Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/DqU2miywLltZVhXwmrfx52zo1NI.roa
File: DqU2miywLltZVhXwmrfx52zo1NI.roa (raw, json)
Hash identifier: PSc+ag/HHcswUgxguAXgC6Sa46UGLwSNEQs6s90K4wU=
Subject key identifier: 0E:A5:36:9A:2C:B0:2E:5B:59:56:15:F0:9A:B7:F1:E7:6C:E8:D4:D2
Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Certificate serial: 018C6CCA4CD7C997049EC14E6CF3831E13AC
Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/DqU2miywLltZVhXwmrfx52zo1NI.roa
Signing time: Fri 15 Dec 2023 09:24:06 +0000
ROA not before: Fri 15 Dec 2023 09:24:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209525
IP address blocks: 194.147.248.0/24 maxlen: 24
2a10:1940::/32 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6c:ca:4c:d7:c9:97:04:9e:c1:4e:6c:f3:83:1e:13:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Validity
Not Before: Dec 15 09:24:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ea5369a2cb02e5b595615f09ab7f1e76ce8d4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:62:55:0d:5d:7e:73:8e:e3:c1:75:b4:28:eb:
72:29:c7:ed:51:62:9d:68:a1:85:3f:8e:da:5a:47:
0f:f7:f7:46:0d:36:76:01:f7:ea:86:03:93:44:16:
c6:f8:71:0f:55:fe:16:5f:61:b9:26:0f:12:0b:45:
64:6f:43:8b:e6:d7:7b:32:3d:26:f7:04:6a:d7:67:
58:e3:22:e0:83:48:69:1d:c8:de:56:9c:c6:60:1a:
f3:1e:4f:0b:9f:58:86:0e:8c:49:b2:e1:f1:5e:14:
c3:cd:a6:a5:ad:c0:33:35:b6:c7:dd:ab:16:4b:9a:
71:9f:1a:7d:d3:d6:5a:e2:f2:06:99:b5:69:7c:9d:
20:ba:ad:90:ef:8c:bb:e2:be:0d:1d:7b:04:11:52:
ea:9e:e0:bf:14:a5:83:d4:05:54:3f:58:ea:1d:ae:
71:bd:14:f3:8a:b2:7c:19:d1:ab:66:fa:ac:dc:65:
55:d9:0a:88:bc:c2:64:68:ab:96:9f:b7:be:5c:0f:
03:7b:71:cb:39:ee:8f:2c:05:95:60:0b:a5:04:d8:
3e:27:e7:c4:90:d9:94:63:88:aa:f7:6c:a1:a1:92:
26:0b:1a:36:6d:48:57:25:ee:83:67:a5:65:eb:84:
45:15:d9:73:5b:31:b7:a0:51:e5:d8:a5:31:b8:d2:
b2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A5:36:9A:2C:B0:2E:5B:59:56:15:F0:9A:B7:F1:E7:6C:E8:D4:D2
X509v3 Authority Key Identifier:
keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/DqU2miywLltZVhXwmrfx52zo1NI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.248.0/24
IPv6:
2a10:1940::/32
Signature Algorithm: sha256WithRSAEncryption
3c:b1:d0:d3:f8:7c:74:c0:de:4c:7b:62:87:17:53:72:1f:06:
11:0b:35:6e:d3:e2:5e:11:bc:11:f6:96:de:1f:1c:e5:32:7a:
db:f4:60:1b:45:19:4b:8d:7b:fb:30:d3:82:aa:8b:4b:b6:11:
0d:33:71:8d:66:12:36:18:f5:d0:1f:9d:4b:47:93:07:be:01:
ef:c9:f0:fc:a5:4e:4c:7c:60:c0:a9:b7:4e:f2:08:3c:0f:13:
60:ee:c2:16:15:3d:ae:ae:87:95:05:fe:a5:a4:f0:ef:9f:c5:
21:97:64:f4:a5:37:d7:73:1b:32:99:fe:a5:29:9f:7b:5a:09:
3f:f1:fc:5e:f1:c2:c2:7a:a4:36:c9:ea:c3:29:c4:04:cd:51:
34:49:d3:b1:65:20:c7:92:ad:9f:88:32:47:d5:a7:36:2d:60:
d0:d4:07:88:d3:14:0a:2c:8d:71:e0:4b:db:fb:8c:bb:94:da:
6e:b6:2c:28:16:a3:d0:21:2c:6f:49:a3:a8:3f:86:ae:01:a8:
c5:a0:e5:0e:53:4f:df:a7:f6:75:bb:69:80:28:84:3f:48:a8:
a3:d3:64:7e:ce:06:07:53:14:43:c9:92:02:ca:97:3d:e2:4e:
76:3a:d9:f7:d3:5d:b8:58:7c:df:1e:02:7d:19:77:6b:a4:51:
a1:ff:0c:68
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYxsykzXyZcEnsFObPODHhOsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1OGMwYzQ5OWE4ZTY5ZDk3OTVmNGJkMGI1YmYxNjgyYjFm
MDBmOWEwHhcNMjMxMjE1MDkyNDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWE1MzY5YTJjYjAyZTViNTk1NjE1ZjA5YWI3ZjFlNzZjZThkNGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2JVDV1+c47jwXW0KOtyKcftUWKd
aKGFP47aWkcP9/dGDTZ2AffqhgOTRBbG+HEPVf4WX2G5Jg8SC0Vkb0OL5td7Mj0m
9wRq12dY4yLgg0hpHcjeVpzGYBrzHk8Ln1iGDoxJsuHxXhTDzaalrcAzNbbH3asW
S5pxnxp909Za4vIGmbVpfJ0guq2Q74y74r4NHXsEEVLqnuC/FKWD1AVUP1jqHa5x
vRTzirJ8GdGrZvqs3GVV2QqIvMJkaKuWn7e+XA8De3HLOe6PLAWVYAulBNg+J+fE
kNmUY4iq92yhoZImCxo2bUhXJe6DZ6Vl64RFFdlzWzG3oFHl2KUxuNKyIQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFA6lNpossC5bWVYV8Jq38eds6NTSMB8GA1UdIwQY
MBaAFGWMDEmajmnZeV9L0LW/FoKx8A+aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWll3TVNacU9hZGw1WDB2UXRiOFdnckh3RDVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lNjY5MTMtOGY1Zi00N2VmLWE3MzAt
MzJjMWIyY2VlNTkzLzEvRHFVMm1peXdMbHRaVmhYd21yZng1MnpvMU5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9lNjY5MTMtOGY1Zi00N2VmLWE3MzAtMzJjMWIyY2VlNTkz
LzEvWll3TVNacU9hZGw1WDB2UXRiOFdnckh3RDVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwpP4MA0E
AgACMAcDBQAqEBlAMA0GCSqGSIb3DQEBCwUAA4IBAQA8sdDT+Hx0wN5Me2KHF1Ny
HwYRCzVu0+JeEbwR9pbeHxzlMnrb9GAbRRlLjXv7MNOCqotLthENM3GNZhI2GPXQ
H51LR5MHvgHvyfD8pU5MfGDAqbdO8gg8DxNg7sIWFT2uroeVBf6lpPDvn8Uhl2T0
pTfXcxsymf6lKZ97Wgk/8fxe8cLCeqQ2yerDKcQEzVE0SdOxZSDHkq2fiDJH1ac2
LWDQ1AeI0xQKLI1x4Evb+4y7lNputiwoFqPQISxvSaOoP4auAajFoOUOU0/fp/Z1
u2mAKIQ/SKij02R+zgYHUxRDyZICypc94k52Otn30124WHzfHgJ9GXdrpFGh/wxo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:50 2024 by rpki-client on console-fra.rpki-client.org