Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/hG2Qb5A5MeWX64N-9FgPFvUJVuo.roa
File: hG2Qb5A5MeWX64N-9FgPFvUJVuo.roa (raw, json)
Hash identifier: k3xEFxVsvmvjKETmHUSAUKPjt/e0VroIUscxaDxR8vo=
Subject key identifier: 84:6D:90:6F:90:39:31:E5:97:EB:83:7E:F4:58:0F:16:F5:09:56:EA
Certificate issuer: /CN=e46a3f838688843758d28057007dc6cd2898ecca
Certificate serial: 01856CE5F371899C24A0BADE4FA00D0C9F58
Authority key identifier: E4:6A:3F:83:86:88:84:37:58:D2:80:57:00:7D:C6:CD:28:98:EC:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Go_g4aIhDdY0oBXAH3GzSiY7Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/hG2Qb5A5MeWX64N-9FgPFvUJVuo.roa
Signing time: Sun 01 Jan 2023 10:34:47 +0000
ROA not before: Sun 01 Jan 2023 10:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.243.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:f3:71:89:9c:24:a0:ba:de:4f:a0:0d:0c:9f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e46a3f838688843758d28057007dc6cd2898ecca
Validity
Not Before: Jan 1 10:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=846d906f903931e597eb837ef4580f16f50956ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:2b:46:e0:9b:95:57:79:29:95:57:39:ca:
98:81:9a:4d:dc:4d:9c:84:36:3b:77:32:f1:5a:f9:
6c:44:fe:5d:e8:4c:e4:d7:d2:70:ea:1a:e7:45:94:
63:0f:1c:88:76:8f:14:c6:2d:c3:1e:67:45:0b:76:
9b:63:6c:1b:16:b1:a2:c3:4e:a6:57:12:c7:69:c8:
dd:29:c8:5b:3f:b1:b4:82:e0:a6:77:34:9c:c7:ff:
b2:07:ed:3e:fd:98:2f:09:f0:8b:ba:51:32:d6:90:
f2:ff:12:c8:25:b8:64:f9:c6:b4:59:f5:73:d4:6f:
d5:bd:b9:1b:ff:37:df:ab:ab:36:0b:ec:d1:38:d8:
ad:11:8b:c7:c6:f3:8d:5b:8b:45:d9:7f:68:8e:c6:
76:a9:0b:55:6d:1c:f4:4b:b7:29:d0:b1:db:86:32:
44:ee:75:8d:45:ce:34:e9:98:51:7c:8e:6e:1b:13:
27:44:3c:f5:0d:cd:ff:0d:fa:25:85:45:34:92:7a:
8b:a1:78:93:dd:cd:6b:d7:92:ec:4f:86:23:3e:50:
b4:e1:07:9d:2c:c4:1d:38:9b:35:11:8d:ca:f4:97:
48:11:ed:8d:37:57:84:f6:d3:b9:e1:2f:00:83:7a:
f7:56:59:f8:ea:ac:54:51:16:05:52:05:55:d9:89:
c1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6D:90:6F:90:39:31:E5:97:EB:83:7E:F4:58:0F:16:F5:09:56:EA
X509v3 Authority Key Identifier:
keyid:E4:6A:3F:83:86:88:84:37:58:D2:80:57:00:7D:C6:CD:28:98:EC:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Go_g4aIhDdY0oBXAH3GzSiY7Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/hG2Qb5A5MeWX64N-9FgPFvUJVuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/52cf99-e798-4cab-a303-a3b06d4e4775/1/5Go_g4aIhDdY0oBXAH3GzSiY7Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.243.129.0/24
Signature Algorithm: sha256WithRSAEncryption
51:7a:0b:88:95:e0:f4:f2:62:ee:2f:ca:c0:2c:eb:71:75:69:
56:c4:04:ed:f2:99:f4:2a:ee:06:11:21:75:3a:3e:60:9d:ef:
40:b8:0e:b8:b6:55:a8:2f:1c:39:9b:21:2c:6c:7f:fb:35:33:
b0:3d:a9:54:a0:8b:69:8b:21:4b:c9:ec:a6:06:ba:31:84:99:
b6:0e:40:55:83:06:e1:e8:ab:6d:14:b4:81:fd:e3:43:b7:97:
e8:87:76:bf:15:58:97:98:21:fc:c8:e3:d5:0e:c1:79:34:54:
3f:15:69:33:d6:16:2b:9a:e1:f3:86:c9:ab:6b:30:f0:36:c5:
c6:f5:c1:70:63:b6:57:19:98:b7:f5:04:d6:76:fb:ca:7f:dd:
61:ce:90:16:14:fc:f4:bf:ff:e3:04:ca:e2:87:ca:6b:24:41:
88:e4:50:6a:0f:43:bd:6e:d1:1d:d1:79:96:b0:5d:66:16:11:
fc:85:3e:04:f0:ab:fa:a8:a0:91:51:e1:42:c9:89:2a:5f:68:
76:22:65:3a:03:06:5f:ac:93:58:41:06:db:e8:7a:b6:7f:70:
15:d2:4d:bc:4f:2e:a1:a0:eb:98:19:fb:89:0f:72:76:47:d0:
23:0b:34:69:54:21:a5:56:d2:f0:a4:39:da:da:c7:dd:25:60:
12:dd:1d:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5fNxiZwkoLreT6ANDJ9YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0NmEzZjgzODY4ODg0Mzc1OGQyODA1NzAwN2RjNmNkMjg5
OGVjY2EwHhcNMjMwMTAxMTAzNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDZkOTA2ZjkwMzkzMWU1OTdlYjgzN2VmNDU4MGYxNmY1MDk1NmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW0rRuCblVd5KZVXOcqYgZpN3E2c
hDY7dzLxWvlsRP5d6Ezk19Jw6hrnRZRjDxyIdo8Uxi3DHmdFC3abY2wbFrGiw06m
VxLHacjdKchbP7G0guCmdzScx/+yB+0+/ZgvCfCLulEy1pDy/xLIJbhk+ca0WfVz
1G/Vvbkb/zffq6s2C+zRONitEYvHxvONW4tF2X9ojsZ2qQtVbRz0S7cp0LHbhjJE
7nWNRc406ZhRfI5uGxMnRDz1Dc3/DfolhUU0knqLoXiT3c1r15LsT4YjPlC04Qed
LMQdOJs1EY3K9JdIEe2NN1eE9tO54S8Ag3r3Vln46qxUURYFUgVV2YnBDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIRtkG+QOTHll+uDfvRYDxb1CVbqMB8GA1UdIwQY
MBaAFORqP4OGiIQ3WNKAVwB9xs0omOzKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUdvX2c0YUloRGRZMG9CWEFIM0d6U2lZN01vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81MmNmOTktZTc5OC00Y2FiLWEzMDMt
YTNiMDZkNGU0Nzc1LzEvaEcyUWI1QTVNZVdYNjROLTlGZ1BGdlVKVnVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC81MmNmOTktZTc5OC00Y2FiLWEzMDMtYTNiMDZkNGU0Nzc1
LzEvNUdvX2c0YUloRGRZMG9CWEFIM0d6U2lZN01vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwfOBMA0G
CSqGSIb3DQEBCwUAA4IBAQBReguIleD08mLuL8rALOtxdWlWxATt8pn0Ku4GESF1
Oj5gne9AuA64tlWoLxw5myEsbH/7NTOwPalUoItpiyFLyeymBroxhJm2DkBVgwbh
6KttFLSB/eNDt5foh3a/FViXmCH8yOPVDsF5NFQ/FWkz1hYrmuHzhsmrazDwNsXG
9cFwY7ZXGZi39QTWdvvKf91hzpAWFPz0v//jBMrih8prJEGI5FBqD0O9btEd0XmW
sF1mFhH8hT4E8Kv6qKCRUeFCyYkqX2h2ImU6AwZfrJNYQQbb6Hq2f3AV0k28Ty6h
oOuYGfuJD3J2R9AjCzRpVCGlVtLwpDna2sfdJWAS3R0E
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:51 2024 by rpki-client on console-ams.rpki-client.org