Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/I7WcjDoASEM1FntTLEYF9AvPQWQ.roa
File: I7WcjDoASEM1FntTLEYF9AvPQWQ.roa (raw, json)
Hash identifier: AzwPoFRicGNe4BF+Y8HbQKg4rm34lQBLFBSjQQON3bk=
Subject key identifier: 23:B5:9C:8C:3A:00:48:43:35:16:7B:53:2C:46:05:F4:0B:CF:41:64
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D65BF0EF4B90816D70EBEEA857D8BACC1
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/I7WcjDoASEM1FntTLEYF9AvPQWQ.roa
Signing time: Thu 01 Feb 2024 17:37:16 +0000
ROA not before: Thu 01 Feb 2024 17:37:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 27176
IP address blocks: 193.192.1.0/24 maxlen: 24
193.192.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 18:11:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:bf:0e:f4:b9:08:16:d7:0e:be:ea:85:7d:8b:ac:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 1 17:37:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=23b59c8c3a00484335167b532c4605f40bcf4164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:99:35:f7:24:3b:6d:67:ad:e1:81:41:1e:3b:
d2:53:f2:67:4b:f7:02:b9:17:7b:ba:14:18:c0:0b:
96:03:ad:fa:e5:e2:c8:eb:95:f9:da:70:64:59:3e:
4a:ce:4e:91:0e:cf:fe:73:df:2a:c4:f8:f7:af:c7:
5b:26:d1:f2:4a:e5:f0:44:aa:2a:36:2c:b7:11:3c:
48:55:2e:5b:c5:8c:96:e9:07:39:98:70:80:e9:59:
c4:f1:be:e4:e2:97:60:b6:cf:41:f0:b5:20:0b:3a:
dc:02:a5:c5:43:d0:7b:6b:ba:35:12:d8:0b:ad:2b:
72:f3:f6:2d:b5:6e:34:b8:94:48:0d:9e:56:23:cd:
b3:b8:e0:7e:a7:cf:36:10:43:bd:de:7e:9d:64:3e:
67:04:69:b6:b1:2c:25:ec:5e:7a:d6:16:5d:4f:91:
db:ed:81:48:0a:cc:2b:6b:46:c4:10:ce:e0:50:b8:
40:ee:74:7f:e9:a0:1c:92:04:61:f2:29:75:d2:da:
e5:e3:eb:f2:83:5d:a9:e7:f7:04:28:5f:17:ed:a6:
66:89:dc:44:5a:0b:f6:af:a2:db:6e:f3:0b:83:fb:
43:e9:87:c9:db:40:bf:37:c9:50:77:53:04:a6:29:
1c:07:58:0e:15:63:e1:48:01:bf:37:e3:85:88:43:
a0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B5:9C:8C:3A:00:48:43:35:16:7B:53:2C:46:05:F4:0B:CF:41:64
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/I7WcjDoASEM1FntTLEYF9AvPQWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.1.0/24
193.192.15.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:97:2d:94:aa:dd:eb:a0:68:f7:60:4a:c8:5a:ce:29:41:03:
70:40:4d:a0:ec:96:6b:15:8c:01:4b:a6:bc:69:53:0d:83:28:
a1:a7:4d:b6:ce:60:4b:92:40:6d:38:e1:b2:32:13:a3:b3:0d:
e9:7c:d9:00:c2:3f:e0:57:14:0f:27:58:c1:ed:82:74:15:8f:
5e:a5:79:fb:64:4f:a0:73:2a:20:ee:8e:db:34:8e:57:33:c0:
83:ad:09:00:76:46:fd:4b:d1:1a:82:e8:03:6d:d8:6f:29:02:
bc:2c:68:e2:4a:36:bf:74:47:7b:9f:c4:36:a1:5b:c5:d3:a8:
f4:19:fb:9d:b1:40:f9:44:de:a5:61:5c:cc:0b:ef:bc:be:41:
2a:47:25:6e:dd:73:13:dc:a8:60:dd:6d:f0:51:da:34:86:e4:
71:06:e6:f6:7d:0c:de:48:c4:e1:f3:43:02:83:79:3c:46:2b:
d4:04:71:8b:b0:0d:34:4f:0f:e9:d1:79:b3:ba:f0:2a:24:45:
78:a4:b9:a2:55:ce:fc:95:10:48:ca:6d:ee:6b:98:86:03:e6:
33:11:52:47:48:e4:8c:8c:4b:f4:f6:31:e2:1c:39:d8:80:f2:
18:58:d4:f4:dd:d3:c9:56:5b:63:5a:af:f1:dd:16:21:81:a3:
89:04:cd:c3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1lvw70uQgW1w6+6oV9i6zBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjAxMTczNzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyM2I1OWM4YzNhMDA0ODQzMzUxNjdiNTMyYzQ2MDVmNDBiY2Y0MTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpk19yQ7bWet4YFBHjvSU/JnS/cC
uRd7uhQYwAuWA6365eLI65X52nBkWT5Kzk6RDs/+c98qxPj3r8dbJtHySuXwRKoq
Niy3ETxIVS5bxYyW6Qc5mHCA6VnE8b7k4pdgts9B8LUgCzrcAqXFQ9B7a7o1EtgL
rSty8/YttW40uJRIDZ5WI82zuOB+p882EEO93n6dZD5nBGm2sSwl7F561hZdT5Hb
7YFICswra0bEEM7gULhA7nR/6aAckgRh8il10trl4+vyg12p5/cEKF8X7aZmidxE
Wgv2r6LbbvMLg/tD6YfJ20C/N8lQd1MEpikcB1gOFWPhSAG/N+OFiEOgGwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCO1nIw6AEhDNRZ7UyxGBfQLz0FkMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvSTdXY2pEb0FTRU0xRm50VExFWUY5QXZQUVdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwcABAwQA
wcAPMA0GCSqGSIb3DQEBCwUAA4IBAQChly2Uqt3roGj3YErIWs4pQQNwQE2g7JZr
FYwBS6a8aVMNgyihp022zmBLkkBtOOGyMhOjsw3pfNkAwj/gVxQPJ1jB7YJ0FY9e
pXn7ZE+gcyog7o7bNI5XM8CDrQkAdkb9S9EagugDbdhvKQK8LGjiSja/dEd7n8Q2
oVvF06j0GfudsUD5RN6lYVzMC++8vkEqRyVu3XMT3Khg3W3wUdo0huRxBub2fQze
SMTh80MCg3k8RivUBHGLsA00Tw/p0XmzuvAqJEV4pLmiVc78lRBIym3ua5iGA+Yz
EVJHSOSMjEv09jHiHDnYgPIYWNT03dPJVltjWq/x3RYhgaOJBM3D
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org