Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/1vTxsK-OJi1FoGr1hk0Ly-uPhMw.roa
File: 1vTxsK-OJi1FoGr1hk0Ly-uPhMw.roa (raw, json)
Hash identifier: twsZoVrwhPuO9fx0f5IuOx14+9or2s7a5eSAhSlZ9QU=
Subject key identifier: D6:F4:F1:B0:AF:8E:26:2D:45:A0:6A:F5:86:4D:0B:CB:EB:8F:84:CC
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 018FBFCF9318232156213F485EDF747D0F54
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/1vTxsK-OJi1FoGr1hk0Ly-uPhMw.roa
Signing time: Tue 28 May 2024 15:26:42 +0000
ROA not before: Tue 28 May 2024 15:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199101
IP address blocks: 93.93.32.0/21 maxlen: 21
2a01:9f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 15 Dec 2024 22:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bf:cf:93:18:23:21:56:21:3f:48:5e:df:74:7d:0f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: May 28 15:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6f4f1b0af8e262d45a06af5864d0bcbeb8f84cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:fd:e9:bc:d4:89:04:3b:a1:cf:9d:59:25:37:
6c:73:44:04:4b:47:97:99:09:23:3f:ad:11:72:b2:
a5:9c:61:5b:9d:6d:5f:85:d8:c6:1a:03:b8:0f:1e:
46:f9:b4:0f:5e:61:58:b8:2d:a5:94:63:33:29:35:
44:99:28:f1:4a:60:5f:08:63:5d:63:ba:34:0f:55:
bc:bd:26:da:04:95:dc:f4:49:02:52:8a:42:67:46:
73:de:58:58:d3:9f:f0:a1:55:6b:8c:b2:c0:e7:db:
c6:3f:66:8f:68:df:d3:5a:f7:ad:d2:1e:3d:f3:d8:
55:dd:c8:8f:64:7d:a4:11:57:7d:d2:14:c3:86:d1:
f5:9e:af:33:0c:e3:69:17:91:67:d5:de:03:cc:75:
b3:1c:ab:34:49:87:8b:a6:8f:5e:5e:49:46:49:c7:
12:3e:18:07:51:dd:db:12:29:18:9d:f4:24:a4:77:
2e:ad:20:f6:0f:38:f1:86:5f:2e:9f:57:78:18:27:
ad:1f:2b:fd:05:d1:14:b4:b9:69:9a:00:a5:f9:45:
27:85:d6:3b:f5:5d:58:69:01:55:58:49:bb:e7:63:
72:3d:6b:9d:2c:73:8a:76:24:12:91:dd:e2:b7:5c:
58:2e:53:a3:d7:f2:51:8d:1d:84:64:88:ba:d9:36:
19:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F4:F1:B0:AF:8E:26:2D:45:A0:6A:F5:86:4D:0B:CB:EB:8F:84:CC
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/1vTxsK-OJi1FoGr1hk0Ly-uPhMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.93.32.0/21
IPv6:
2a01:9f40::/29
Signature Algorithm: sha256WithRSAEncryption
58:6a:f9:35:24:30:ce:19:74:30:83:fe:2b:ff:2f:6f:77:81:
a8:69:97:95:f9:e1:34:5f:8e:8f:2b:ac:ae:72:71:67:da:e3:
fc:30:0b:f8:5f:d1:fd:e5:5a:6a:a7:84:5e:6d:91:b4:e0:a7:
9c:27:22:53:c0:80:fe:f7:a0:7e:39:a5:8e:0b:60:3c:5a:31:
07:d8:39:66:6c:2b:e2:9c:e1:92:9e:ba:f3:21:65:7f:81:75:
e1:4a:c3:e8:7f:78:e6:de:ab:00:ed:c8:37:bf:73:34:b2:23:
e4:48:27:0e:02:86:29:35:70:b9:32:fb:4f:4b:45:7d:63:73:
1a:12:38:33:94:81:e2:cb:74:56:59:54:a9:e6:e5:1f:51:aa:
5f:bb:35:56:7a:a3:f9:74:05:47:84:ed:1e:ed:8b:19:57:8f:
ec:e3:5f:83:aa:66:9e:dc:67:bc:58:23:d1:00:2d:ae:16:96:
13:d1:cc:89:6f:35:44:d2:8d:8e:c9:59:7b:b3:f1:fb:b9:dd:
f6:ac:fc:2e:88:67:f3:1e:12:0f:54:11:a9:76:3e:22:64:31:
31:35:a8:d8:9a:1d:01:77:3a:34:00:c1:bd:97:1a:d8:e8:e6:
fb:38:8f:75:df:55:25:8f:5a:cb:c4:a9:4d:c5:a5:04:49:26:
06:b5:1e:f3
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY+/z5MYIyFWIT9IXt90fQ9UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzlkMTViZDJmY2M4NDc3MWJhNmFhMjlhYTU0NDI4YjIx
Y2VmNjAwHhcNMjQwNTI4MTUyNjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmY0ZjFiMGFmOGUyNjJkNDVhMDZhZjU4NjRkMGJjYmViOGY4NGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6P3pvNSJBDuhz51ZJTdsc0QES0eX
mQkjP60RcrKlnGFbnW1fhdjGGgO4Dx5G+bQPXmFYuC2llGMzKTVEmSjxSmBfCGNd
Y7o0D1W8vSbaBJXc9EkCUopCZ0Zz3lhY05/woVVrjLLA59vGP2aPaN/TWvet0h49
89hV3ciPZH2kEVd90hTDhtH1nq8zDONpF5Fn1d4DzHWzHKs0SYeLpo9eXklGSccS
PhgHUd3bEikYnfQkpHcurSD2Dzjxhl8un1d4GCetHyv9BdEUtLlpmgCl+UUnhdY7
9V1YaQFVWEm752NyPWudLHOKdiQSkd3it1xYLlOj1/JRjR2EZIi62TYZrwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFNb08bCvjiYtRaBq9YZNC8vrj4TMMB8GA1UdIwQY
MBaAFF050VvS/MhHcbpqopqlRCiyHO9gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAt
YzI5YjQ0ZGU1M2E4LzEvMXZUeHNLLU9KaTFGb0dyMWhrMEx5LXVQaE13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAtYzI5YjQ0ZGU1M2E4
LzEvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDXV0gMA0E
AgACMAcDBQMqAZ9AMA0GCSqGSIb3DQEBCwUAA4IBAQBYavk1JDDOGXQwg/4r/y9v
d4GoaZeV+eE0X46PK6yucnFn2uP8MAv4X9H95Vpqp4RebZG04KecJyJTwID+96B+
OaWOC2A8WjEH2DlmbCvinOGSnrrzIWV/gXXhSsPof3jm3qsA7cg3v3M0siPkSCcO
AoYpNXC5MvtPS0V9Y3MaEjgzlIHiy3RWWVSp5uUfUapfuzVWeqP5dAVHhO0e7YsZ
V4/s41+Dqmae3Ge8WCPRAC2uFpYT0cyJbzVE0o2OyVl7s/H7ud32rPwuiGfzHhIP
VBGpdj4iZDExNajYmh0Bdzo0AMG9lxrY6Ob7OI9131Ulj1rLxKlNxaUESSYGtR7z
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:30:18 2025 by rpki-client