Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/75c017-162f-4d0b-97c9-013b2feb5d28/1/7EcLLRDthweVGzFiUacLIyd6CXg.roa
File: 7EcLLRDthweVGzFiUacLIyd6CXg.roa (raw, json)
Hash identifier: fVyHn2fAa1NAA7+rTcSyvqNaxCwWYSA8q6q5fQNm5qc=
Subject key identifier: EC:47:0B:2D:10:ED:87:07:95:1B:31:62:51:A7:0B:23:27:7A:09:78
Certificate issuer: /CN=896d50ab12dac757a8517f989e7317255a147c50
Certificate serial: 01882B7C048080DAEF89299DDE7F9485C4BE
Authority key identifier: 89:6D:50:AB:12:DA:C7:57:A8:51:7F:98:9E:73:17:25:5A:14:7C:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW1QqxLax1eoUX-YnnMXJVoUfFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/75c017-162f-4d0b-97c9-013b2feb5d28/1/7EcLLRDthweVGzFiUacLIyd6CXg.roa
Signing time: Wed 17 May 2023 20:52:07 +0000
ROA not before: Wed 17 May 2023 20:52:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59504
IP address blocks: 194.53.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2b:7c:04:80:80:da:ef:89:29:9d:de:7f:94:85:c4:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896d50ab12dac757a8517f989e7317255a147c50
Validity
Not Before: May 17 20:52:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec470b2d10ed8707951b316251a70b23277a0978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:22:f5:80:82:49:69:53:b7:a4:52:e0:18:8c:
a3:d7:70:e3:8d:44:ae:83:eb:1b:fa:21:22:d3:64:
98:cf:e4:94:c7:74:fe:0b:90:ef:64:66:bf:4d:a9:
e1:f0:92:20:24:56:eb:f3:46:41:20:0b:36:89:5b:
52:98:87:ea:7c:b6:43:02:94:8f:64:b8:03:eb:00:
42:f6:bd:60:4a:fa:6a:c3:96:1e:7f:c2:cc:c0:2b:
fa:97:5a:c7:b2:9a:b8:76:13:7f:ad:9c:32:40:64:
b9:59:e1:c2:b3:0e:ab:e2:67:78:dc:21:28:a1:61:
59:db:98:98:97:38:34:c8:b3:04:d2:32:af:49:4c:
8e:8a:f1:ee:1b:e8:04:a4:7a:60:60:4d:fc:09:f9:
37:cf:7d:39:93:4c:6f:38:0d:b7:82:4f:27:6a:c5:
11:19:de:13:11:b0:ba:c3:98:0b:58:c5:23:0e:6a:
53:a4:d5:1f:e6:09:da:80:38:d1:e6:7d:39:0f:0e:
8b:7d:dc:e9:e8:0a:f2:78:79:4e:91:e6:e4:a7:d6:
70:b6:4f:bf:5f:f1:b6:15:36:df:67:97:72:c7:4c:
bd:bc:d2:b5:d5:5a:dc:5f:62:ca:23:ba:83:8a:28:
23:58:ad:3f:f1:db:03:91:64:0b:d7:4b:68:b3:bb:
0f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:47:0B:2D:10:ED:87:07:95:1B:31:62:51:A7:0B:23:27:7A:09:78
X509v3 Authority Key Identifier:
keyid:89:6D:50:AB:12:DA:C7:57:A8:51:7F:98:9E:73:17:25:5A:14:7C:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW1QqxLax1eoUX-YnnMXJVoUfFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/75c017-162f-4d0b-97c9-013b2feb5d28/1/7EcLLRDthweVGzFiUacLIyd6CXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/75c017-162f-4d0b-97c9-013b2feb5d28/1/iW1QqxLax1eoUX-YnnMXJVoUfFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.175.0/24
Signature Algorithm: sha256WithRSAEncryption
84:74:1c:3f:04:15:6c:da:45:fd:f1:ab:98:b1:ea:ed:3f:7b:
32:17:63:32:2b:6a:63:41:5a:9c:a8:bd:20:74:5c:3a:e4:55:
34:9b:a4:a5:24:41:43:c9:e5:76:32:f4:c6:37:af:f9:b3:81:
61:56:3e:ff:a7:51:fc:3f:fa:69:63:9e:c2:5e:8a:24:83:c5:
4d:d1:63:2c:4a:6c:36:44:ee:f3:bc:35:5d:cd:52:dc:b4:7d:
a8:7d:47:82:f8:1f:e1:53:f3:24:87:15:08:94:c3:6f:bd:23:
27:d6:df:b5:8f:2d:13:f5:9d:00:2b:2e:d8:e3:85:51:28:42:
e2:0f:d6:f0:79:16:c7:c5:37:ad:79:70:18:d8:9d:19:2e:93:
eb:5d:0f:5c:4e:8b:ff:f9:7c:d3:21:90:0a:2f:fe:be:0b:44:
e5:1b:58:b9:9d:52:03:8b:05:1b:c7:cf:75:bb:f5:27:8f:ca:
ec:89:64:45:fc:72:6a:d7:50:38:49:76:a5:47:86:b5:83:8c:
e8:a7:f1:e4:de:3a:71:22:80:75:d2:94:3f:b2:6a:37:6a:a8:
dd:e6:91:79:85:fb:bc:c3:7a:72:07:b4:08:c0:19:06:37:35:
81:12:e5:39:52:5f:e4:1e:d3:a3:b2:0d:dc:2e:7a:61:77:31:
4b:6d:6b:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgrfASAgNrviSmd3n+UhcS+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NmQ1MGFiMTJkYWM3NTdhODUxN2Y5ODllNzMxNzI1NWEx
NDdjNTAwHhcNMjMwNTE3MjA1MjA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzQ3MGIyZDEwZWQ4NzA3OTUxYjMxNjI1MWE3MGIyMzI3N2EwOTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSL1gIJJaVO3pFLgGIyj13DjjUSu
g+sb+iEi02SYz+SUx3T+C5DvZGa/Tanh8JIgJFbr80ZBIAs2iVtSmIfqfLZDApSP
ZLgD6wBC9r1gSvpqw5Yef8LMwCv6l1rHspq4dhN/rZwyQGS5WeHCsw6r4md43CEo
oWFZ25iYlzg0yLME0jKvSUyOivHuG+gEpHpgYE38Cfk3z305k0xvOA23gk8nasUR
Gd4TEbC6w5gLWMUjDmpTpNUf5gnagDjR5n05Dw6Lfdzp6AryeHlOkebkp9Zwtk+/
X/G2FTbfZ5dyx0y9vNK11VrcX2LKI7qDiigjWK0/8dsDkWQL10tos7sPbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOxHCy0Q7YcHlRsxYlGnCyMnegl4MB8GA1UdIwQY
MBaAFIltUKsS2sdXqFF/mJ5zFyVaFHxQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVcxUXF4TGF4MWVvVVgtWW5uTVhKVm9VZkZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83NWMwMTctMTYyZi00ZDBiLTk3Yzkt
MDEzYjJmZWI1ZDI4LzEvN0VjTExSRHRod2VWR3pGaVVhY0xJeWQ2Q1hnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS83NWMwMTctMTYyZi00ZDBiLTk3YzktMDEzYjJmZWI1ZDI4
LzEvaVcxUXF4TGF4MWVvVVgtWW5uTVhKVm9VZkZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjWvMA0G
CSqGSIb3DQEBCwUAA4IBAQCEdBw/BBVs2kX98auYsertP3syF2MyK2pjQVqcqL0g
dFw65FU0m6SlJEFDyeV2MvTGN6/5s4FhVj7/p1H8P/ppY57CXookg8VN0WMsSmw2
RO7zvDVdzVLctH2ofUeC+B/hU/MkhxUIlMNvvSMn1t+1jy0T9Z0AKy7Y44VRKELi
D9bweRbHxTeteXAY2J0ZLpPrXQ9cTov/+XzTIZAKL/6+C0TlG1i5nVIDiwUbx891
u/Unj8rsiWRF/HJq11A4SXalR4a1g4zop/Hk3jpxIoB10pQ/smo3aqjd5pF5hfu8
w3pyB7QIwBkGNzWBEuU5Ul/kHtOjsg3cLnphdzFLbWtq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org