Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/46MDd5hTl9d30nUMZsTbMiixDXQ.roa
File: 46MDd5hTl9d30nUMZsTbMiixDXQ.roa (raw, json)
Hash identifier: 16xe/XiqUjmBG4mr/06Cr9UN7xrwN07AB24pm1SHQyM=
Subject key identifier: E3:A3:03:77:98:53:97:D7:77:D2:75:0C:66:C4:DB:32:28:B1:0D:74
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 0186C16A4726F0389324508FE8E87950F927
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/46MDd5hTl9d30nUMZsTbMiixDXQ.roa
Signing time: Wed 08 Mar 2023 13:30:12 +0000
ROA not before: Wed 08 Mar 2023 13:30:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 193.9.30.0/23 maxlen: 23
2a0f:9a80::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c1:6a:47:26:f0:38:93:24:50:8f:e8:e8:79:50:f9:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Mar 8 13:30:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3a30377985397d777d2750c66c4db3228b10d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3e:a4:48:98:b7:5f:5d:1b:42:2e:19:db:e8:
bb:cc:e3:28:07:e0:20:14:22:98:74:4b:bf:79:79:
00:45:0c:ae:a9:97:94:c2:b0:02:1d:b5:14:3d:53:
4b:3e:81:a6:a9:f3:f4:b3:65:67:ac:c4:e0:fe:78:
9b:39:dd:27:ac:d4:b3:3f:52:d1:e5:d0:a5:a0:54:
c0:de:7e:17:76:82:77:16:0c:54:ce:e1:21:d5:34:
33:e8:03:5d:2d:27:5c:6a:9f:88:1c:d1:a9:38:cf:
a1:84:fb:b7:8d:e3:a0:35:fb:25:93:18:01:7c:d5:
e6:f9:bd:81:1d:58:f4:79:05:fa:be:44:8a:8f:6d:
5d:b7:8a:d2:f8:d8:49:8c:17:82:89:f4:58:36:95:
73:0e:7e:86:c9:cd:28:b4:5b:df:55:7e:01:cb:20:
03:d7:79:b9:da:d9:51:59:2a:18:30:a1:78:0e:83:
be:3f:23:b7:5b:ed:d1:05:de:cd:dc:80:41:d2:11:
88:29:5b:eb:5d:ed:c7:c4:89:23:85:0a:3a:0d:d5:
e9:bd:89:77:42:60:51:50:b8:e9:85:44:18:c3:2a:
63:ab:29:b7:1e:37:83:79:0a:6b:8f:43:8f:b0:99:
63:2c:c3:68:0d:be:6a:f0:e0:60:c3:24:58:2b:c5:
31:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A3:03:77:98:53:97:D7:77:D2:75:0C:66:C4:DB:32:28:B1:0D:74
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/46MDd5hTl9d30nUMZsTbMiixDXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.30.0/23
IPv6:
2a0f:9a80::/29
Signature Algorithm: sha256WithRSAEncryption
59:9d:a4:56:4f:74:44:0b:6a:cd:51:d0:47:92:9b:26:1d:72:
03:3d:72:e2:36:12:2d:06:eb:75:2d:49:31:a7:ba:ad:37:5b:
1c:6a:09:80:08:82:0d:a5:24:53:4d:18:af:24:83:f4:b2:da:
0e:8a:a6:8c:f4:8b:4c:d1:3b:0d:40:6b:d7:a8:e8:42:64:76:
f4:e1:3a:f3:7b:cf:6b:9e:f9:e2:3b:bf:99:05:25:d2:4e:55:
d3:89:2b:55:1d:eb:c8:ba:81:8f:4a:96:cc:6c:a3:ce:eb:e3:
2f:57:c9:21:21:33:be:c2:d6:91:45:ab:72:d2:dc:48:c4:20:
ef:f0:ae:ef:1f:e6:96:0d:98:33:15:5b:57:8d:f4:97:38:45:
01:a6:62:7e:11:f2:49:2c:c3:dc:47:2d:fc:b3:23:47:10:32:
05:ab:51:03:38:de:20:2c:2f:6f:7e:86:d7:6c:bb:1c:03:7c:
65:93:c3:e1:1d:aa:9b:bc:a2:d9:11:ff:cf:7a:7e:9c:49:c2:
80:ca:5a:7c:01:66:14:ba:01:89:04:3a:b0:98:7b:3a:02:5a:
83:00:12:94:52:b2:7d:e5:6c:a8:bb:ef:6e:0c:74:6f:73:6e:
29:9d:1e:e5:0f:fa:4f:02:61:03:13:2f:6a:68:f2:c9:c6:70:
cb:70:44:ed
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYbBakcm8DiTJFCP6Oh5UPknMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMWYyMTNiOGM3OTJiN2UwMTNmYTUwNDFmNWI4OTk3MWU2
ZjYyZDYwHhcNMjMwMzA4MTMzMDEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2EzMDM3Nzk4NTM5N2Q3NzdkMjc1MGM2NmM0ZGIzMjI4YjEwZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlT6kSJi3X10bQi4Z2+i7zOMoB+Ag
FCKYdEu/eXkARQyuqZeUwrACHbUUPVNLPoGmqfP0s2VnrMTg/nibOd0nrNSzP1LR
5dCloFTA3n4XdoJ3FgxUzuEh1TQz6ANdLSdcap+IHNGpOM+hhPu3jeOgNfslkxgB
fNXm+b2BHVj0eQX6vkSKj21dt4rS+NhJjBeCifRYNpVzDn6Gyc0otFvfVX4ByyAD
13m52tlRWSoYMKF4DoO+PyO3W+3RBd7N3IBB0hGIKVvrXe3HxIkjhQo6DdXpvYl3
QmBRULjphUQYwypjqym3HjeDeQprj0OPsJljLMNoDb5q8OBgwyRYK8Ux7wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOOjA3eYU5fXd9J1DGbE2zIosQ10MB8GA1UdIwQY
MBaAFF8fITuMeSt+AT+lBB9biZceb2LWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDct
NDAyMjM4NjM4ZWEzLzEvNDZNRGQ1aFRsOWQzMG5VTVpzVGJNaWl4RFhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDctNDAyMjM4NjM4ZWEz
LzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwQkeMA0E
AgACMAcDBQMqD5qAMA0GCSqGSIb3DQEBCwUAA4IBAQBZnaRWT3REC2rNUdBHkpsm
HXIDPXLiNhItBut1LUkxp7qtN1scagmACIINpSRTTRivJIP0stoOiqaM9ItM0TsN
QGvXqOhCZHb04Trze89rnvniO7+ZBSXSTlXTiStVHevIuoGPSpbMbKPO6+MvV8kh
ITO+wtaRRaty0txIxCDv8K7vH+aWDZgzFVtXjfSXOEUBpmJ+EfJJLMPcRy38syNH
EDIFq1EDON4gLC9vfobXbLscA3xlk8PhHaqbvKLZEf/Pen6cScKAylp8AWYUugGJ
BDqwmHs6AlqDABKUUrJ95Wyou+9uDHRvc24pnR7lD/pPAmEDEy9qaPLJxnDLcETt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:29 2024 by rpki-client on console-fra.rpki-client.org