Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/DemxkrvCig7cXwDDEL4bPDxeCao.roa
File: DemxkrvCig7cXwDDEL4bPDxeCao.roa (raw, json)
Hash identifier: c+cr7khx7m0DSZQzzqGpP+YbNpVijzzy4MPZCHef7Xg=
Subject key identifier: 0D:E9:B1:92:BB:C2:8A:0E:DC:5F:00:C3:10:BE:1B:3C:3C:5E:09:AA
Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Certificate serial: 018B44C9EF274D80E405DACA4F56B78144D2
Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/DemxkrvCig7cXwDDEL4bPDxeCao.roa
Signing time: Wed 18 Oct 2023 21:56:06 +0000
ROA not before: Wed 18 Oct 2023 21:56:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.22.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 13:12:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:c9:ef:27:4d:80:e4:05:da:ca:4f:56:b7:81:44:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Validity
Not Before: Oct 18 21:56:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0de9b192bbc28a0edc5f00c310be1b3c3c5e09aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dd:04:9f:27:28:51:ac:82:f9:cc:77:cd:a0:
aa:38:8a:57:e8:e1:3a:be:ec:31:72:c6:ff:c2:53:
4a:a8:73:7c:46:a7:30:f6:bb:b3:82:ab:7f:54:1d:
36:2c:4f:31:76:91:45:96:6e:16:62:29:71:6c:5d:
7e:76:46:be:7e:15:b5:a1:0c:6d:e4:74:28:de:73:
04:b1:23:29:c7:9c:52:15:db:dd:82:20:e4:2f:19:
de:e8:ca:43:a3:0b:89:af:86:9b:76:d5:df:b8:11:
75:39:2f:90:4c:6b:13:62:11:df:b3:d4:8f:c0:0f:
82:65:40:be:9b:f1:7e:31:9a:90:8a:8c:14:27:15:
d9:28:5b:65:a8:d8:71:a0:1e:e5:07:2d:ae:c2:14:
14:b7:0d:c3:fe:59:c1:90:a9:12:39:66:43:75:22:
fa:fe:d2:8e:22:7d:d4:5b:e9:0f:32:d0:00:35:f8:
ec:21:da:f2:b4:7d:17:76:99:f2:4c:97:b0:05:f1:
18:5d:04:22:8b:cd:9b:93:8e:43:61:05:e2:c1:b2:
08:e3:52:f5:69:86:15:62:0f:a5:0c:84:d9:4c:e4:
c6:cf:cc:66:9e:cf:7d:f9:e7:0c:c9:99:3c:f5:26:
f2:ef:94:5b:cd:9d:32:11:c6:d8:4e:4e:f1:2e:64:
0d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E9:B1:92:BB:C2:8A:0E:DC:5F:00:C3:10:BE:1B:3C:3C:5E:09:AA
X509v3 Authority Key Identifier:
keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/DemxkrvCig7cXwDDEL4bPDxeCao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.129.0/24
Signature Algorithm: sha256WithRSAEncryption
83:9c:8c:d1:00:55:8e:61:06:6f:f7:af:33:d5:e6:e9:77:a2:
ac:cc:93:6b:fb:31:3b:77:f6:8d:d5:0c:ad:f3:cd:c7:36:a5:
7a:d6:10:1c:cc:e0:96:8e:15:c6:28:59:b1:02:15:4a:d7:1e:
c0:bd:96:4a:90:6e:27:a3:31:b9:13:c0:cb:88:3d:e2:73:2f:
44:78:6d:9b:53:58:e7:73:60:bd:05:39:65:44:42:11:ce:0c:
a0:bc:cc:75:c6:7f:d5:f6:34:cb:2d:98:65:cb:1d:49:dc:4c:
81:81:0a:c7:c8:f4:5d:5e:b1:cb:62:ff:a5:ad:9a:9f:82:b9:
ed:d8:fc:7b:d7:ba:e9:c9:bb:82:c5:7c:0c:d1:b0:20:8f:30:
f8:cb:14:18:36:6e:d7:94:b0:28:1f:a0:48:a5:cb:1d:22:c8:
8f:4a:04:8d:07:1f:41:09:b7:93:38:d3:a2:e6:b9:82:3c:46:
da:1c:4f:68:5f:66:32:ce:fa:39:65:91:57:4f:b1:cb:6a:30:
7c:81:67:b2:14:90:bd:a6:04:01:11:27:44:0e:a8:cd:42:79:
d7:e4:50:82:38:99:e7:44:85:44:2e:89:75:c1:db:e2:3b:12:
b9:8b:b2:61:d2:aa:c8:b6:c2:72:dd:c7:20:0e:ee:78:99:6b:
8e:7e:57:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtEye8nTYDkBdrKT1a3gUTSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjdiZmY3YmFkMWViODM4NGI1ODVkZjdiZWYxMjA2Zjdm
MTlmN2UwHhcNMjMxMDE4MjE1NjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZGU5YjE5MmJiYzI4YTBlZGM1ZjAwYzMxMGJlMWIzYzNjNWUwOWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtd0EnycoUayC+cx3zaCqOIpX6OE6
vuwxcsb/wlNKqHN8Rqcw9ruzgqt/VB02LE8xdpFFlm4WYilxbF1+dka+fhW1oQxt
5HQo3nMEsSMpx5xSFdvdgiDkLxne6MpDowuJr4abdtXfuBF1OS+QTGsTYhHfs9SP
wA+CZUC+m/F+MZqQiowUJxXZKFtlqNhxoB7lBy2uwhQUtw3D/lnBkKkSOWZDdSL6
/tKOIn3UW+kPMtAANfjsIdrytH0XdpnyTJewBfEYXQQii82bk45DYQXiwbII41L1
aYYVYg+lDITZTOTGz8xmns99+ecMyZk89Sby75RbzZ0yEcbYTk7xLmQNrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA3psZK7wooO3F8AwxC+Gzw8XgmqMB8GA1UdIwQY
MBaAFLpnv/e60euDhLWF33vvEgb38Z9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYt
ZGE0NTM4MDIyYWM3LzEvRGVteGtydkNpZzdjWHdEREVMNGJQRHhlQ2FvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYtZGE0NTM4MDIyYWM3
LzEvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRaBMA0G
CSqGSIb3DQEBCwUAA4IBAQCDnIzRAFWOYQZv968z1ebpd6KszJNr+zE7d/aN1Qyt
883HNqV61hAczOCWjhXGKFmxAhVK1x7AvZZKkG4nozG5E8DLiD3icy9EeG2bU1jn
c2C9BTllREIRzgygvMx1xn/V9jTLLZhlyx1J3EyBgQrHyPRdXrHLYv+lrZqfgrnt
2Px717rpybuCxXwM0bAgjzD4yxQYNm7XlLAoH6BIpcsdIsiPSgSNBx9BCbeTONOi
5rmCPEbaHE9oX2Yyzvo5ZZFXT7HLajB8gWeyFJC9pgQBESdEDqjNQnnX5FCCOJnn
RIVELol1wdviOxK5i7Jh0qrItsJy3ccgDu54mWuOflc3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org