Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/l106-1XENbZy1-3Bq8d2C_TIVBI.roa
File: l106-1XENbZy1-3Bq8d2C_TIVBI.roa (raw, json)
Hash identifier: bEeRF0SsgSjjDjeQqVpsITyw6HRB+p5Rkjk4qrlk0G8=
Subject key identifier: 97:5D:3A:FB:55:C4:35:B6:72:D7:ED:C1:AB:C7:76:0B:F4:C8:54:12
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 018571B9F31C549B75F26A51D08854C7C20E
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/l106-1XENbZy1-3Bq8d2C_TIVBI.roa
Signing time: Mon 02 Jan 2023 09:04:49 +0000
ROA not before: Mon 02 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56616
IP address blocks: 2.188.168.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f3:1c:54:9b:75:f2:6a:51:d0:88:54:c7:c2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Jan 2 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=975d3afb55c435b672d7edc1abc7760bf4c85412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:22:1e:67:89:c6:16:b4:2a:67:2e:8e:a7:33:
fc:a9:eb:a8:eb:c8:e3:0f:0a:0a:9a:cd:ba:ab:08:
11:c0:12:e5:b2:8c:e0:c3:a0:d7:bf:c4:78:9f:94:
14:6b:35:c9:95:d1:26:27:8a:47:97:c2:f5:95:57:
3a:7c:f6:c7:09:2a:4f:2a:f5:d7:9d:d7:2d:fa:4e:
29:78:4b:bf:4b:11:87:21:85:35:4a:cb:a6:cf:34:
13:bd:c6:bf:f4:b7:5d:82:83:03:67:8a:d4:61:14:
33:f1:7f:05:9e:cb:d8:1d:54:ef:9d:8e:61:89:f5:
51:07:22:72:aa:d2:18:19:4a:ef:8f:42:f6:e6:ed:
b1:64:50:7c:9a:89:71:91:fc:fb:70:ac:bf:14:70:
e9:44:b6:4e:95:df:fc:71:cc:d9:39:6d:f4:4b:a9:
b2:31:02:72:be:4b:c9:16:9f:95:9d:e0:f3:e4:83:
7f:a5:ca:d8:78:35:36:ec:bc:7c:a2:26:ce:f7:81:
2d:22:76:35:4d:4e:3c:63:43:4f:1e:0b:0e:3b:a7:
1a:1a:ac:68:6b:a3:d2:e1:f3:93:3b:72:37:0e:a6:
44:63:80:2b:10:8c:31:31:02:53:c8:dc:06:38:e6:
a4:04:1a:54:69:29:6d:d8:84:22:c1:14:36:46:51:
14:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5D:3A:FB:55:C4:35:B6:72:D7:ED:C1:AB:C7:76:0B:F4:C8:54:12
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/l106-1XENbZy1-3Bq8d2C_TIVBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.168.0/21
Signature Algorithm: sha256WithRSAEncryption
54:c3:c0:2a:a9:ac:96:4d:00:75:b3:db:90:b3:dc:89:be:bd:
90:54:5a:29:6c:66:2a:e8:4b:ca:a2:58:a1:c8:90:9f:54:26:
4d:ff:cf:42:c5:7e:bc:a4:e8:f7:35:40:8c:ff:73:e4:e5:e2:
3b:8c:d1:e4:9c:b1:c3:25:a9:60:b7:a6:6a:8f:80:2b:b1:23:
63:61:6b:1d:2f:56:70:95:d5:2c:45:7d:a5:aa:73:6f:33:cf:
a7:09:62:b8:93:46:19:d3:e1:f7:12:c1:f0:ee:73:18:dc:76:
37:61:00:90:9a:99:47:c3:26:39:07:df:59:d9:2f:00:2a:13:
76:06:ca:d7:4d:ba:67:da:6b:fd:63:bc:eb:a4:67:54:74:2a:
0a:3e:f0:94:41:4d:1c:77:86:a3:ec:47:d0:97:47:3d:bc:f1:
be:66:d7:81:27:79:57:62:2e:73:37:82:1c:5c:fa:99:c8:cb:
15:e6:27:9a:58:1e:f8:98:02:89:b5:64:0b:dd:a0:95:9d:c5:
e3:ae:ec:9b:be:c2:c7:0c:e2:40:c4:98:62:bb:d5:f4:9f:e0:
fb:21:af:87:37:96:3f:10:09:8f:0b:d5:54:89:7f:90:74:39:
d7:44:b6:25:81:f1:75:35:a1:80:26:5f:59:d2:47:14:c6:c2:
94:d7:3d:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxufMcVJt18mpR0IhUx8IOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YTM5ZTQ3OTRjMzQ2MTJlN2YyMjU2OWIxYTZhODE3MTAy
NjBhZTUwHhcNMjMwMTAyMDkwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzVkM2FmYjU1YzQzNWI2NzJkN2VkYzFhYmM3NzYwYmY0Yzg1NDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SIeZ4nGFrQqZy6OpzP8qeuo68jj
DwoKms26qwgRwBLlsozgw6DXv8R4n5QUazXJldEmJ4pHl8L1lVc6fPbHCSpPKvXX
ndct+k4peEu/SxGHIYU1SsumzzQTvca/9LddgoMDZ4rUYRQz8X8FnsvYHVTvnY5h
ifVRByJyqtIYGUrvj0L25u2xZFB8molxkfz7cKy/FHDpRLZOld/8cczZOW30S6my
MQJyvkvJFp+VneDz5IN/pcrYeDU27Lx8oibO94EtInY1TU48Y0NPHgsOO6caGqxo
a6PS4fOTO3I3DqZEY4ArEIwxMQJTyNwGOOakBBpUaSlt2IQiwRQ2RlEUeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJddOvtVxDW2ctftwavHdgv0yFQSMB8GA1UdIwQY
MBaAFCejnkeUw0YS5/IlabGmqBcQJgrlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMt
Zjc0ZDk1MTg1NzZjLzEvbDEwNi0xWEVOYlp5MS0zQnE4ZDJDX1RJVkJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zOGZjMzMtMDZjMS00MDA2LTllMjMtZjc0ZDk1MTg1NzZj
LzEvSjZPZVI1VERSaExuOGlWcHNhYW9GeEFtQ3VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDAryoMA0G
CSqGSIb3DQEBCwUAA4IBAQBUw8AqqayWTQB1s9uQs9yJvr2QVFopbGYq6EvKolih
yJCfVCZN/89CxX68pOj3NUCM/3Pk5eI7jNHknLHDJalgt6Zqj4ArsSNjYWsdL1Zw
ldUsRX2lqnNvM8+nCWK4k0YZ0+H3EsHw7nMY3HY3YQCQmplHwyY5B99Z2S8AKhN2
BsrXTbpn2mv9Y7zrpGdUdCoKPvCUQU0cd4aj7EfQl0c9vPG+ZteBJ3lXYi5zN4Ic
XPqZyMsV5ieaWB74mAKJtWQL3aCVncXjruybvsLHDOJAxJhiu9X0n+D7Ia+HN5Y/
EAmPC9VUiX+QdDnXRLYlgfF1NaGAJl9Z0kcUxsKU1z3a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org