwHhcNMjMwODE5MTgzMDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZWI5MTE1OGI0NGQ0MmExZTY0YmRkZmU2ZGEzOTE1ZTlhZWY5ZjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhVCWywPvyESGgII8Z9ivjKUejsJL
sKz9gI7UQRrUpCgFdpL8nBDA/MEko3Fl5HLH8EqYKhsRzKwuc7IqRlNDo/WkoHp9
UcHwtMlvrSZqnaP7G00bhHmVhzvFR/HzZpfmoXC2woJQAjUDaL9vNRRkhMGYl3do
D0vOOVuWYtb2XVSdixDNLHvuRs6MYpf7qH4FtbZm9P4WwxaSGeXL5aJZsufHdhcw
66yuzLBniwBz6Kw0N0hX2MAw67iE5N3JNlB/rk3wlSe1nESgO5Uh89GTAJoIIvIe
9aCXVSQJTC8XQrQqtDj5TjmZhVX5EWjWHOnrsMyj9VLLKLZh4hxh9AI2vwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD65EVi0TUKh5kvd/m2jkV6a758sMB8GA1UdIwQY
MBaAFNk9ogGZCdn8N4Kf2ewp2Ujs/3ySMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgt
ZjVhZGRkZGYxZWM1LzEvUHJrUldMUk5RcUhtUzkzLWJhT1JYcHJ2bnl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi80N2FmYTMtY2UzMS00MDYwLWEwNzgtZjVhZGRkZGYxZWM1
LzEvMlQyaUFaa0oyZnczZ3BfWjdDblpTT3pfZkpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwg9iMA0G
CSqGSIb3DQEBCwUAA4IBAQBdUPT4Bwl3dQFblnIxr7dWHM0pPt8m1tKMUfg/wcI4
YqC7dXgmELs8Z+Py/iYg71VGROq3+/7ZQezVkKc/akNl1ql2bgtiuD5B19ouUAcJ
eZ1wxkEwlwJLhDYKklGWqx6tbcpz+efYLH6ikrR72wsRo5gEqjIvIF8HwfV/xU+E
1ACdv0tX36kW/CSVChAZUcHrjkjaKZdpMAqKMPlTGD0EGznuGPUUOSNcHnC5qcjl
E5/hKfyWPEq0BpDL7GsOq938h8uuV2Qm09tuW0FzeZmtaGZevEMaxTSf7mhhywBo
BtGY6/BvoXZz0GMrT6BYOGQfCb84nUvn8T6j/SBq5/fw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org