Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/cp45Gr1w88K5iwa7Md3EIl08omI.roa
File: cp45Gr1w88K5iwa7Md3EIl08omI.roa (raw, json)
Hash identifier: QBixl9D/SbNlCnz1MVVUUokgjW+DAKq4N0uN4c1qmT0=
Subject key identifier: 72:9E:39:1A:BD:70:F3:C2:B9:8B:06:BB:31:DD:C4:22:5D:3C:A2:62
Certificate issuer: /CN=bbf4e1fdb424a9120223b3a75c6ccc31b6f6224a
Certificate serial: 018572BA55D90A5C8304B1E08954858C605B
Authority key identifier: BB:F4:E1:FD:B4:24:A9:12:02:23:B3:A7:5C:6C:CC:31:B6:F6:22:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/cp45Gr1w88K5iwa7Md3EIl08omI.roa
Signing time: Mon 02 Jan 2023 13:44:52 +0000
ROA not before: Mon 02 Jan 2023 13:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24961
IP address blocks: 193.176.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:55:d9:0a:5c:83:04:b1:e0:89:54:85:8c:60:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf4e1fdb424a9120223b3a75c6ccc31b6f6224a
Validity
Not Before: Jan 2 13:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=729e391abd70f3c2b98b06bb31ddc4225d3ca262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:dd:fd:7b:5e:99:b3:82:7b:a0:5f:12:e4:2a:
ff:a3:89:21:91:ce:8d:e3:83:8e:49:62:9b:1f:f4:
18:c5:79:64:05:ba:2d:10:7e:79:76:6a:96:3f:77:
78:af:13:96:b4:4e:fe:09:8a:25:24:6c:de:6b:ad:
b8:ea:a7:31:c7:7a:a9:31:bc:15:29:aa:24:cf:04:
1b:0f:9f:fe:9c:61:59:05:38:b6:e0:fc:9e:34:88:
f4:ea:b3:45:62:36:66:9a:de:5e:ac:29:ef:63:d9:
08:b7:56:7a:1d:76:45:75:0a:79:2c:38:b0:51:09:
f7:7c:57:cd:44:c0:f6:eb:2c:d9:c9:44:a7:b2:a7:
fa:62:84:3b:ce:6c:5a:43:35:11:ce:2d:0a:0c:f0:
dd:0a:ab:1c:d4:7b:80:b8:ca:d7:31:74:f2:86:db:
8b:80:51:7e:ee:62:af:51:f6:3b:86:28:3d:c0:d0:
00:0e:ae:f3:8f:c0:8e:8c:f8:9e:c7:6f:fb:92:8b:
c1:88:7b:e9:71:00:cc:ee:a3:e8:12:d7:19:1e:76:
08:07:cf:8d:9e:70:e2:05:79:65:21:6b:cd:c4:4b:
41:24:f5:a3:d5:d1:71:12:2f:80:48:b5:05:b9:73:
9e:a3:42:93:af:94:c3:74:37:e4:de:18:e7:28:8e:
ad:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9E:39:1A:BD:70:F3:C2:B9:8B:06:BB:31:DD:C4:22:5D:3C:A2:62
X509v3 Authority Key Identifier:
keyid:BB:F4:E1:FD:B4:24:A9:12:02:23:B3:A7:5C:6C:CC:31:B6:F6:22:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_Th_bQkqRICI7OnXGzMMbb2Iko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/cp45Gr1w88K5iwa7Md3EIl08omI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/11cd10-3ef7-4105-8248-ba51323db4e5/1/u_Th_bQkqRICI7OnXGzMMbb2Iko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.1.0/24
Signature Algorithm: sha256WithRSAEncryption
38:50:d0:58:42:cf:fd:77:c0:65:2e:2f:0b:54:2c:9a:88:ae:
ab:4d:ca:75:f5:1c:df:95:47:ef:50:95:d4:3c:37:f4:1c:39:
c4:1b:73:af:a0:67:bd:32:79:80:1c:0e:59:30:1b:c7:57:d9:
a8:39:64:da:12:b2:64:e3:fa:ca:3c:20:38:8c:26:82:d6:94:
23:e5:c9:aa:c0:2c:bf:c7:47:a8:96:44:44:26:32:31:49:a3:
ef:3f:f4:43:98:6b:9f:1b:95:5c:7b:93:1f:d2:16:7e:af:8d:
ad:71:9d:84:d2:12:a9:b8:3e:d6:36:54:7a:fe:b8:d9:a1:d2:
82:c2:47:01:a1:74:5b:47:bf:18:e8:b8:7c:6b:53:35:4f:2e:
34:03:95:c3:42:b7:7a:9e:08:87:71:46:12:0a:2b:e9:cc:d1:
0a:af:dd:35:a3:47:77:15:24:b6:bd:85:54:f0:4c:95:41:0d:
0f:8b:77:09:4c:80:4c:85:0c:59:f6:74:8d:0f:dc:d1:df:26:
c2:d2:5a:53:7f:2e:77:05:d4:b5:91:c0:f5:f3:fe:df:89:8a:
e6:f2:2f:3b:72:b6:28:77:61:33:c2:f1:5f:35:41:17:de:24:
6f:8d:bb:0e:a2:b7:53:0e:d4:3d:f2:d5:78:d3:63:49:77:0f:
ea:90:e3:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyulXZClyDBLHgiVSFjGBbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZjRlMWZkYjQyNGE5MTIwMjIzYjNhNzVjNmNjYzMxYjZm
NjIyNGEwHhcNMjMwMTAyMTM0NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjllMzkxYWJkNzBmM2MyYjk4YjA2YmIzMWRkYzQyMjVkM2NhMjYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg939e16Zs4J7oF8S5Cr/o4khkc6N
44OOSWKbH/QYxXlkBbotEH55dmqWP3d4rxOWtE7+CYolJGzea6246qcxx3qpMbwV
KaokzwQbD5/+nGFZBTi24PyeNIj06rNFYjZmmt5erCnvY9kIt1Z6HXZFdQp5LDiw
UQn3fFfNRMD26yzZyUSnsqf6YoQ7zmxaQzURzi0KDPDdCqsc1HuAuMrXMXTyhtuL
gFF+7mKvUfY7hig9wNAADq7zj8COjPiex2/7kovBiHvpcQDM7qPoEtcZHnYIB8+N
nnDiBXllIWvNxEtBJPWj1dFxEi+ASLUFuXOeo0KTr5TDdDfk3hjnKI6tMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHKeORq9cPPCuYsGuzHdxCJdPKJiMB8GA1UdIwQY
MBaAFLv04f20JKkSAiOzp1xszDG29iJKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdV9UaF9iUWtxUklDSTdPblhHek1NYmIySWtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xMWNkMTAtM2VmNy00MTA1LTgyNDgt
YmE1MTMyM2RiNGU1LzEvY3A0NUdyMXc4OEs1aXdhN01kM0VJbDA4b21JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8xMWNkMTAtM2VmNy00MTA1LTgyNDgtYmE1MTMyM2RiNGU1
LzEvdV9UaF9iUWtxUklDSTdPblhHek1NYmIySWtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbABMA0G
CSqGSIb3DQEBCwUAA4IBAQA4UNBYQs/9d8BlLi8LVCyaiK6rTcp19RzflUfvUJXU
PDf0HDnEG3OvoGe9MnmAHA5ZMBvHV9moOWTaErJk4/rKPCA4jCaC1pQj5cmqwCy/
x0eolkREJjIxSaPvP/RDmGufG5Vce5Mf0hZ+r42tcZ2E0hKpuD7WNlR6/rjZodKC
wkcBoXRbR78Y6Lh8a1M1Ty40A5XDQrd6ngiHcUYSCivpzNEKr901o0d3FSS2vYVU
8EyVQQ0Pi3cJTIBMhQxZ9nSND9zR3ybC0lpTfy53BdS1kcD18/7fiYrm8i87crYo
d2EzwvFfNUEX3iRvjbsOordTDtQ98tV402NJdw/qkOO1
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:18 2024 by rpki-client on console-fra.rpki-client.org