Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/_q-WAyT8pwV2ab-unz5kA1cspI8.roa
File: _q-WAyT8pwV2ab-unz5kA1cspI8.roa (raw, json)
Hash identifier: RfsoFHjmu2UR7iQMfgE5sGOQ2e6jmX+B0PaiMaW31m0=
Subject key identifier: FE:AF:96:03:24:FC:A7:05:76:69:BF:AE:9F:3E:64:03:57:2C:A4:8F
Certificate issuer: /CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Certificate serial: 018D9FB5182DC2EBA4597FFF566319571BCD
Authority key identifier: 94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/_q-WAyT8pwV2ab-unz5kA1cspI8.roa
Signing time: Mon 12 Feb 2024 23:44:21 +0000
ROA not before: Mon 12 Feb 2024 23:44:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15626
IP address blocks: 193.238.152.0/23 maxlen: 23
2a05:9407::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 09 Apr 2024 19:20:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:9f:b5:18:2d:c2:eb:a4:59:7f:ff:56:63:19:57:1b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94d98e8fec680775a157266e0c6b78b141a34f5e
Validity
Not Before: Feb 12 23:44:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=feaf960324fca7057669bfae9f3e6403572ca48f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:28:b8:3c:00:22:98:71:d8:07:88:f0:c8:3a:
d2:18:69:60:93:2f:83:af:b6:a8:41:77:2a:1e:9e:
ae:81:43:25:9e:f4:9e:de:c3:19:43:0d:21:dd:76:
cf:0b:70:38:3a:d1:bd:21:14:af:5d:43:b7:03:b9:
2a:75:13:55:0b:6e:3c:c7:0e:aa:4b:1a:c7:2c:ed:
8c:7b:41:61:46:5a:a9:9d:e8:e8:80:a2:c4:20:25:
f4:0a:e0:92:bf:5c:e6:a0:3c:02:d9:22:26:56:a4:
b3:42:cb:cf:ef:9c:ac:2f:0d:26:6e:cc:73:b1:1a:
f7:d9:47:1b:88:8b:80:52:ee:98:77:15:0a:35:96:
a7:20:e5:d4:db:78:f8:8e:31:e1:75:80:80:3b:52:
59:72:13:da:ad:e6:fe:e5:25:2c:39:55:a8:0c:7e:
b7:c7:69:2d:c9:7c:2d:99:c0:c1:70:05:93:1a:42:
a7:5f:78:2e:50:7d:9c:af:0e:3c:b1:ae:a6:a0:50:
cb:81:72:2f:5c:54:de:f8:cd:1e:38:d3:84:2a:9a:
eb:5e:dc:48:ef:01:e8:99:7b:ec:ee:2b:bb:3a:5c:
e0:ee:72:68:db:1f:98:f9:13:5b:e6:fb:63:65:85:
77:0c:4a:c7:b6:79:7d:97:44:3e:8e:e3:1e:51:5d:
78:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AF:96:03:24:FC:A7:05:76:69:BF:AE:9F:3E:64:03:57:2C:A4:8F
X509v3 Authority Key Identifier:
keyid:94:D9:8E:8F:EC:68:07:75:A1:57:26:6E:0C:6B:78:B1:41:A3:4F:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lNmOj-xoB3WhVyZuDGt4sUGjT14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/_q-WAyT8pwV2ab-unz5kA1cspI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ae3c7-67e4-44de-b139-87d17df74c7e/1/lNmOj-xoB3WhVyZuDGt4sUGjT14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.152.0/23
IPv6:
2a05:9407::/32
Signature Algorithm: sha256WithRSAEncryption
0b:5b:e0:30:91:bf:c7:c5:f5:13:05:b9:f8:b7:a3:7e:be:f7:
09:3d:20:b4:06:6d:da:e8:12:47:19:23:28:c2:30:2c:35:2b:
fd:c0:e3:ba:09:28:3d:6a:02:53:1c:39:19:e3:43:73:b2:67:
10:75:e0:17:ea:ff:70:c5:6f:4b:0d:9e:c0:2f:cb:12:0a:19:
49:7c:03:14:1e:d7:a3:f3:5c:79:58:d4:cb:aa:b3:01:f0:c5:
c0:a0:97:f2:b5:f6:3e:eb:43:73:e3:89:42:65:9d:ab:57:46:
42:58:0e:c0:b7:e9:44:ad:51:de:da:04:04:c5:f7:92:21:47:
19:3c:66:e0:3f:0f:1b:11:20:9d:63:84:c1:c5:c0:e4:0e:8f:
73:a5:c0:7a:fd:07:af:0d:c6:5e:98:9b:8c:d0:60:fa:b6:e4:
fa:82:dd:a0:c8:62:e4:ac:57:83:34:30:5d:27:4e:71:63:56:
06:c9:5a:19:37:79:00:63:7b:3c:3a:91:fe:95:b5:d3:54:84:
35:34:17:e0:f5:61:bf:ee:83:b0:45:ae:5a:a9:b4:f9:01:99:
59:e9:10:1c:9d:8a:bf:da:6a:28:c5:83:ac:99:82:35:f0:84:
37:4d:58:99:97:01:6a:a0:b9:46:76:46:2d:97:34:91:63:20:
5a:27:68:f7
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY2ftRgtwuukWX//VmMZVxvNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZDk4ZThmZWM2ODA3NzVhMTU3MjY2ZTBjNmI3OGIxNDFh
MzRmNWUwHhcNMjQwMjEyMjM0NDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZWFmOTYwMzI0ZmNhNzA1NzY2OWJmYWU5ZjNlNjQwMzU3MmNhNDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiii4PAAimHHYB4jwyDrSGGlgky+D
r7aoQXcqHp6ugUMlnvSe3sMZQw0h3XbPC3A4OtG9IRSvXUO3A7kqdRNVC248xw6q
SxrHLO2Me0FhRlqpnejogKLEICX0CuCSv1zmoDwC2SImVqSzQsvP75ysLw0mbsxz
sRr32UcbiIuAUu6YdxUKNZanIOXU23j4jjHhdYCAO1JZchPareb+5SUsOVWoDH63
x2ktyXwtmcDBcAWTGkKnX3guUH2crw48sa6moFDLgXIvXFTe+M0eONOEKprrXtxI
7wHomXvs7iu7Olzg7nJo2x+Y+RNb5vtjZYV3DErHtnl9l0Q+juMeUV143wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFP6vlgMk/KcFdmm/rp8+ZANXLKSPMB8GA1UdIwQY
MBaAFJTZjo/saAd1oVcmbgxreLFBo09eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzkt
ODdkMTdkZjc0YzdlLzEvX3EtV0F5VDhwd1YyYWItdW56NWtBMWNzcEk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi83YWUzYzctNjdlNC00NGRlLWIxMzktODdkMTdkZjc0Yzdl
LzEvbE5tT2oteG9CM1doVnladURHdDRzVUdqVDE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwe6YMA0E
AgACMAcDBQAqBZQHMA0GCSqGSIb3DQEBCwUAA4IBAQALW+Awkb/HxfUTBbn4t6N+
vvcJPSC0Bm3a6BJHGSMowjAsNSv9wOO6CSg9agJTHDkZ40NzsmcQdeAX6v9wxW9L
DZ7AL8sSChlJfAMUHtej81x5WNTLqrMB8MXAoJfytfY+60Nz44lCZZ2rV0ZCWA7A
t+lErVHe2gQExfeSIUcZPGbgPw8bESCdY4TBxcDkDo9zpcB6/QevDcZemJuM0GD6
tuT6gt2gyGLkrFeDNDBdJ05xY1YGyVoZN3kAY3s8OpH+lbXTVIQ1NBfg9WG/7oOw
Ra5aqbT5AZlZ6RAcnYq/2mooxYOsmYI18IQ3TViZlwFqoLlGdkYtlzSRYyBaJ2j3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:52 2024 by rpki-client on console-fra.rpki-client.org