Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/EkUPP9BoNlxJ-YX-aaQGt7omaJM.roa
File: EkUPP9BoNlxJ-YX-aaQGt7omaJM.roa (raw, json)
Hash identifier: X+LkfXWDBzxlKJjg3sWzavb86UB6M8MsErmDtNY4dMY=
Subject key identifier: 12:45:0F:3F:D0:68:36:5C:49:F9:85:FE:69:A4:06:B7:BA:26:68:93
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A2AA40E552F48B29264D421D2815F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/EkUPP9BoNlxJ-YX-aaQGt7omaJM.roa
Signing time: Tue 02 Jan 2024 12:33:30 +0000
ROA not before: Tue 02 Jan 2024 12:33:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61406
IP address blocks: 93.171.100.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 14:20:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:2a:a4:0e:55:2f:48:b2:92:64:d4:21:d2:81:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12450f3fd068365c49f985fe69a406b7ba266893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ce:35:e7:b0:7c:ae:7e:af:77:f6:63:74:9a:
dd:28:37:fd:5c:5a:1b:1d:3b:19:03:eb:7e:22:9f:
c1:28:1a:f1:57:df:c0:d2:56:96:e2:2d:8d:cd:45:
da:a2:a3:46:ab:8d:14:28:95:04:3f:81:39:77:a6:
1c:ab:74:f2:48:cd:b0:3e:49:49:0b:6a:a6:5a:0d:
b9:e0:64:7e:96:21:82:69:7c:ff:01:00:6a:30:a5:
18:2f:f9:b7:e4:b9:e4:06:bd:af:e1:a9:88:51:a5:
de:b3:4c:79:be:22:e6:58:35:79:02:cb:50:ed:1e:
61:eb:3a:a8:4c:a1:af:6b:31:c7:96:7b:19:c1:83:
9f:11:ab:a7:e4:3c:8a:ff:3d:1c:d7:ad:47:89:59:
88:f9:b8:e6:28:a8:92:49:fb:12:82:7d:7b:35:c4:
fd:b9:b6:e2:b0:07:71:4b:a3:af:cc:b2:2f:f6:59:
aa:26:d2:50:ad:98:4e:98:f5:e9:2b:be:fc:ce:76:
6c:f5:4a:5d:e8:d8:4f:bb:26:52:fe:5a:31:fe:ef:
d8:20:ab:ea:e7:6d:ae:7d:c4:f9:f8:35:c8:b3:ca:
1e:0e:9b:13:b3:16:97:25:59:ca:08:0a:1e:b4:2e:
e8:5b:8c:48:dc:1a:0b:d2:8e:c7:c1:87:f0:5c:b5:
eb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:45:0F:3F:D0:68:36:5C:49:F9:85:FE:69:A4:06:B7:BA:26:68:93
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/EkUPP9BoNlxJ-YX-aaQGt7omaJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.100.0/22
Signature Algorithm: sha256WithRSAEncryption
90:21:6c:f9:9f:02:61:44:15:ef:78:09:fc:6c:ed:6d:6c:13:
76:cd:a4:7d:ae:1d:07:e2:0b:ad:53:26:f1:1c:80:61:bd:67:
ea:34:f9:20:35:34:df:e0:a7:41:ed:85:74:21:b4:1c:f7:1c:
98:82:0d:80:90:04:1c:01:37:4e:10:f2:ee:ec:c2:50:d4:3a:
a5:e3:ef:90:f5:5a:c1:1e:80:05:ec:00:95:37:05:19:f2:79:
be:e1:95:42:1b:43:ca:be:77:b7:ea:fe:63:98:a5:b2:30:cb:
38:fe:7d:be:30:1d:8f:00:fc:d9:53:8d:31:79:6c:d2:06:99:
70:a4:03:9d:93:fb:ae:f2:68:69:1c:8a:6a:f9:43:ed:c3:16:
c5:4d:f2:8c:be:db:60:46:99:04:22:60:0e:5d:14:82:02:d2:
9e:64:c1:04:f6:fd:42:f0:3f:62:7b:9b:f9:eb:0f:08:88:7a:
d8:94:b3:32:78:a0:65:37:9c:17:86:7c:5b:db:a9:11:81:65:
59:d9:65:21:e0:27:40:f5:32:46:5d:47:98:38:71:aa:cf:78:
b3:3e:30:ed:12:0c:6f:6a:bb:52:59:b6:c6:2f:47:bb:b4:4d:
77:ce:cf:89:2a:f1:f9:68:53:bf:f0:6c:c9:6d:53:83:1f:f9:
58:f0:f4:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKiqkDlUvSLKSZNQh0oFfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjQwMTAyMTIzMzMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjQ1MGYzZmQwNjgzNjVjNDlmOTg1ZmU2OWE0MDZiN2JhMjY2ODkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy84157B8rn6vd/ZjdJrdKDf9XFob
HTsZA+t+Ip/BKBrxV9/A0laW4i2NzUXaoqNGq40UKJUEP4E5d6Ycq3TySM2wPklJ
C2qmWg254GR+liGCaXz/AQBqMKUYL/m35LnkBr2v4amIUaXes0x5viLmWDV5AstQ
7R5h6zqoTKGvazHHlnsZwYOfEaun5DyK/z0c161HiVmI+bjmKKiSSfsSgn17NcT9
ubbisAdxS6OvzLIv9lmqJtJQrZhOmPXpK778znZs9Upd6NhPuyZS/lox/u/YIKvq
522ufcT5+DXIs8oeDpsTsxaXJVnKCAoetC7oW4xI3BoL0o7HwYfwXLXrawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBJFDz/QaDZcSfmF/mmkBre6JmiTMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvRWtVUFA5Qm9ObHhKLVlYLWFhUUd0N29tYUpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXatkMA0G
CSqGSIb3DQEBCwUAA4IBAQCQIWz5nwJhRBXveAn8bO1tbBN2zaR9rh0H4gutUybx
HIBhvWfqNPkgNTTf4KdB7YV0IbQc9xyYgg2AkAQcATdOEPLu7MJQ1Dql4++Q9VrB
HoAF7ACVNwUZ8nm+4ZVCG0PKvne36v5jmKWyMMs4/n2+MB2PAPzZU40xeWzSBplw
pAOdk/uu8mhpHIpq+UPtwxbFTfKMvttgRpkEImAOXRSCAtKeZMEE9v1C8D9ie5v5
6w8IiHrYlLMyeKBlN5wXhnxb26kRgWVZ2WUh4CdA9TJGXUeYOHGqz3izPjDtEgxv
artSWbbGL0e7tE13zs+JKvH5aFO/8GzJbVODH/lY8PTU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org