Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/IZlBdD1DWRIRn26mmQzSROnWMGs.roa
File: IZlBdD1DWRIRn26mmQzSROnWMGs.roa (raw, json)
Hash identifier: IhCZCCVedYqc/yi3s71fitfSPbQ1ybCAiDL2dzaJZjg=
Subject key identifier: 21:99:41:74:3D:43:59:12:11:9F:6E:A6:99:0C:D2:44:E9:D6:30:6B
Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da
Certificate serial: 018572558C47A12D090A35B650B63C43FDD2
Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/IZlBdD1DWRIRn26mmQzSROnWMGs.roa
Signing time: Mon 02 Jan 2023 11:54:47 +0000
ROA not before: Mon 02 Jan 2023 11:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210220
IP address blocks: 193.25.193.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:8c:47:a1:2d:09:0a:35:b6:50:b6:3c:43:fd:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da
Validity
Not Before: Jan 2 11:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=219941743d435912119f6ea6990cd244e9d6306b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fd:aa:64:c9:37:6a:6e:7f:1d:67:8f:fa:a0:
91:0a:69:9c:c0:26:f4:a3:30:4d:e4:03:39:35:68:
e6:f5:c9:ee:94:83:8d:79:8a:66:f5:50:d6:f8:3d:
26:2d:92:8a:3a:01:54:4e:b1:4a:1a:ba:fe:9c:78:
d3:1a:80:36:ee:ca:4f:7e:4a:7f:f4:33:92:40:ba:
9c:95:c1:36:ae:5b:b3:5a:d5:ad:ca:09:cf:b3:63:
63:3f:23:fb:9b:a3:3c:04:6b:10:d6:e3:f3:c1:ab:
85:7f:91:84:68:92:43:fc:01:f5:93:7b:36:2e:51:
b7:27:fe:f9:2e:a4:f1:15:0d:81:52:65:33:9c:be:
06:a3:c9:14:c1:2b:84:16:bd:91:ec:cb:9f:d5:c3:
ef:ce:6d:77:03:c0:3a:55:39:10:a7:5e:c0:2d:ea:
7c:aa:91:e7:d1:71:4b:b0:e7:b5:39:97:d8:f2:f2:
d4:87:e5:60:d2:15:e6:50:84:8f:42:6a:e3:63:1a:
c0:15:c2:3a:cc:ef:21:8e:a4:1e:07:ad:b8:af:53:
cd:72:1b:52:c1:5f:48:5b:db:a3:20:e7:cf:6f:ce:
fc:2d:51:5a:37:1b:8a:d3:48:bb:b2:4c:3d:0a:39:
55:ee:b3:77:1e:2f:33:41:b2:56:b3:b6:d3:38:d6:
2d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:99:41:74:3D:43:59:12:11:9F:6E:A6:99:0C:D2:44:E9:D6:30:6B
X509v3 Authority Key Identifier:
keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/IZlBdD1DWRIRn26mmQzSROnWMGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.193.0/24
Signature Algorithm: sha256WithRSAEncryption
95:1c:03:65:fd:ce:06:ad:14:2d:3f:50:9c:28:cf:fc:18:9b:
7b:f5:35:1d:44:ec:98:2f:5d:d0:ae:7b:71:66:91:7b:8f:7b:
ca:cf:9d:eb:8a:3e:44:0a:0b:e6:ef:f0:d0:87:cb:1e:5b:79:
3b:69:0d:dd:99:01:a6:c5:61:5d:b4:36:da:ae:f1:cb:01:47:
e6:56:52:57:7a:e7:39:6c:8a:56:c5:f1:2d:a5:1c:3c:d7:f8:
fd:de:79:76:64:3c:19:17:b9:90:80:39:2d:2b:2b:f2:da:55:
2d:68:7f:81:ae:cd:be:88:ff:f5:ba:d1:ad:bf:d6:09:41:d2:
d6:3e:41:36:82:65:5e:a1:89:dd:85:46:b4:7c:7e:a8:a5:9c:
d0:bc:3e:e6:80:ec:b4:d5:80:f9:d0:c3:10:bf:98:25:4c:ae:
c9:9a:81:d9:2f:4f:f9:34:73:14:c2:66:84:23:d3:be:bc:6f:
13:40:eb:5d:17:f1:e6:ec:6e:56:17:62:37:be:a5:3f:74:db:
11:e1:3f:d0:19:08:2a:e3:28:5f:bb:81:ef:52:91:75:0a:3f:
09:38:ab:9d:52:15:47:b1:61:50:aa:08:79:39:e2:df:92:41:
d6:5d:78:06:59:7c:ad:c9:80:d5:ac:a9:4a:85:db:04:c5:53:
ad:45:87:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyVYxHoS0JCjW2ULY8Q/3SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ZTVlYjFlMTIwOTg5Nzg3NDVkNTQwZGNhOTZjZmYwZGU0
NzA0ZGEwHhcNMjMwMTAyMTE1NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTk5NDE3NDNkNDM1OTEyMTE5ZjZlYTY5OTBjZDI0NGU5ZDYzMDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgf2qZMk3am5/HWeP+qCRCmmcwCb0
ozBN5AM5NWjm9cnulIONeYpm9VDW+D0mLZKKOgFUTrFKGrr+nHjTGoA27spPfkp/
9DOSQLqclcE2rluzWtWtygnPs2NjPyP7m6M8BGsQ1uPzwauFf5GEaJJD/AH1k3s2
LlG3J/75LqTxFQ2BUmUznL4Go8kUwSuEFr2R7Muf1cPvzm13A8A6VTkQp17ALep8
qpHn0XFLsOe1OZfY8vLUh+Vg0hXmUISPQmrjYxrAFcI6zO8hjqQeB624r1PNchtS
wV9IW9ujIOfPb878LVFaNxuK00i7skw9CjlV7rN3Hi8zQbJWs7bTONYtvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCGZQXQ9Q1kSEZ9uppkM0kTp1jBrMB8GA1UdIwQY
MBaAFInl6x4SCYl4dF1UDcqWz/DeRwTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1Njkt
NGFjYTA5NTY0ZmE4LzEvSVpsQmREMURXUklSbjI2bW1RelNST25XTUdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1NjktNGFjYTA5NTY0ZmE4
LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRnBMA0G
CSqGSIb3DQEBCwUAA4IBAQCVHANl/c4GrRQtP1CcKM/8GJt79TUdROyYL13Qrntx
ZpF7j3vKz53rij5ECgvm7/DQh8seW3k7aQ3dmQGmxWFdtDbarvHLAUfmVlJXeuc5
bIpWxfEtpRw81/j93nl2ZDwZF7mQgDktKyvy2lUtaH+Brs2+iP/1utGtv9YJQdLW
PkE2gmVeoYndhUa0fH6opZzQvD7mgOy01YD50MMQv5glTK7JmoHZL0/5NHMUwmaE
I9O+vG8TQOtdF/Hm7G5WF2I3vqU/dNsR4T/QGQgq4yhfu4HvUpF1Cj8JOKudUhVH
sWFQqgh5OeLfkkHWXXgGWXytyYDVrKlKhdsExVOtRYdL
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:26:54 2024 by rpki-client on console-fra.rpki-client.org