Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/hpRDFyqJZOoH3mXCm4uSt1z2Qb0.roa
File: hpRDFyqJZOoH3mXCm4uSt1z2Qb0.roa (raw, json)
Hash identifier: kiZ7TdhOMyTY3sX8+X1HKHQFZLv1NpkWNspy+FQX9gc=
Subject key identifier: 86:94:43:17:2A:89:64:EA:07:DE:65:C2:9B:8B:92:B7:5C:F6:41:BD
Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Certificate serial: 018CC8DEF86BDB5B46AE259F35AA2B7601C0
Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/hpRDFyqJZOoH3mXCm4uSt1z2Qb0.roa
Signing time: Tue 02 Jan 2024 06:31:44 +0000
ROA not before: Tue 02 Jan 2024 06:31:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58212
IP address blocks: 193.22.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 23:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:f8:6b:db:5b:46:ae:25:9f:35:aa:2b:76:01:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Validity
Not Before: Jan 2 06:31:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=869443172a8964ea07de65c29b8b92b75cf641bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0f:a0:7e:86:43:a3:fe:64:48:99:04:9e:cb:
0b:62:b7:6c:8d:65:99:51:5f:d2:75:0a:21:cd:fc:
50:fc:e2:1e:c3:39:75:45:3a:5f:39:d2:64:db:86:
99:55:e7:51:b2:b9:34:f3:49:7a:70:66:3f:f3:92:
26:45:75:cd:97:46:55:61:e9:76:8d:6b:23:d5:27:
65:0a:39:49:89:fd:a1:1b:d8:62:63:6f:32:fb:b7:
20:3c:45:43:65:17:08:67:6b:90:02:e1:45:01:7e:
98:c2:07:bd:62:84:46:2d:95:86:4c:ca:0f:aa:60:
b5:81:01:0f:7f:3a:7f:d2:3d:8d:d1:20:6b:0a:95:
d2:67:5f:a3:a2:30:28:c2:15:fb:b2:5a:e7:e7:07:
7d:8b:9f:e3:65:71:2f:fe:52:9e:2e:af:c2:15:12:
ee:f4:e8:11:b1:76:8d:6c:58:a1:4d:ea:6d:75:68:
fb:0d:96:b8:f7:c5:ae:e2:b4:6d:d3:42:ed:09:94:
47:cf:dd:38:86:72:c7:3c:94:8e:15:7b:7f:95:72:
01:b8:8f:69:32:4f:10:0a:39:3b:2f:3c:3e:de:3f:
a8:b6:d7:c1:fe:5e:a9:19:f1:69:5f:8b:75:fa:9c:
04:66:d5:a4:c6:e1:ae:e2:c0:57:55:e5:00:d2:07:
48:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:94:43:17:2A:89:64:EA:07:DE:65:C2:9B:8B:92:B7:5C:F6:41:BD
X509v3 Authority Key Identifier:
keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/hpRDFyqJZOoH3mXCm4uSt1z2Qb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.129.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:df:7e:1b:f7:34:be:a0:bb:e0:d0:fd:9f:fe:59:3c:fd:fc:
02:71:11:59:6e:ff:74:eb:85:3d:47:89:9c:55:e0:50:f8:01:
23:f7:4e:56:f2:ad:ee:93:04:10:45:f6:3a:c1:db:4e:95:1e:
62:a8:ad:ce:3a:7e:4e:6d:b5:70:be:94:e3:e2:ec:9e:7d:c9:
70:3a:32:4b:c7:e0:b3:b5:3a:bf:8e:2b:3b:a5:37:2e:23:36:
02:b6:f2:89:8c:dd:f9:ae:ef:c9:51:6a:6a:da:ea:f4:a0:93:
73:ab:d1:0b:b2:e0:74:cf:59:b3:5f:99:41:95:2e:fb:e9:2d:
34:bf:66:c0:41:43:9a:4e:6e:40:16:5c:cd:1c:a7:81:bb:39:
90:23:70:59:8c:9d:57:b0:b6:ff:fa:f3:2c:a7:c7:4b:db:a2:
6d:44:d9:38:f6:25:67:07:21:ae:bf:cd:43:17:5b:d7:5b:03:
b4:fc:fd:b6:7f:14:b9:ab:61:ad:b8:24:69:ae:e7:36:e9:fa:
34:a1:59:ad:c8:2d:9f:e9:bc:c3:a3:89:56:84:1c:03:88:0e:
ba:de:e6:54:25:e0:32:cf:62:92:79:02:1c:58:cc:99:64:8e:
53:e5:7c:b4:a5:30:fb:93:30:fa:9c:81:8a:3b:a0:98:41:0b:
c9:f5:c2:5a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3vhr21tGriWfNaordgHAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNjdiZmY3YmFkMWViODM4NGI1ODVkZjdiZWYxMjA2Zjdm
MTlmN2UwHhcNMjQwMTAyMDYzMTQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Njk0NDMxNzJhODk2NGVhMDdkZTY1YzI5YjhiOTJiNzVjZjY0MWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ+gfoZDo/5kSJkEnssLYrdsjWWZ
UV/SdQohzfxQ/OIewzl1RTpfOdJk24aZVedRsrk080l6cGY/85ImRXXNl0ZVYel2
jWsj1SdlCjlJif2hG9hiY28y+7cgPEVDZRcIZ2uQAuFFAX6Ywge9YoRGLZWGTMoP
qmC1gQEPfzp/0j2N0SBrCpXSZ1+jojAowhX7slrn5wd9i5/jZXEv/lKeLq/CFRLu
9OgRsXaNbFihTeptdWj7DZa498Wu4rRt00LtCZRHz904hnLHPJSOFXt/lXIBuI9p
Mk8QCjk7Lzw+3j+ottfB/l6pGfFpX4t1+pwEZtWkxuGu4sBXVeUA0gdINwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIaUQxcqiWTqB95lwpuLkrdc9kG9MB8GA1UdIwQY
MBaAFLpnv/e60euDhLWF33vvEgb38Z9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYt
ZGE0NTM4MDIyYWM3LzEvaHBSREZ5cUpaT29IM21YQ200dVN0MXoyUWIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi80YTI0NGQtNTFkMS00MTQzLWI2YWYtZGE0NTM4MDIyYWM3
LzEvdW1lXzk3clI2NE9FdFlYZmUtOFNCdmZ4bjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRaBMA0G
CSqGSIb3DQEBCwUAA4IBAQCN334b9zS+oLvg0P2f/lk8/fwCcRFZbv9064U9R4mc
VeBQ+AEj905W8q3ukwQQRfY6wdtOlR5iqK3OOn5ObbVwvpTj4uyefclwOjJLx+Cz
tTq/jis7pTcuIzYCtvKJjN35ru/JUWpq2ur0oJNzq9ELsuB0z1mzX5lBlS776S00
v2bAQUOaTm5AFlzNHKeBuzmQI3BZjJ1XsLb/+vMsp8dL26JtRNk49iVnByGuv81D
F1vXWwO0/P22fxS5q2GtuCRpruc26fo0oVmtyC2f6bzDo4lWhBwDiA663uZUJeAy
z2KSeQIcWMyZZI5T5Xy0pTD7kzD6nIGKO6CYQQvJ9cJa
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:23 2024 by rpki-client on console-ams.rpki-client.org