Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tBjnzvI-hV6_W6JICZkBapGg0ro.roa
File: tBjnzvI-hV6_W6JICZkBapGg0ro.roa (raw, json)
Hash identifier: gk+ze5fAN8jmnVZRsatXZ4uomQbTFLu0ZnIjW5yZYcQ=
Subject key identifier: B4:18:E7:CE:F2:3E:85:5E:BF:5B:A2:48:09:99:01:6A:91:A0:D2:BA
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018997A2CDD59A1BDC03DAF731B36E15EB0F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tBjnzvI-hV6_W6JICZkBapGg0ro.roa
Signing time: Thu 27 Jul 2023 13:56:16 +0000
ROA not before: Thu 27 Jul 2023 13:56:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49316
IP address blocks: 93.113.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 15:35:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:a2:cd:d5:9a:1b:dc:03:da:f7:31:b3:6e:15:eb:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 27 13:56:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b418e7cef23e855ebf5ba2480999016a91a0d2ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e0:cb:5f:3d:ff:5e:aa:66:b2:34:bc:46:07:
90:01:41:7c:7b:09:61:ab:43:d1:60:56:47:80:fb:
d1:c0:ed:8a:21:04:2a:da:6b:3b:21:e9:38:34:d1:
7e:66:91:8a:2b:17:b5:4e:0d:be:26:33:d8:1a:0c:
f0:64:b3:2f:e4:0b:6e:89:46:96:42:b8:72:44:05:
a8:8c:67:62:39:62:dd:7c:79:ca:c4:5f:ca:1f:f5:
90:12:b8:25:53:a9:87:ea:cd:c7:da:d4:37:26:b3:
0c:5a:09:11:87:17:2a:4d:70:c9:50:f8:39:38:40:
93:08:26:92:19:ab:c5:08:c0:0d:5e:fb:10:47:5f:
4c:23:a3:f1:a7:ea:70:bb:d2:63:f0:e9:14:f8:65:
8f:cc:95:0f:89:f6:ce:d0:71:cc:c3:73:1e:ce:c9:
7c:06:bd:6b:05:8a:5e:95:1c:a5:1b:e9:ff:55:74:
1e:36:47:a4:75:95:8f:56:ca:43:43:37:98:06:d7:
7a:ce:13:3c:d6:20:45:c6:32:a2:0a:4c:41:d5:96:
e0:3c:9a:ce:1f:4c:85:06:c8:29:c4:b9:57:3d:35:
ca:2e:f1:7b:0c:82:a4:b0:68:b2:be:2b:b3:03:9c:
93:81:d3:35:5d:ad:1d:91:cd:10:a8:3e:a5:e8:3f:
59:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:18:E7:CE:F2:3E:85:5E:BF:5B:A2:48:09:99:01:6A:91:A0:D2:BA
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tBjnzvI-hV6_W6JICZkBapGg0ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.113.171.0/24
Signature Algorithm: sha256WithRSAEncryption
95:3d:7c:99:cb:7f:90:1f:79:66:61:61:9e:83:91:ba:94:d4:
13:78:39:62:1c:26:c8:84:9a:62:30:3d:8a:80:5c:15:4d:d7:
93:5a:16:db:19:ca:c1:94:6a:f6:4c:20:b6:da:da:93:76:24:
9d:89:ad:8f:4f:c0:96:f2:ec:ed:a1:00:1c:05:47:cb:6f:5e:
9e:7c:f2:ec:ff:7c:89:b4:bf:09:bc:3f:d0:2c:b7:14:f5:f5:
10:16:87:b4:ae:fa:16:1a:e8:17:ef:5f:e0:8d:e3:87:bd:10:
cc:8f:fc:53:ed:11:79:4a:85:3e:df:24:4e:99:2f:67:f7:47:
41:50:c5:62:fc:42:b9:b4:0f:b4:6b:17:51:23:24:33:cc:6f:
7f:9e:62:1e:b4:62:89:85:2a:e6:b3:93:5f:91:32:d3:c2:da:
9e:0f:ab:7f:65:64:c9:11:fc:31:36:59:04:2f:4d:38:d0:25:
9d:7e:d2:e7:d9:03:44:c5:8a:9f:53:6a:79:56:5d:a1:2e:65:
74:33:3c:68:d5:de:1d:d0:8c:20:74:4c:46:1e:b2:e5:8c:97:
b3:8a:9e:e3:24:e3:45:86:f4:fd:53:03:cf:63:20:75:0e:18:
f8:92:d2:b0:f9:b7:cc:c9:20:33:da:74:7f:6e:9b:5d:2a:93:
25:43:2f:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmXos3VmhvcA9r3MbNuFesPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNzI3MTM1NjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDE4ZTdjZWYyM2U4NTVlYmY1YmEyNDgwOTk5MDE2YTkxYTBkMmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsODLXz3/XqpmsjS8RgeQAUF8ewlh
q0PRYFZHgPvRwO2KIQQq2ms7Iek4NNF+ZpGKKxe1Tg2+JjPYGgzwZLMv5AtuiUaW
QrhyRAWojGdiOWLdfHnKxF/KH/WQErglU6mH6s3H2tQ3JrMMWgkRhxcqTXDJUPg5
OECTCCaSGavFCMANXvsQR19MI6Pxp+pwu9Jj8OkU+GWPzJUPifbO0HHMw3Mezsl8
Br1rBYpelRylG+n/VXQeNkekdZWPVspDQzeYBtd6zhM81iBFxjKiCkxB1ZbgPJrO
H0yFBsgpxLlXPTXKLvF7DIKksGiyviuzA5yTgdM1Xa0dkc0QqD6l6D9ZOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLQY587yPoVev1uiSAmZAWqRoNK6MB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvdEJqbnp2SS1oVjZfVzZKSUNaa0JhcEdnMHJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXXGrMA0G
CSqGSIb3DQEBCwUAA4IBAQCVPXyZy3+QH3lmYWGeg5G6lNQTeDliHCbIhJpiMD2K
gFwVTdeTWhbbGcrBlGr2TCC22tqTdiSdia2PT8CW8uztoQAcBUfLb16efPLs/3yJ
tL8JvD/QLLcU9fUQFoe0rvoWGugX71/gjeOHvRDMj/xT7RF5SoU+3yROmS9n90dB
UMVi/EK5tA+0axdRIyQzzG9/nmIetGKJhSrms5NfkTLTwtqeD6t/ZWTJEfwxNlkE
L0040CWdftLn2QNExYqfU2p5Vl2hLmV0Mzxo1d4d0IwgdExGHrLljJezip7jJONF
hvT9UwPPYyB1Dhj4ktKw+bfMySAz2nR/bptdKpMlQy/p
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org