Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Buw0LnENtfDOn5vwCR6exj_6VtE.roa
File: Buw0LnENtfDOn5vwCR6exj_6VtE.roa (raw, json)
Hash identifier: LiUN2qCjGP+AneVaPt2jOstc2sjwC5pUs3mCdSgmt+U=
Subject key identifier: 06:EC:34:2E:71:0D:B5:F0:CE:9F:9B:F0:09:1E:9E:C6:3F:FA:56:D1
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018571BA0ECF5DBAE67EA38B096A6BDCA941
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Buw0LnENtfDOn5vwCR6exj_6VtE.roa
Signing time: Mon 02 Jan 2023 09:04:56 +0000
ROA not before: Mon 02 Jan 2023 09:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 188.191.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:0e:cf:5d:ba:e6:7e:a3:8b:09:6a:6b:dc:a9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 2 09:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06ec342e710db5f0ce9f9bf0091e9ec63ffa56d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:90:4c:3c:61:0c:2e:87:38:58:dd:9b:fa:89:
70:c4:bc:d0:ff:eb:b8:d2:71:84:e4:75:74:b3:7c:
4a:3a:4a:88:52:3a:a7:bf:21:ee:75:73:ce:89:2f:
a6:09:d1:37:03:4c:cd:2c:5e:7f:b0:26:7f:07:aa:
da:c3:3f:8a:30:a8:4b:4b:13:34:4b:16:f3:25:bd:
0a:7a:ff:d2:fa:d9:83:86:36:1e:cc:32:50:a4:39:
b8:c2:01:cb:09:ae:09:64:cb:ec:b1:47:ba:85:fb:
47:18:65:e8:14:e3:75:28:be:e1:5c:4f:13:65:27:
36:df:bc:41:c8:06:43:1a:03:48:2d:ab:63:59:a6:
1d:bd:60:bb:9c:2c:2a:a0:76:6a:a5:d0:68:f8:c3:
a8:29:60:af:3b:21:b0:4c:9b:43:11:b3:66:f6:8d:
24:6d:bc:df:7a:ac:80:5f:70:4c:ee:a6:e7:10:d3:
47:58:3e:f4:13:8d:8d:68:64:32:f8:d4:b3:b3:e2:
20:98:10:99:d3:64:e1:50:fa:0d:da:26:c8:06:94:
cf:32:b3:4a:cf:e6:44:fb:7f:72:34:84:f2:f0:56:
01:2b:fc:4d:18:9b:95:dc:3e:02:7b:9e:d6:d5:68:
7a:85:fa:16:09:51:35:19:d4:bd:c1:34:ee:7e:d6:
19:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:EC:34:2E:71:0D:B5:F0:CE:9F:9B:F0:09:1E:9E:C6:3F:FA:56:D1
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/Buw0LnENtfDOn5vwCR6exj_6VtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.97.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:83:19:55:55:8d:4c:39:6a:58:a2:16:ec:40:fa:99:6b:12:
f3:53:8e:97:ea:00:70:15:24:73:26:9e:d1:e8:36:45:a2:c5:
eb:20:70:ec:e9:0c:77:61:0c:2d:00:29:16:72:a1:88:62:5e:
cb:59:ec:d5:49:04:03:c8:08:6e:d8:c8:1c:09:fe:d8:a7:59:
cb:f7:ba:24:f0:65:d9:13:de:23:21:ea:58:44:7b:52:21:da:
a0:d0:e0:8e:6d:63:ec:58:e1:34:8b:11:0b:45:6f:60:e8:7b:
14:97:b2:f4:89:3b:34:45:48:60:75:f9:4c:c9:5d:8d:81:3a:
77:ea:6c:49:fb:ed:f6:18:76:ca:c0:d0:06:6e:e6:c5:15:e1:
a2:b9:88:3d:26:2e:4c:ec:19:76:7b:03:01:97:44:8b:ff:a2:
dc:86:c8:50:ec:3e:e1:83:1a:94:02:35:54:6a:56:3d:b6:4f:
69:65:70:ea:fa:37:cd:65:d0:8c:6b:b8:7b:65:84:0c:ef:2f:
8e:6b:41:65:6c:6b:dd:1d:08:af:3e:cd:b7:47:6c:cd:3a:86:
ce:ed:dc:2b:4a:44:62:31:be:b6:7c:50:d2:c2:e3:1b:f5:18:
dd:6c:eb:54:91:9c:3e:e8:2e:3a:d0:cf:64:c0:a7:ed:26:72:
fc:2c:2c:c0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxug7PXbrmfqOLCWpr3KlBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjMwMTAyMDkwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmVjMzQyZTcxMGRiNWYwY2U5ZjliZjAwOTFlOWVjNjNmZmE1NmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZBMPGEMLoc4WN2b+olwxLzQ/+u4
0nGE5HV0s3xKOkqIUjqnvyHudXPOiS+mCdE3A0zNLF5/sCZ/B6rawz+KMKhLSxM0
SxbzJb0Kev/S+tmDhjYezDJQpDm4wgHLCa4JZMvssUe6hftHGGXoFON1KL7hXE8T
ZSc237xByAZDGgNILatjWaYdvWC7nCwqoHZqpdBo+MOoKWCvOyGwTJtDEbNm9o0k
bbzfeqyAX3BM7qbnENNHWD70E42NaGQy+NSzs+IgmBCZ02ThUPoN2ibIBpTPMrNK
z+ZE+39yNITy8FYBK/xNGJuV3D4Ce57W1Wh6hfoWCVE1GdS9wTTuftYZ9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAbsNC5xDbXwzp+b8AkensY/+lbRMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvQnV3MExuRU50ZkRPbjV2d0NSNmV4al82VnRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL9hMA0G
CSqGSIb3DQEBCwUAA4IBAQA9gxlVVY1MOWpYohbsQPqZaxLzU46X6gBwFSRzJp7R
6DZFosXrIHDs6Qx3YQwtACkWcqGIYl7LWezVSQQDyAhu2MgcCf7Yp1nL97ok8GXZ
E94jIepYRHtSIdqg0OCObWPsWOE0ixELRW9g6HsUl7L0iTs0RUhgdflMyV2NgTp3
6mxJ++32GHbKwNAGbubFFeGiuYg9Ji5M7Bl2ewMBl0SL/6LchshQ7D7hgxqUAjVU
alY9tk9pZXDq+jfNZdCMa7h7ZYQM7y+Oa0FlbGvdHQivPs23R2zNOobO7dwrSkRi
Mb62fFDSwuMb9RjdbOtUkZw+6C460M9kwKftJnL8LCzA
-----END CERTIFICATE-----
Generated at Fri Sep 1 11:39:20 2023 by rpki-client on console-fra.rpki-client.org