Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/vjLfOsAqfydlh6B-HJridQtaqcE.roa
File: vjLfOsAqfydlh6B-HJridQtaqcE.roa (raw, json)
Hash identifier: E9IcnaDxa7BknENn9WelXoCxQuHM16Q2b9JZ0L64eyk=
Subject key identifier: BE:32:DF:3A:C0:2A:7F:27:65:87:A0:7E:1C:9A:E2:75:0B:5A:A9:C1
Certificate issuer: /CN=34859d8a26c8e888777f4e801b20b785dee654cf
Certificate serial: 01856F66C64C57A22156AF8B6F0D6A7091D9
Authority key identifier: 34:85:9D:8A:26:C8:E8:88:77:7F:4E:80:1B:20:B7:85:DE:E6:54:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIWdiibI6Ih3f06AGyC3hd7mVM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/vjLfOsAqfydlh6B-HJridQtaqcE.roa
Signing time: Sun 01 Jan 2023 22:14:44 +0000
ROA not before: Sun 01 Jan 2023 22:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48178
IP address blocks: 193.202.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:c6:4c:57:a2:21:56:af:8b:6f:0d:6a:70:91:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34859d8a26c8e888777f4e801b20b785dee654cf
Validity
Not Before: Jan 1 22:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be32df3ac02a7f276587a07e1c9ae2750b5aa9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:65:0e:a0:cb:2c:4e:67:d9:b8:72:e9:c6:22:
d8:3b:86:06:32:be:ec:c2:d4:f2:06:99:09:49:50:
b9:4d:48:71:a5:e5:67:70:19:24:1b:56:f8:11:3d:
79:01:71:8e:be:82:8e:bd:7c:25:8a:aa:f6:26:20:
da:d3:1a:0d:4d:86:ec:d4:21:23:8e:1b:4e:89:22:
fb:0b:b3:9a:3b:9d:a0:81:a9:6c:ac:32:6d:96:2d:
7c:7a:97:a4:a8:9c:29:12:ca:5a:ef:22:34:34:70:
e1:2d:dd:d2:bf:0f:ea:57:d8:92:2c:1e:93:fd:d6:
d9:a1:2b:ef:db:a1:b6:d6:ea:17:c3:3d:24:a8:19:
a0:36:f6:09:70:18:b5:d2:78:f7:57:cf:f4:6c:4d:
9b:34:2d:44:63:be:45:5a:b7:98:12:d5:ed:ea:5d:
4f:7a:74:85:dc:bc:c3:aa:0b:96:55:da:48:cc:9b:
71:25:d2:c2:6f:cd:e4:e7:9a:50:e5:2e:46:5f:5b:
9a:eb:57:93:75:2a:03:cc:1b:90:f9:3a:c2:98:d7:
e5:0a:43:6d:44:71:48:25:af:d4:73:db:af:0d:65:
ef:6d:a9:df:4b:23:d4:c9:d8:c7:a7:2d:e1:4c:2a:
ac:88:18:2e:1d:d2:44:ee:50:e7:19:23:36:1e:0d:
36:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:32:DF:3A:C0:2A:7F:27:65:87:A0:7E:1C:9A:E2:75:0B:5A:A9:C1
X509v3 Authority Key Identifier:
keyid:34:85:9D:8A:26:C8:E8:88:77:7F:4E:80:1B:20:B7:85:DE:E6:54:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIWdiibI6Ih3f06AGyC3hd7mVM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/vjLfOsAqfydlh6B-HJridQtaqcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/78fefc-e9c5-4c6b-9ecd-18723c841121/1/NIWdiibI6Ih3f06AGyC3hd7mVM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.21.0/24
Signature Algorithm: sha256WithRSAEncryption
dd:8c:84:84:44:88:ca:0a:92:bb:a2:82:6f:47:f0:95:cc:52:
5e:52:08:9b:87:0a:b3:3e:11:39:f6:ca:95:a8:77:b7:92:9c:
b4:af:e0:7b:9e:2b:ce:78:d2:73:37:8d:6e:72:ea:a3:5a:7c:
21:a0:cb:bb:d1:3f:74:a9:a1:d8:97:6b:48:ec:3c:02:f5:b1:
49:f5:d1:4c:17:3d:0c:8c:39:a7:a5:ef:62:d9:b9:a4:32:fa:
2d:2d:79:27:66:0b:24:84:77:a0:66:a9:7b:6a:7a:4a:66:bd:
ed:68:24:3c:3b:fe:17:1e:74:b6:cd:1b:54:56:f6:25:2a:69:
fc:3f:4c:c0:e1:5b:8b:04:90:ef:8d:3a:c4:cd:09:4c:26:8a:
2c:2d:6f:0d:2e:b9:b4:c1:3c:a3:1f:d9:a5:8e:16:50:ef:a6:
b9:4e:bc:fb:02:16:13:19:9a:28:56:58:ab:d5:69:36:e6:c2:
0b:f1:2e:ce:75:70:f6:c0:28:2c:e9:86:d5:87:17:25:b6:23:
9c:df:7d:eb:f3:c8:aa:de:74:a4:b6:20:ec:cd:c1:e7:6d:79:
47:d3:3e:96:30:94:ed:ae:ff:48:15:47:0e:33:75:9a:ba:39:
8d:6b:88:35:90:8c:e7:bc:ac:20:d6:c4:c4:de:8b:fb:13:4c:
fb:d7:6f:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvZsZMV6IhVq+Lbw1qcJHZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ODU5ZDhhMjZjOGU4ODg3NzdmNGU4MDFiMjBiNzg1ZGVl
NjU0Y2YwHhcNMjMwMTAxMjIxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTMyZGYzYWMwMmE3ZjI3NjU4N2EwN2UxYzlhZTI3NTBiNWFhOWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWUOoMssTmfZuHLpxiLYO4YGMr7s
wtTyBpkJSVC5TUhxpeVncBkkG1b4ET15AXGOvoKOvXwliqr2JiDa0xoNTYbs1CEj
jhtOiSL7C7OaO52ggalsrDJtli18epekqJwpEspa7yI0NHDhLd3Svw/qV9iSLB6T
/dbZoSvv26G21uoXwz0kqBmgNvYJcBi10nj3V8/0bE2bNC1EY75FWreYEtXt6l1P
enSF3LzDqguWVdpIzJtxJdLCb83k55pQ5S5GX1ua61eTdSoDzBuQ+TrCmNflCkNt
RHFIJa/Uc9uvDWXvbanfSyPUydjHpy3hTCqsiBguHdJE7lDnGSM2Hg029QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL4y3zrAKn8nZYegfhya4nULWqnBMB8GA1UdIwQY
MBaAFDSFnYomyOiId39OgBsgt4Xe5lTPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTklXZGlpYkk2SWgzZjA2QUd5QzNoZDdtVk04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83OGZlZmMtZTljNS00YzZiLTllY2Qt
MTg3MjNjODQxMTIxLzEvdmpMZk9zQXFmeWRsaDZCLUhKcmlkUXRhcWNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83OGZlZmMtZTljNS00YzZiLTllY2QtMTg3MjNjODQxMTIx
LzEvTklXZGlpYkk2SWgzZjA2QUd5QzNoZDdtVk04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcoVMA0G
CSqGSIb3DQEBCwUAA4IBAQDdjISERIjKCpK7ooJvR/CVzFJeUgibhwqzPhE59sqV
qHe3kpy0r+B7nivOeNJzN41ucuqjWnwhoMu70T90qaHYl2tI7DwC9bFJ9dFMFz0M
jDmnpe9i2bmkMvotLXknZgskhHegZql7anpKZr3taCQ8O/4XHnS2zRtUVvYlKmn8
P0zA4VuLBJDvjTrEzQlMJoosLW8NLrm0wTyjH9mljhZQ76a5Trz7AhYTGZooVlir
1Wk25sIL8S7OdXD2wCgs6YbVhxcltiOc333r88iq3nSktiDszcHnbXlH0z6WMJTt
rv9IFUcOM3WaujmNa4g1kIznvKwg1sTE3ov7E0z712+E
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:32 2024 by rpki-client on console-fra.rpki-client.org