Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/CRS6RZvLmUN07p7dR-5JVp5uDTQ.roa
File: CRS6RZvLmUN07p7dR-5JVp5uDTQ.roa (raw, json)
Hash identifier: kIDSW4mluUXHEDC5jiJlEuXSHRg9LK/490AIrux1QX8=
Subject key identifier: 09:14:BA:45:9B:CB:99:43:74:EE:9E:DD:47:EE:49:56:9E:6E:0D:34
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 018F573BEF5B9A4BE0FAF22F75B13BA1BA02
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/CRS6RZvLmUN07p7dR-5JVp5uDTQ.roa
Signing time: Wed 08 May 2024 08:04:56 +0000
ROA not before: Wed 08 May 2024 08:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198948
IP address blocks: 194.191.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:3b:ef:5b:9a:4b:e0:fa:f2:2f:75:b1:3b:a1:ba:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: May 8 08:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0914ba459bcb994374ee9edd47ee49569e6e0d34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6f:b8:1f:40:65:12:c1:dc:1b:87:c2:ca:d7:
b2:22:5b:e9:61:3f:6b:c2:5e:5f:c6:d3:94:32:9d:
fd:73:71:92:13:05:23:d8:91:5e:7c:b5:9c:8d:e3:
23:df:0c:e6:91:f8:a8:b9:eb:20:20:3e:70:e2:77:
a8:23:84:e0:0f:50:ae:8d:1c:6f:72:01:50:bb:55:
33:b3:5c:b3:1e:67:3e:c0:d9:b2:34:81:64:ab:b7:
44:d2:e4:19:87:98:6b:9f:7b:7d:12:df:be:67:f3:
9b:0b:36:a1:6b:fb:46:de:e9:73:6e:d5:2f:50:c7:
90:d1:a5:12:b5:61:3a:34:66:0f:7b:05:35:ce:91:
10:db:ce:00:81:92:c4:7a:5d:51:4f:a9:19:0d:a6:
1f:0a:1e:1e:31:c6:38:73:08:99:8a:a6:cf:34:11:
28:bb:af:ae:db:ff:4d:0e:80:9f:77:fd:e6:f0:a4:
c7:38:51:df:7e:9d:ad:c8:87:95:b6:19:0e:8c:34:
d2:be:83:2e:98:e2:bb:dc:ab:48:b6:8e:6b:36:d8:
e0:52:99:97:f0:7d:fa:6f:12:bd:40:28:03:fb:8b:
2a:85:6f:8f:55:b0:7d:db:f2:23:e2:48:18:8c:ca:
1a:b4:98:bd:0c:f8:8e:6d:4c:10:01:cd:84:dc:ab:
e7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:14:BA:45:9B:CB:99:43:74:EE:9E:DD:47:EE:49:56:9E:6E:0D:34
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/CRS6RZvLmUN07p7dR-5JVp5uDTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.191.16.0/24
Signature Algorithm: sha256WithRSAEncryption
44:56:8b:01:a7:57:87:36:87:79:e7:e8:34:66:93:0a:79:90:
cc:16:be:d6:3f:f3:f3:d2:15:cb:2a:d0:31:cb:03:45:07:3b:
b9:e8:29:7b:73:b1:17:90:7a:fb:df:bd:2f:ca:8b:a7:c1:5d:
1f:13:1a:bb:60:03:10:28:c6:2c:e1:e5:92:6d:05:94:2c:c5:
50:2d:89:7d:03:b9:c7:f0:c7:ea:b2:fd:70:0b:85:4a:72:ce:
fc:ca:53:79:4c:02:93:34:b3:e7:10:53:9f:db:df:48:07:b7:
48:02:14:51:c8:e0:31:31:02:21:ef:47:56:61:b8:5a:a9:b9:
47:08:d0:c6:0e:7d:ec:ec:ee:4a:39:91:74:3c:e6:ec:43:d2:
d8:26:af:60:45:9e:82:cb:a6:a0:d0:a5:f0:f0:b9:8d:6f:bf:
1a:af:ea:f0:72:55:13:f1:49:5b:7d:9c:7c:9a:b2:a2:75:c0:
18:13:cc:c6:be:cc:33:da:7f:cf:9d:c9:b6:e0:43:5a:69:ac:
53:b3:1f:b6:44:a0:da:ed:d6:43:fd:b0:d5:40:32:a6:3d:55:
bd:86:7d:da:27:5b:1b:80:a3:74:73:ac:78:0c:c7:ff:20:c4:
30:e8:eb:6a:e2:6a:5e:e8:11:31:26:b0:b2:aa:26:48:f1:ca:
ef:c7:b4:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY9XO+9bmkvg+vIvdbE7oboCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3NGM2NzA2ZTNmYmViZGZmMTQ2YThhMTRlYzJhMzI4NGE5
MmJhNjIwHhcNMjQwNTA4MDgwNDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTE0YmE0NTliY2I5OTQzNzRlZTllZGQ0N2VlNDk1NjllNmUwZDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1G+4H0BlEsHcG4fCyteyIlvpYT9r
wl5fxtOUMp39c3GSEwUj2JFefLWcjeMj3wzmkfiouesgID5w4neoI4TgD1CujRxv
cgFQu1Uzs1yzHmc+wNmyNIFkq7dE0uQZh5hrn3t9Et++Z/ObCzaha/tG3ulzbtUv
UMeQ0aUStWE6NGYPewU1zpEQ284AgZLEel1RT6kZDaYfCh4eMcY4cwiZiqbPNBEo
u6+u2/9NDoCfd/3m8KTHOFHffp2tyIeVthkOjDTSvoMumOK73KtIto5rNtjgUpmX
8H36bxK9QCgD+4sqhW+PVbB92/Ij4kgYjMoatJi9DPiObUwQAc2E3KvnowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAkUukWby5lDdO6e3UfuSVaebg00MB8GA1UdIwQY
MBaAFKdMZwbj++vf8UaooU7CoyhKkrpiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDB4bkJ1UDc2OV94UnFpaFRzS2pLRXFTdW1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9hMGM0NDQtOTc5Ni00ZjA2LTgzZjIt
YWE3ODhhNDIwYWVjLzEvQ1JTNlJadkxtVU4wN3A3ZFItNUpWcDV1RFRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9hMGM0NDQtOTc5Ni00ZjA2LTgzZjItYWE3ODhhNDIwYWVj
LzEvcDB4bkJ1UDc2OV94UnFpaFRzS2pLRXFTdW1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwr8QMA0G
CSqGSIb3DQEBCwUAA4IBAQBEVosBp1eHNod55+g0ZpMKeZDMFr7WP/Pz0hXLKtAx
ywNFBzu56Cl7c7EXkHr7370vyounwV0fExq7YAMQKMYs4eWSbQWULMVQLYl9A7nH
8Mfqsv1wC4VKcs78ylN5TAKTNLPnEFOf299IB7dIAhRRyOAxMQIh70dWYbhaqblH
CNDGDn3s7O5KOZF0PObsQ9LYJq9gRZ6Cy6ag0KXw8LmNb78ar+rwclUT8UlbfZx8
mrKidcAYE8zGvswz2n/Pncm24ENaaaxTsx+2RKDa7dZD/bDVQDKmPVW9hn3aJ1sb
gKN0c6x4DMf/IMQw6Otq4mpe6BExJrCyqiZI8crvx7Sq
-----END CERTIFICATE-----
Generated at Thu Feb 20 03:34:14 2025 by rpki-client