Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/iElkk6TS_4Ay18EZsxpWyINijA0.roa
File: iElkk6TS_4Ay18EZsxpWyINijA0.roa (raw, json)
Hash identifier: wU4HNGwEOxRxCKuFwyhG/mOlt249WHnxB3qVflMrR9Y=
Subject key identifier: 88:49:64:93:A4:D2:FF:80:32:D7:C1:19:B3:1A:56:C8:83:62:8C:0D
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 018F7678995D658C3EDECE29E5DCD83A1308
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/iElkk6TS_4Ay18EZsxpWyINijA0.roa
Signing time: Tue 14 May 2024 09:39:26 +0000
ROA not before: Tue 14 May 2024 09:39:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396362
IP address blocks: 193.56.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 20:03:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:76:78:99:5d:65:8c:3e:de:ce:29:e5:dc:d8:3a:13:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: May 14 09:39:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88496493a4d2ff8032d7c119b31a56c883628c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:32:d1:b1:57:10:be:90:ba:e3:35:bf:a7:4f:
1c:41:94:1c:41:b5:d1:d9:0c:7e:11:df:93:b7:df:
a3:4a:7e:c6:b9:1f:56:27:c3:ef:3d:1e:b1:1c:3f:
cb:d2:c2:06:05:f0:9f:29:91:68:49:d5:61:3a:b8:
0d:14:c1:b9:bf:2a:cf:12:a3:43:6f:f0:c3:74:f3:
1c:d3:57:8d:90:cd:15:3e:93:27:09:14:66:82:84:
92:01:e2:6a:5e:77:c3:70:42:3d:c8:c4:2f:f9:77:
b5:b7:4f:92:b4:f5:e8:eb:8a:5a:38:2b:6f:61:3b:
54:da:90:cf:dc:99:8e:53:dc:cb:8f:68:2e:91:ad:
4f:58:c9:21:d1:78:8a:50:f1:24:67:85:74:80:db:
ae:2c:90:20:2d:07:e7:90:05:8c:72:25:b4:53:1b:
e5:fd:0f:38:8e:11:9b:e5:3d:6c:b1:dd:69:7a:fe:
7a:f4:f2:7b:b1:27:bf:1c:fa:38:5f:bb:98:b9:ca:
5b:6f:06:28:d4:31:b8:39:6e:cb:28:0b:c4:5a:bb:
8a:6a:b0:0f:1e:62:c0:3f:5e:77:2a:45:fa:b3:f8:
6d:a8:11:e4:bd:db:f4:03:c1:39:ca:ea:dd:0a:cf:
ad:88:de:d5:a6:5e:ff:4d:3d:d3:b2:0a:86:b7:48:
9d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:49:64:93:A4:D2:FF:80:32:D7:C1:19:B3:1A:56:C8:83:62:8C:0D
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/iElkk6TS_4Ay18EZsxpWyINijA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.23.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:a5:38:30:95:27:48:e6:d7:81:ec:c4:66:04:7c:13:0a:31:
e0:0d:5a:42:b9:03:c4:89:77:1e:1a:62:57:e3:fe:b7:a3:50:
ef:45:29:45:4c:15:e3:bb:11:41:6f:d8:0c:e1:b2:6d:34:b0:
d6:2c:ef:2e:0b:59:21:98:d1:d8:3c:35:c5:bd:fc:14:fc:b8:
cf:36:94:e9:b7:df:2e:ee:17:fd:86:4d:ea:bf:ac:7c:a3:60:
ff:f3:22:54:35:4b:6b:35:2e:65:7a:6f:7e:25:c1:10:4b:4d:
66:99:ce:8f:4a:53:d1:68:86:7b:90:7e:66:ed:f2:ec:72:5c:
bf:13:65:cd:f3:cf:66:e1:a8:d5:83:3b:cb:91:a8:ed:38:d7:
c2:06:93:41:da:57:3b:4f:29:45:c5:e4:db:9e:e8:21:96:e9:
bd:55:d4:be:f7:76:5b:e1:05:88:d4:39:79:a1:10:cf:2f:64:
a6:6d:08:3a:dc:f2:71:02:cd:ca:8e:36:40:b7:e3:76:c9:95:
6f:d5:f8:d9:07:02:ca:fa:ec:df:5c:c4:69:f7:b8:ba:ce:d9:
0b:91:8f:8b:3a:b4:dd:05:b3:e4:7c:0e:5d:1c:cd:04:59:63:
8a:a6:cf:ee:6e:f9:03:3d:ed:0b:07:84:18:d8:7d:15:40:25:
b3:cb:98:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY92eJldZYw+3s4p5dzYOhMIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2
OWExZmQwHhcNMjQwNTE0MDkzOTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODQ5NjQ5M2E0ZDJmZjgwMzJkN2MxMTliMzFhNTZjODgzNjI4YzBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDLRsVcQvpC64zW/p08cQZQcQbXR
2Qx+Ed+Tt9+jSn7GuR9WJ8PvPR6xHD/L0sIGBfCfKZFoSdVhOrgNFMG5vyrPEqND
b/DDdPMc01eNkM0VPpMnCRRmgoSSAeJqXnfDcEI9yMQv+Xe1t0+StPXo64paOCtv
YTtU2pDP3JmOU9zLj2guka1PWMkh0XiKUPEkZ4V0gNuuLJAgLQfnkAWMciW0Uxvl
/Q84jhGb5T1ssd1pev569PJ7sSe/HPo4X7uYucpbbwYo1DG4OW7LKAvEWruKarAP
HmLAP153KkX6s/htqBHkvdv0A8E5yurdCs+tiN7Vpl7/TT3TsgqGt0id8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIhJZJOk0v+AMtfBGbMaVsiDYowNMB8GA1UdIwQY
MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et
OTk0ODA2ZjA4MWYwLzEvaUVsa2s2VFNfNEF5MThFWnN4cFd5SU5pakEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw
LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTgXMA0G
CSqGSIb3DQEBCwUAA4IBAQA/pTgwlSdI5teB7MRmBHwTCjHgDVpCuQPEiXceGmJX
4/63o1DvRSlFTBXjuxFBb9gM4bJtNLDWLO8uC1khmNHYPDXFvfwU/LjPNpTpt98u
7hf9hk3qv6x8o2D/8yJUNUtrNS5lem9+JcEQS01mmc6PSlPRaIZ7kH5m7fLscly/
E2XN889m4ajVgzvLkajtONfCBpNB2lc7TylFxeTbnughlum9VdS+93Zb4QWI1Dl5
oRDPL2SmbQg63PJxAs3KjjZAt+N2yZVv1fjZBwLK+uzfXMRp97i6ztkLkY+LOrTd
BbPkfA5dHM0EWWOKps/ubvkDPe0LB4QY2H0VQCWzy5h3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:37 2024 by rpki-client on console-fra.rpki-client.org