Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/64mFkFGlieehOob7BeTmdi1ez8E.roa
File: 64mFkFGlieehOob7BeTmdi1ez8E.roa (raw, json)
Hash identifier: 9E42ULt7xl3Pv0my/wHMA8swl0M8rxY0sGs9wS1TNXo=
Subject key identifier: EB:89:85:90:51:A5:89:E7:A1:3A:86:FB:05:E4:E6:76:2D:5E:CF:C1
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 01856BEECABC862D6033F274D63CF9C5089C
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/64mFkFGlieehOob7BeTmdi1ez8E.roa
Signing time: Sun 01 Jan 2023 06:04:49 +0000
ROA not before: Sun 01 Jan 2023 06:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41992
IP address blocks: 193.34.152.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:ca:bc:86:2d:60:33:f2:74:d6:3c:f9:c5:08:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Jan 1 06:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb89859051a589e7a13a86fb05e4e6762d5ecfc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3e:9e:10:0f:76:09:c7:d7:b9:a7:5a:f5:c5:
5c:d2:fa:15:f8:90:35:ec:87:b4:a9:61:ce:71:81:
15:c4:0b:88:30:df:0e:98:a1:cc:24:13:c2:fd:dc:
b0:3c:d1:48:c5:d5:20:bb:a8:62:02:96:7d:a8:1d:
c5:00:c8:07:72:01:04:b5:73:42:a9:1c:a4:0a:4a:
43:8b:c2:63:68:de:a1:56:37:d8:fc:c0:02:eb:61:
bc:f1:2a:5a:3f:45:38:c9:2a:32:5a:a1:24:5c:b8:
2f:ec:35:c2:32:3b:84:07:10:33:a3:7d:93:f1:5f:
26:43:65:c2:d5:14:ba:46:56:4d:75:80:0c:3a:7b:
9a:c0:f4:ce:8c:e7:5a:54:ec:f0:e5:a6:b8:b7:9c:
b5:27:04:8b:2c:08:47:6a:b6:44:75:93:88:ae:b5:
06:73:58:e2:04:da:66:44:54:29:47:f3:12:82:35:
04:f2:e3:d5:71:6e:ff:cf:16:37:b3:7b:e5:00:c5:
dc:61:1d:c5:7f:d4:e6:1f:47:e9:0b:a3:a0:5a:13:
c1:5d:0c:15:29:da:09:7f:ec:bb:4a:37:8c:62:f6:
07:f8:8c:d1:4d:3a:14:7b:01:2c:cf:84:a7:fe:9f:
c0:a6:37:cc:d6:96:9b:72:06:30:99:3f:22:59:02:
a6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:89:85:90:51:A5:89:E7:A1:3A:86:FB:05:E4:E6:76:2D:5E:CF:C1
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/64mFkFGlieehOob7BeTmdi1ez8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.152.0/23
Signature Algorithm: sha256WithRSAEncryption
19:24:73:c7:5c:10:ac:e1:d7:b7:d6:17:7e:a6:2f:25:6d:ea:
1e:96:46:65:78:f2:e8:8e:70:71:03:c9:6d:83:8b:23:1e:67:
86:e5:76:66:dc:1b:3e:4b:e2:18:87:4b:fc:e2:19:b7:33:8d:
1e:0e:b6:1a:2f:ac:b6:ee:2d:8f:71:0c:fc:1b:58:80:56:93:
ab:8d:f2:12:d4:de:e1:d9:b8:da:42:7e:0b:4e:fb:51:92:6c:
dc:94:04:7d:ff:e6:af:d7:13:d4:69:e2:29:f7:20:d0:47:2e:
01:a0:eb:e7:d3:26:be:25:16:e6:b5:47:94:a5:fa:fb:9a:c6:
ea:e1:dc:ac:70:12:b2:7b:ae:7e:4a:3e:5e:d1:e7:49:31:9b:
e1:34:5f:8b:3a:8e:69:13:e7:6a:1f:0a:17:51:1f:ca:52:24:
2d:6c:f0:66:eb:bd:aa:a8:aa:ef:3f:26:b0:cb:83:eb:97:ab:
ed:8a:bd:b3:5e:71:1b:9c:d1:c5:64:0f:72:f8:33:7c:ea:55:
39:37:57:57:b2:37:c3:13:05:b8:b5:04:18:cd:37:c5:1a:98:
41:14:44:cb:b2:bc:df:d8:e0:c5:6f:2e:cf:03:87:11:2f:3c:
55:ad:c2:a8:8b:f2:cd:b4:3b:5a:f0:95:a4:01:76:7d:6f:3a:
6b:b1:60:42
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7sq8hi1gM/J01jz5xQicMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMzI5ZjMzMzFmNTM0M2YyOTBlYjRhNDFmMTZjNDM2M2Ey
ODJjOTAwHhcNMjMwMTAxMDYwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjg5ODU5MDUxYTU4OWU3YTEzYTg2ZmIwNWU0ZTY3NjJkNWVjZmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsD6eEA92CcfXuada9cVc0voV+JA1
7Ie0qWHOcYEVxAuIMN8OmKHMJBPC/dywPNFIxdUgu6hiApZ9qB3FAMgHcgEEtXNC
qRykCkpDi8JjaN6hVjfY/MAC62G88SpaP0U4ySoyWqEkXLgv7DXCMjuEBxAzo32T
8V8mQ2XC1RS6RlZNdYAMOnuawPTOjOdaVOzw5aa4t5y1JwSLLAhHarZEdZOIrrUG
c1jiBNpmRFQpR/MSgjUE8uPVcW7/zxY3s3vlAMXcYR3Ff9TmH0fpC6OgWhPBXQwV
KdoJf+y7SjeMYvYH+IzRTToUewEsz4Sn/p/ApjfM1pabcgYwmT8iWQKm2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOuJhZBRpYnnoTqG+wXk5nYtXs/BMB8GA1UdIwQY
MBaAFJwynzMx9TQ/KQ60pB8WxDY6KCyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi82MjQyMjAtYzA3Ni00YTFkLWFlZmIt
YjdmNWQ0Mzk1Y2MwLzEvNjRtRmtGR2xpZWVoT29iN0JlVG1kaTFlejhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi82MjQyMjAtYzA3Ni00YTFkLWFlZmItYjdmNWQ0Mzk1Y2Mw
LzEvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSKYMA0G
CSqGSIb3DQEBCwUAA4IBAQAZJHPHXBCs4de31hd+pi8lbeoelkZlePLojnBxA8lt
g4sjHmeG5XZm3Bs+S+IYh0v84hm3M40eDrYaL6y27i2PcQz8G1iAVpOrjfIS1N7h
2bjaQn4LTvtRkmzclAR9/+av1xPUaeIp9yDQRy4BoOvn0ya+JRbmtUeUpfr7msbq
4dyscBKye65+Sj5e0edJMZvhNF+LOo5pE+dqHwoXUR/KUiQtbPBm672qqKrvPyaw
y4Prl6vtir2zXnEbnNHFZA9y+DN86lU5N1dXsjfDEwW4tQQYzTfFGphBFETLsrzf
2ODFby7PA4cRLzxVrcKoi/LNtDta8JWkAXZ9bzprsWBC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:05 2024 by rpki-client on console-fra.rpki-client.org