Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/4tGHG47e1pTNn5FE3TFOSGqe8Ak.roa
File: 4tGHG47e1pTNn5FE3TFOSGqe8Ak.roa (raw, json)
Hash identifier: Hidj6wysAPiJc5VlxQ+l97cNYOrJKUSlJfwRdFgO/0I=
Subject key identifier: E2:D1:87:1B:8E:DE:D6:94:CD:9F:91:44:DD:31:4E:48:6A:9E:F0:09
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 018D3AE5230F7909B6715D4EF0482B9E22CC
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/4tGHG47e1pTNn5FE3TFOSGqe8Ak.roa
Signing time: Wed 24 Jan 2024 09:55:11 +0000
ROA not before: Wed 24 Jan 2024 09:55:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 46844
IP address blocks: 193.8.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 15:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3a:e5:23:0f:79:09:b6:71:5d:4e:f0:48:2b:9e:22:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: Jan 24 09:55:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2d1871b8eded694cd9f9144dd314e486a9ef009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:58:e1:5e:b9:d6:6a:2b:d8:15:fa:ea:65:ac:
37:36:5d:24:5d:ed:e1:03:f8:86:c4:ca:a7:52:7f:
28:af:fe:a8:e3:50:ea:d6:63:fa:45:a5:7f:55:e6:
20:45:79:0b:3c:ca:04:93:ca:15:2d:ed:a9:52:44:
9f:99:46:3c:6a:90:e6:fa:a8:1d:21:d5:1a:63:32:
5f:31:e3:26:60:bf:44:d8:4f:93:7b:ad:74:4e:0d:
57:25:3f:ed:96:b2:0d:66:3a:e4:ae:74:fd:f5:fb:
22:86:65:fc:16:48:4b:fa:bb:25:d5:70:34:88:be:
a4:ab:f7:97:c5:3c:d3:a8:35:65:25:a2:19:19:f3:
6f:7a:c3:e3:13:7b:24:b3:26:17:bd:2f:f6:d0:38:
ef:fe:2c:b0:5e:20:12:ad:8a:e1:76:38:d5:ba:2f:
a0:1f:f3:f3:97:f0:84:42:95:9e:33:87:cb:cc:37:
d4:ba:16:0b:11:3c:0f:a9:02:20:fd:dd:c2:49:c8:
cf:47:8d:27:0f:f6:f8:0b:13:0c:66:e4:85:68:60:
64:7a:ed:51:d3:34:bc:02:90:5f:37:d8:23:40:6f:
9e:bd:b4:be:8c:b4:ca:08:f0:32:03:23:98:26:d5:
25:4c:fa:9f:50:70:a9:40:d0:24:6e:27:89:84:34:
3b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D1:87:1B:8E:DE:D6:94:CD:9F:91:44:DD:31:4E:48:6A:9E:F0:09
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/4tGHG47e1pTNn5FE3TFOSGqe8Ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.237.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1c:35:a8:b0:83:d2:f6:f3:39:0f:01:22:02:ac:b1:68:ce:
24:d0:59:11:a5:a1:04:03:0b:3b:04:ad:33:a0:c2:ef:32:6b:
9a:97:74:01:31:15:1a:a0:bf:40:65:80:c3:a2:78:36:a6:cd:
a2:af:61:e5:ef:fd:a0:8a:61:4e:c7:b9:59:fe:ec:68:d9:cd:
93:d0:11:cf:5c:7d:1b:6a:f3:28:37:a2:98:01:ae:71:b0:fd:
e3:5a:17:a3:c1:ec:9d:40:ef:32:2c:eb:a7:74:53:d5:98:e7:
b7:7d:84:48:e6:d6:cb:83:64:79:01:97:ba:7b:3a:45:49:4a:
85:dd:15:82:1e:c7:89:ef:c1:99:2d:61:31:6c:47:3f:19:f4:
44:d2:64:72:a8:c5:f0:56:8d:9a:b6:b7:14:7e:16:bb:96:15:
62:7e:c3:b9:fa:e7:e1:67:ff:36:7b:d9:4a:e0:08:2f:32:a7:
a5:b3:a6:b0:6b:38:ea:53:dd:ef:a5:50:b4:ee:f4:ad:4c:32:
e2:49:37:c1:e1:18:1a:27:b7:8d:f1:8c:06:01:b3:a0:4b:b4:
37:69:25:a6:10:e5:0b:dd:17:99:bc:c7:ec:18:aa:c4:18:c0:
90:57:ea:f9:8a:c1:59:83:08:dd:11:b3:a6:99:b0:b0:43:05:
9c:67:fe:dc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY065SMPeQm2cV1O8EgrniLMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMWYyMTNiOGM3OTJiN2UwMTNmYTUwNDFmNWI4OTk3MWU2
ZjYyZDYwHhcNMjQwMTI0MDk1NTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmQxODcxYjhlZGVkNjk0Y2Q5ZjkxNDRkZDMxNGU0ODZhOWVmMDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3VjhXrnWaivYFfrqZaw3Nl0kXe3h
A/iGxMqnUn8or/6o41Dq1mP6RaV/VeYgRXkLPMoEk8oVLe2pUkSfmUY8apDm+qgd
IdUaYzJfMeMmYL9E2E+Te610Tg1XJT/tlrINZjrkrnT99fsihmX8FkhL+rsl1XA0
iL6kq/eXxTzTqDVlJaIZGfNvesPjE3sksyYXvS/20Djv/iywXiASrYrhdjjVui+g
H/Pzl/CEQpWeM4fLzDfUuhYLETwPqQIg/d3CScjPR40nD/b4CxMMZuSFaGBkeu1R
0zS8ApBfN9gjQG+evbS+jLTKCPAyAyOYJtUlTPqfUHCpQNAkbieJhDQ70wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOLRhxuO3taUzZ+RRN0xTkhqnvAJMB8GA1UdIwQY
MBaAFF8fITuMeSt+AT+lBB9biZceb2LWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDct
NDAyMjM4NjM4ZWEzLzEvNHRHSEc0N2UxcFRObjVGRTNURk9TR3FlOEFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zMmY4ZDMtNzMyOC00NWYwLWEwMDctNDAyMjM4NjM4ZWEz
LzEvWHg4aE80eDVLMzRCUDZVRUgxdUpseDV2WXRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQjtMA0G
CSqGSIb3DQEBCwUAA4IBAQCqHDWosIPS9vM5DwEiAqyxaM4k0FkRpaEEAws7BK0z
oMLvMmual3QBMRUaoL9AZYDDong2ps2ir2Hl7/2gimFOx7lZ/uxo2c2T0BHPXH0b
avMoN6KYAa5xsP3jWhejweydQO8yLOundFPVmOe3fYRI5tbLg2R5AZe6ezpFSUqF
3RWCHseJ78GZLWExbEc/GfRE0mRyqMXwVo2atrcUfha7lhVifsO5+ufhZ/82e9lK
4AgvMqels6awazjqU93vpVC07vStTDLiSTfB4RgaJ7eN8YwGAbOgS7Q3aSWmEOUL
3ReZvMfsGKrEGMCQV+r5isFZgwjdEbOmmbCwQwWcZ/7c
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:22 2024 by rpki-client on console-ams.rpki-client.org