Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/s4NPWESuVPHxfAXkhhxcTfnWUqg.roa
File: s4NPWESuVPHxfAXkhhxcTfnWUqg.roa (raw, json)
Hash identifier: qpm8zDPbrOVxmcTOqDiEkM1P4TkCmcnlifm3lLDBUKA=
Subject key identifier: B3:83:4F:58:44:AE:54:F1:F1:7C:05:E4:86:1C:5C:4D:F9:D6:52:A8
Certificate issuer: /CN=af036816a317dd99d25383a32a681859c047b5ff
Certificate serial: 018571A7932A0E139CF243C5D3793285C732
Authority key identifier: AF:03:68:16:A3:17:DD:99:D2:53:83:A3:2A:68:18:59:C0:47:B5:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwNoFqMX3ZnSU4OjKmgYWcBHtf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/s4NPWESuVPHxfAXkhhxcTfnWUqg.roa
Signing time: Mon 02 Jan 2023 08:44:45 +0000
ROA not before: Mon 02 Jan 2023 08:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 194.187.56.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:93:2a:0e:13:9c:f2:43:c5:d3:79:32:85:c7:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af036816a317dd99d25383a32a681859c047b5ff
Validity
Not Before: Jan 2 08:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3834f5844ae54f1f17c05e4861c5c4df9d652a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:18:cc:87:4d:f9:df:d2:26:91:97:3f:51:d0:
a6:77:de:25:be:9f:ee:e0:dd:bd:9c:41:00:5e:63:
73:34:b3:b4:3d:61:58:5a:3f:47:18:26:e3:60:8e:
c8:e7:6c:1c:09:9d:b6:09:d1:a0:83:ec:88:ff:85:
21:54:1f:9a:81:26:84:cc:23:f0:99:b4:67:11:b7:
af:3a:27:c8:40:84:67:03:c1:09:4d:c5:29:7f:24:
ea:1c:fc:17:23:d2:6f:1a:f2:c5:70:05:c8:c5:a5:
88:f6:f5:c2:ad:3d:93:d9:3b:2d:d6:eb:9f:50:1f:
6e:8a:09:1c:b2:bd:bb:83:54:42:69:43:7f:c4:90:
7d:06:2d:59:8c:d4:53:ff:71:7b:7f:f4:68:82:75:
a6:ec:ef:36:71:b8:f3:63:2d:8f:86:d3:67:9f:5f:
f0:b8:ef:8f:ea:a6:9a:a3:75:9c:dc:65:fd:93:82:
5a:96:3a:3e:af:c4:76:9f:0d:59:e7:f7:2c:69:12:
ab:87:b0:0a:e3:f7:9b:21:6f:14:70:7f:d6:a6:10:
6c:0f:e1:7e:08:55:b7:a3:8c:c5:fb:db:8d:b8:d2:
3b:04:5f:37:87:10:e1:33:ed:bb:8a:99:77:aa:8a:
54:43:b6:08:c1:8e:b3:fd:4a:ac:55:a9:8e:2a:44:
ec:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:83:4F:58:44:AE:54:F1:F1:7C:05:E4:86:1C:5C:4D:F9:D6:52:A8
X509v3 Authority Key Identifier:
keyid:AF:03:68:16:A3:17:DD:99:D2:53:83:A3:2A:68:18:59:C0:47:B5:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwNoFqMX3ZnSU4OjKmgYWcBHtf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/s4NPWESuVPHxfAXkhhxcTfnWUqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/52b199-9e1f-4ec7-b0aa-4a4e0f424f17/1/rwNoFqMX3ZnSU4OjKmgYWcBHtf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.56.0/22
Signature Algorithm: sha256WithRSAEncryption
38:b3:5e:40:8b:f9:38:55:95:48:03:15:fd:14:73:80:c3:7a:
af:a5:2a:77:d2:ba:c5:00:b8:6e:ea:b9:98:07:a6:5a:e8:85:
dd:87:35:21:fd:07:dc:b4:bb:86:19:3b:05:9b:30:16:99:b7:
25:20:38:09:7b:56:73:b9:a0:09:8d:77:a2:f8:38:8e:05:4b:
96:13:b4:c6:c9:3f:cd:bc:8a:7f:5c:a4:6a:af:a6:e4:e6:18:
76:b0:fd:24:f6:85:02:ad:14:7c:e3:16:c1:9b:07:44:94:d1:
27:80:67:03:ce:89:4f:71:cc:d2:7f:15:c9:d5:25:c6:61:04:
95:f9:0f:a7:a9:de:38:3d:0f:9c:ae:4c:c7:e8:10:d1:cc:4e:
17:c7:f3:f1:43:9a:8a:4d:88:6a:a8:b8:95:df:6c:43:d9:96:
6b:30:46:a7:91:fb:29:13:af:8e:6e:98:7c:7f:2d:a2:e1:64:
83:2f:d8:82:fb:2a:97:c3:0d:a8:a1:ca:78:e6:2f:5b:25:52:
20:6c:67:f8:5f:9a:4d:97:93:72:d7:a9:ae:a8:34:b6:67:07:
28:62:0c:15:f9:73:12:9b:2e:3e:75:ed:55:e9:04:a2:e2:64:
49:28:01:5f:c0:a7:a3:34:0d:ae:b8:d2:65:63:34:86:7f:8c:
c7:0e:a4:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxp5MqDhOc8kPF03kyhccyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDM2ODE2YTMxN2RkOTlkMjUzODNhMzJhNjgxODU5YzA0
N2I1ZmYwHhcNMjMwMTAyMDg0NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzgzNGY1ODQ0YWU1NGYxZjE3YzA1ZTQ4NjFjNWM0ZGY5ZDY1MmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxjMh03539ImkZc/UdCmd94lvp/u
4N29nEEAXmNzNLO0PWFYWj9HGCbjYI7I52wcCZ22CdGgg+yI/4UhVB+agSaEzCPw
mbRnEbevOifIQIRnA8EJTcUpfyTqHPwXI9JvGvLFcAXIxaWI9vXCrT2T2Tst1uuf
UB9uigkcsr27g1RCaUN/xJB9Bi1ZjNRT/3F7f/RognWm7O82cbjzYy2PhtNnn1/w
uO+P6qaao3Wc3GX9k4Jaljo+r8R2nw1Z5/csaRKrh7AK4/ebIW8UcH/WphBsD+F+
CFW3o4zF+9uNuNI7BF83hxDhM+27ipl3qopUQ7YIwY6z/UqsVamOKkTsCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLODT1hErlTx8XwF5IYcXE351lKoMB8GA1UdIwQY
MBaAFK8DaBajF92Z0lODoypoGFnAR7X/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndOb0ZxTVgzWm5TVTRPakttZ1lXY0JIdGY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS81MmIxOTktOWUxZi00ZWM3LWIwYWEt
NGE0ZTBmNDI0ZjE3LzEvczROUFdFU3VWUEh4ZkFYa2hoeGNUZm5XVXFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS81MmIxOTktOWUxZi00ZWM3LWIwYWEtNGE0ZTBmNDI0ZjE3
LzEvcndOb0ZxTVgzWm5TVTRPakttZ1lXY0JIdGY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwrs4MA0G
CSqGSIb3DQEBCwUAA4IBAQA4s15Ai/k4VZVIAxX9FHOAw3qvpSp30rrFALhu6rmY
B6Za6IXdhzUh/QfctLuGGTsFmzAWmbclIDgJe1ZzuaAJjXei+DiOBUuWE7TGyT/N
vIp/XKRqr6bk5hh2sP0k9oUCrRR84xbBmwdElNEngGcDzolPcczSfxXJ1SXGYQSV
+Q+nqd44PQ+crkzH6BDRzE4Xx/PxQ5qKTYhqqLiV32xD2ZZrMEankfspE6+Obph8
fy2i4WSDL9iC+yqXww2oocp45i9bJVIgbGf4X5pNl5Ny16muqDS2ZwcoYgwV+XMS
my4+de1V6QSi4mRJKAFfwKejNA2uuNJlYzSGf4zHDqSc
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:57 2024 by rpki-client on console-ams.rpki-client.org