Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/cAHeg96et4s1_PwCLujzaXgVbRk.roa
File: cAHeg96et4s1_PwCLujzaXgVbRk.roa (raw, json)
Hash identifier: TmP6S9gJylAz2ZmUNNMC/mwLmPeRoJW51uQRjpgedQY=
Subject key identifier: 70:01:DE:83:DE:9E:B7:8B:35:FC:FC:02:2E:E8:F3:69:78:15:6D:19
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 018572559F8ACB6E04B609F5D3D5D223263E
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/cAHeg96et4s1_PwCLujzaXgVbRk.roa
Signing time: Mon 02 Jan 2023 11:54:52 +0000
ROA not before: Mon 02 Jan 2023 11:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210262
IP address blocks: 213.231.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9f:8a:cb:6e:04:b6:09:f5:d3:d5:d2:23:26:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 2 11:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7001de83de9eb78b35fcfc022ee8f36978156d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:21:6e:b9:59:4d:51:bd:cc:aa:8d:b2:4a:2e:
b2:e1:b6:c5:7a:d7:f5:1f:95:f7:14:34:9d:14:92:
d5:df:af:0f:ee:a5:f7:10:14:9c:87:7f:21:cc:1f:
be:53:33:79:57:6f:06:74:64:c8:7f:8b:f8:2b:06:
a9:82:04:d0:f8:03:72:8d:69:df:b8:3d:17:fd:73:
6b:aa:09:aa:4a:18:db:f4:35:43:67:45:f7:20:5b:
ce:42:90:bc:4e:83:55:3e:19:eb:eb:2a:06:71:f9:
64:00:c2:23:4f:1a:f3:3f:60:d5:15:52:09:09:1c:
25:c0:d5:28:27:8c:37:75:d9:91:97:39:a9:6c:84:
64:96:64:b7:a8:85:8c:ed:b3:b6:c0:2b:d6:d4:88:
d0:60:58:f1:86:be:e6:4f:f1:34:14:48:98:81:43:
e9:34:8f:68:ef:d3:42:d5:6b:d0:7e:9e:d8:3a:11:
18:40:1d:fd:30:94:ae:54:d7:94:92:82:43:d0:01:
c8:34:9e:b3:33:47:e2:73:b5:01:b6:51:19:6e:fa:
68:c5:72:e9:e9:af:0a:eb:1a:d0:fc:c5:67:11:25:
24:a3:22:dd:78:89:77:58:55:19:c8:38:9c:63:bd:
eb:6d:52:9d:74:47:ae:d0:50:7d:55:d6:f7:de:b1:
d4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:01:DE:83:DE:9E:B7:8B:35:FC:FC:02:2E:E8:F3:69:78:15:6D:19
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/cAHeg96et4s1_PwCLujzaXgVbRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.231.197.0/24
Signature Algorithm: sha256WithRSAEncryption
94:94:a4:21:39:2d:13:a2:ab:97:0d:79:b0:1c:fb:73:b8:f8:
e5:c1:92:ed:be:cb:4a:63:cb:64:b3:9e:5d:d4:a5:d2:c2:b2:
ba:18:d6:4b:dd:5e:51:da:dc:c5:03:44:99:08:97:f8:35:4a:
3e:b5:44:09:1f:69:0c:22:d1:23:77:b8:c1:4c:13:a0:48:b0:
33:18:89:77:59:2c:98:42:bc:2f:49:ed:6d:66:40:1f:0c:b3:
b5:a5:b3:59:ca:38:79:15:39:e7:22:ed:6f:c4:f2:98:1e:55:
09:a7:6a:fe:8c:07:ae:09:7e:ee:7f:a4:94:25:9d:6f:5d:ec:
ce:49:12:1d:d8:c5:f4:3a:a9:19:cb:43:64:55:15:99:ce:1a:
39:69:0e:33:ff:1f:ab:54:a0:37:1f:c6:40:27:b8:c7:77:db:
da:c7:1b:c4:00:c9:a5:bd:11:26:e1:63:1b:77:55:82:e0:d0:
ae:9f:ee:35:40:2b:e0:9f:9b:28:17:0a:12:d6:54:46:d7:b4:
64:c3:e7:c8:d8:9a:46:2e:f3:e9:0d:20:fa:a1:e9:f8:77:6b:
35:57:b8:ea:a3:43:0d:d3:1b:64:10:e6:c7:ed:a8:8b:2f:4a:
84:39:e3:6c:67:ac:6e:af:7e:a4:19:47:bb:12:60:e7:43:f0:
ba:6c:40:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyVZ+Ky24Etgn109XSIyY+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMmY0YzFhMzdlOTMxM2NkZDJlZWE3NzUwYWUwMjhkMThj
ZDVhYWUwHhcNMjMwMTAyMTE1NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDAxZGU4M2RlOWViNzhiMzVmY2ZjMDIyZWU4ZjM2OTc4MTU2ZDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgSFuuVlNUb3Mqo2ySi6y4bbFetf1
H5X3FDSdFJLV368P7qX3EBSch38hzB++UzN5V28GdGTIf4v4KwapggTQ+ANyjWnf
uD0X/XNrqgmqShjb9DVDZ0X3IFvOQpC8ToNVPhnr6yoGcflkAMIjTxrzP2DVFVIJ
CRwlwNUoJ4w3ddmRlzmpbIRklmS3qIWM7bO2wCvW1IjQYFjxhr7mT/E0FEiYgUPp
NI9o79NC1WvQfp7YOhEYQB39MJSuVNeUkoJD0AHINJ6zM0fic7UBtlEZbvpoxXLp
6a8K6xrQ/MVnESUkoyLdeIl3WFUZyDicY73rbVKddEeu0FB9Vdb33rHUbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHAB3oPenreLNfz8Ai7o82l4FW0ZMB8GA1UdIwQY
MBaAFCAvTBo36TE83S7qd1CuAo0YzVquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEt
ZjZiNzhlMmIxN2ExLzEvY0FIZWc5NmV0NHMxX1B3Q0x1anphWGdWYlJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEtZjZiNzhlMmIxN2Ex
LzEvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1efFMA0G
CSqGSIb3DQEBCwUAA4IBAQCUlKQhOS0ToquXDXmwHPtzuPjlwZLtvstKY8tks55d
1KXSwrK6GNZL3V5R2tzFA0SZCJf4NUo+tUQJH2kMItEjd7jBTBOgSLAzGIl3WSyY
QrwvSe1tZkAfDLO1pbNZyjh5FTnnIu1vxPKYHlUJp2r+jAeuCX7uf6SUJZ1vXezO
SRId2MX0OqkZy0NkVRWZzho5aQ4z/x+rVKA3H8ZAJ7jHd9vaxxvEAMmlvREm4WMb
d1WC4NCun+41QCvgn5soFwoS1lRG17Rkw+fI2JpGLvPpDSD6oen4d2s1V7jqo0MN
0xtkEObH7aiLL0qEOeNsZ6xur36kGUe7EmDnQ/C6bEAR
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:50 2024 by rpki-client on console-fra.rpki-client.org