Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/28S9ulHkBpvznZnRKv-qNi3pjZo.roa
File: 28S9ulHkBpvznZnRKv-qNi3pjZo.roa (raw, json)
Hash identifier: QpBbHmSXs2tNLGbk5C8L2fBatczJQAQvPVaBvdmBZ/Q=
Subject key identifier: DB:C4:BD:BA:51:E4:06:9B:F3:9D:99:D1:2A:FF:AA:36:2D:E9:8D:9A
Certificate issuer: /CN=4ee0b21c89a302be9dc03870c098f23280304b0f
Certificate serial: 01856FF974E7F28DFBCB6DD0B9F028E7AB51
Authority key identifier: 4E:E0:B2:1C:89:A3:02:BE:9D:C0:38:70:C0:98:F2:32:80:30:4B:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuCyHImjAr6dwDhwwJjyMoAwSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/28S9ulHkBpvznZnRKv-qNi3pjZo.roa
Signing time: Mon 02 Jan 2023 00:54:57 +0000
ROA not before: Mon 02 Jan 2023 00:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197882
IP address blocks: 193.47.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:74:e7:f2:8d:fb:cb:6d:d0:b9:f0:28:e7:ab:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee0b21c89a302be9dc03870c098f23280304b0f
Validity
Not Before: Jan 2 00:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbc4bdba51e4069bf39d99d12affaa362de98d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:04:84:0b:0c:9f:a7:38:60:15:21:a5:ee:ea:
01:b9:22:b6:ca:d3:12:db:35:83:e9:95:59:3e:4c:
71:cc:cd:36:b2:56:4b:9b:22:bc:dc:ee:f3:7a:20:
eb:5f:9e:78:8b:7c:54:f2:9e:c7:64:87:8d:5b:7b:
cb:e1:16:38:9e:6a:e7:fd:8a:8a:55:e7:cc:e4:cf:
60:08:49:04:f6:fe:e0:17:13:94:75:ee:77:8d:fb:
4c:92:7f:76:1d:a5:e0:96:fd:ec:1c:63:80:79:dd:
76:b5:ac:d8:32:5e:15:1e:1d:30:fc:57:1d:5a:54:
f1:8b:91:c5:45:fe:42:b8:49:d6:60:0a:30:bf:86:
a3:70:c3:52:73:1e:d0:d1:e6:a4:e9:df:75:e9:74:
30:da:2a:51:d5:87:d1:7d:14:1c:e8:81:b4:45:cc:
bc:46:64:1a:39:df:f9:5e:86:de:10:d0:0d:9f:83:
1d:50:ab:1e:13:02:e6:b6:3d:08:8c:7e:26:51:87:
dd:ac:4f:f1:cd:ac:d2:a7:e4:2b:0a:65:9e:b9:9e:
2a:77:68:4e:6f:e0:79:ae:af:29:af:97:aa:74:d6:
17:43:94:1f:39:cc:72:b2:92:01:c6:f3:fd:c5:cd:
3f:71:4d:b9:02:54:6f:e9:07:59:2a:3d:b4:a6:73:
b0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C4:BD:BA:51:E4:06:9B:F3:9D:99:D1:2A:FF:AA:36:2D:E9:8D:9A
X509v3 Authority Key Identifier:
keyid:4E:E0:B2:1C:89:A3:02:BE:9D:C0:38:70:C0:98:F2:32:80:30:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuCyHImjAr6dwDhwwJjyMoAwSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/28S9ulHkBpvznZnRKv-qNi3pjZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/fa278b-1246-48e3-9a05-509611b59c4a/1/TuCyHImjAr6dwDhwwJjyMoAwSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.189.0/24
Signature Algorithm: sha256WithRSAEncryption
24:a4:08:32:b5:60:91:70:1e:ea:ee:0a:e4:1c:5c:89:8f:5a:
b7:e6:d3:02:8e:39:63:65:c4:76:b7:24:5b:93:00:3e:ef:c2:
13:49:c0:a0:1e:e4:29:90:6f:a5:ed:48:52:61:40:19:05:15:
8b:7e:e8:3b:c2:b6:ef:8c:54:88:ea:ec:47:58:e9:9c:0c:f5:
c2:ae:de:f1:4f:ab:a6:36:5c:fd:28:46:24:c9:ff:67:c3:50:
0e:57:da:bd:87:e8:c5:d1:35:00:d6:19:26:a3:e5:62:2d:15:
ef:f9:a8:27:62:f7:76:f9:9e:ab:36:50:c6:31:67:3f:9d:db:
33:c8:6a:0d:d1:56:79:0b:3b:5f:29:9d:ff:20:e1:bd:ef:66:
98:6a:9f:0b:89:15:00:ad:fc:aa:f4:85:dc:ae:45:1f:f6:57:
fc:0c:f0:df:93:3a:bb:2f:03:63:a7:21:4c:bd:79:c6:7f:35:
63:e0:cd:a8:a3:6c:36:5d:98:66:af:72:1f:a2:da:64:31:1d:
b5:1e:91:d6:a5:1e:b6:ae:f5:2e:1e:fd:18:6f:7d:43:a7:16:
38:1b:73:f3:42:2d:06:ec:95:bb:61:b1:48:13:07:16:35:8e:
a4:ff:b3:71:a5:e1:e8:45:01:26:30:da:ee:af:c0:bf:a1:17:
08:25:80:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+XTn8o37y23QufAo56tRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZTBiMjFjODlhMzAyYmU5ZGMwMzg3MGMwOThmMjMyODAz
MDRiMGYwHhcNMjMwMTAyMDA1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmM0YmRiYTUxZTQwNjliZjM5ZDk5ZDEyYWZmYWEzNjJkZTk4ZDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwSECwyfpzhgFSGl7uoBuSK2ytMS
2zWD6ZVZPkxxzM02slZLmyK83O7zeiDrX554i3xU8p7HZIeNW3vL4RY4nmrn/YqK
VefM5M9gCEkE9v7gFxOUde53jftMkn92HaXglv3sHGOAed12tazYMl4VHh0w/Fcd
WlTxi5HFRf5CuEnWYAowv4ajcMNScx7Q0eak6d916XQw2ipR1YfRfRQc6IG0Rcy8
RmQaOd/5XobeENANn4MdUKseEwLmtj0IjH4mUYfdrE/xzazSp+QrCmWeuZ4qd2hO
b+B5rq8pr5eqdNYXQ5QfOcxyspIBxvP9xc0/cU25AlRv6QdZKj20pnOwgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNvEvbpR5Aab852Z0Sr/qjYt6Y2aMB8GA1UdIwQY
MBaAFE7gshyJowK+ncA4cMCY8jKAMEsPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHVDeUhJbWpBcjZkd0Rod3dKanlNb0F3U3c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9mYTI3OGItMTI0Ni00OGUzLTlhMDUt
NTA5NjExYjU5YzRhLzEvMjhTOXVsSGtCcHZ6blpuUkt2LXFOaTNwalpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9mYTI3OGItMTI0Ni00OGUzLTlhMDUtNTA5NjExYjU5YzRh
LzEvVHVDeUhJbWpBcjZkd0Rod3dKanlNb0F3U3c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwS+9MA0G
CSqGSIb3DQEBCwUAA4IBAQAkpAgytWCRcB7q7grkHFyJj1q35tMCjjljZcR2tyRb
kwA+78ITScCgHuQpkG+l7UhSYUAZBRWLfug7wrbvjFSI6uxHWOmcDPXCrt7xT6um
Nlz9KEYkyf9nw1AOV9q9h+jF0TUA1hkmo+ViLRXv+agnYvd2+Z6rNlDGMWc/ndsz
yGoN0VZ5CztfKZ3/IOG972aYap8LiRUArfyq9IXcrkUf9lf8DPDfkzq7LwNjpyFM
vXnGfzVj4M2oo2w2XZhmr3IfotpkMR21HpHWpR62rvUuHv0Yb31DpxY4G3PzQi0G
7JW7YbFIEwcWNY6k/7NxpeHoRQEmMNrur8C/oRcIJYAm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:42 2024 by rpki-client on console-ams.rpki-client.org