Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/DHU6K7JYezPyLJPhqXrEF7__ghA.roa
File: DHU6K7JYezPyLJPhqXrEF7__ghA.roa (raw, json)
Hash identifier: 0E3Xs9643aNjwaY4uD6SU9zBjGWs8JpDnHvZayr2Jzc=
Subject key identifier: 0C:75:3A:2B:B2:58:7B:33:F2:2C:93:E1:A9:7A:C4:17:BF:FF:82:10
Certificate issuer: /CN=e1977859d071f7150837b2acb4353ff33efd831c
Certificate serial: 01856B77C32A9B76DE95A15869FF0407F58C
Authority key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/DHU6K7JYezPyLJPhqXrEF7__ghA.roa
Signing time: Sun 01 Jan 2023 03:54:48 +0000
ROA not before: Sun 01 Jan 2023 03:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.221.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:c3:2a:9b:76:de:95:a1:58:69:ff:04:07:f5:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1977859d071f7150837b2acb4353ff33efd831c
Validity
Not Before: Jan 1 03:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c753a2bb2587b33f22c93e1a97ac417bfff8210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:22:4f:b3:80:4e:b7:95:e5:c2:ae:96:3d:fd:
77:da:40:90:92:41:a7:a1:b1:38:78:c9:3d:37:0b:
d8:e5:4a:ec:3f:7d:62:2e:9d:42:02:f7:43:98:b7:
da:70:76:c4:8e:8c:bd:94:a4:12:d0:aa:81:31:87:
a4:24:9f:7c:b0:78:24:4c:3f:21:b6:3e:5b:69:1c:
26:16:27:5c:6f:a9:8a:57:9e:e0:e4:7e:9f:86:8d:
e4:87:0b:59:07:6c:63:0f:cd:80:65:9f:b6:3e:b5:
bb:fe:10:47:12:76:c0:1a:fa:14:6d:40:2b:e2:db:
d8:9f:9c:08:12:51:fd:4c:47:fe:43:d6:a2:64:af:
cb:e6:d8:db:96:3c:65:ff:2f:94:75:4e:c5:1a:52:
73:f4:ba:d2:ca:ae:fe:8c:cd:80:9b:b5:98:82:19:
81:67:a7:3d:39:01:ee:0d:ba:e1:55:3f:41:51:e9:
93:d2:88:29:71:48:20:2d:c0:0d:4b:62:1b:94:b9:
ac:15:11:2e:97:18:53:e6:63:45:1d:57:9f:83:5b:
3d:e4:40:3b:92:20:c5:a1:a7:cf:57:08:1a:88:9e:
e7:8f:2a:a4:39:44:96:4b:c3:b9:42:6e:2b:09:01:
fc:9b:99:cf:8e:f4:52:7c:7c:6f:06:0e:93:6c:12:
7c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:75:3A:2B:B2:58:7B:33:F2:2C:93:E1:A9:7A:C4:17:BF:FF:82:10
X509v3 Authority Key Identifier:
keyid:E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/DHU6K7JYezPyLJPhqXrEF7__ghA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.125.0/24
Signature Algorithm: sha256WithRSAEncryption
41:69:4e:7e:2e:12:99:68:a5:da:82:47:03:10:14:dc:b4:e6:
4f:10:a0:01:ea:91:5a:64:48:9f:9d:0a:71:15:32:dc:ae:77:
a5:dc:78:74:cf:85:29:bc:f0:be:89:2a:4c:91:31:1d:0b:48:
40:48:12:27:66:2f:fe:38:ba:2c:82:aa:e8:af:15:01:f7:06:
21:29:a1:d6:e4:77:70:60:91:b4:3d:db:3f:5c:41:22:e4:af:
a2:61:e9:d3:8e:fb:46:21:57:45:dd:82:82:49:12:1c:5e:f7:
82:cc:e6:8d:76:7b:1e:98:15:a7:0b:d1:25:0f:9d:8c:33:31:
fb:86:fe:4b:8f:f7:e0:d7:96:a1:c6:7c:83:ee:03:46:3e:bf:
68:06:14:07:12:a8:43:da:fc:28:f5:9d:90:e7:9b:22:0d:d7:
5c:bf:cc:18:06:60:c1:cd:31:ef:32:80:0e:48:34:a8:1e:45:
6d:9e:c6:97:42:a4:2c:71:cb:03:6f:72:f9:83:8e:86:64:a0:
ff:05:ed:ae:8d:34:2c:77:6a:bc:a4:ca:ff:4d:3c:69:30:22:
3f:be:dc:57:ab:c2:34:20:31:ac:44:80:6c:7a:d9:2b:ce:8a:
4a:24:4d:29:47:77:f1:f2:6f:4e:d7:90:97:b3:f7:e3:8d:bc:
39:1b:c4:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrd8Mqm3belaFYaf8EB/WMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxOTc3ODU5ZDA3MWY3MTUwODM3YjJhY2I0MzUzZmYzM2Vm
ZDgzMWMwHhcNMjMwMTAxMDM1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzc1M2EyYmIyNTg3YjMzZjIyYzkzZTFhOTdhYzQxN2JmZmY4MjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyJPs4BOt5Xlwq6WPf132kCQkkGn
obE4eMk9NwvY5UrsP31iLp1CAvdDmLfacHbEjoy9lKQS0KqBMYekJJ98sHgkTD8h
tj5baRwmFidcb6mKV57g5H6fho3khwtZB2xjD82AZZ+2PrW7/hBHEnbAGvoUbUAr
4tvYn5wIElH9TEf+Q9aiZK/L5tjbljxl/y+UdU7FGlJz9LrSyq7+jM2Am7WYghmB
Z6c9OQHuDbrhVT9BUemT0ogpcUggLcANS2IblLmsFREulxhT5mNFHVefg1s95EA7
kiDFoafPVwgaiJ7njyqkOUSWS8O5Qm4rCQH8m5nPjvRSfHxvBg6TbBJ8YQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAx1OiuyWHsz8iyT4al6xBe//4IQMB8GA1UdIwQY
MBaAFOGXeFnQcfcVCDeyrLQ1P/M+/YMcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFpkNFdkQng5eFVJTjdLc3REVV84ejc5Z3h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni85ZDdjZDctZWU2My00ODg2LThmZTEt
YjVjZTZiNmZkNGQxLzEvREhVNks3SlllelB5TEpQaHFYckVGN19fZ2hBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni85ZDdjZDctZWU2My00ODg2LThmZTEtYjVjZTZiNmZkNGQx
LzEvNFpkNFdkQng5eFVJTjdLc3REVV84ejc5Z3h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwd19MA0G
CSqGSIb3DQEBCwUAA4IBAQBBaU5+LhKZaKXagkcDEBTctOZPEKAB6pFaZEifnQpx
FTLcrnel3Hh0z4UpvPC+iSpMkTEdC0hASBInZi/+OLosgqrorxUB9wYhKaHW5Hdw
YJG0Pds/XEEi5K+iYenTjvtGIVdF3YKCSRIcXveCzOaNdnsemBWnC9ElD52MMzH7
hv5Lj/fg15ahxnyD7gNGPr9oBhQHEqhD2vwo9Z2Q55siDddcv8wYBmDBzTHvMoAO
SDSoHkVtnsaXQqQsccsDb3L5g46GZKD/Be2ujTQsd2q8pMr/TTxpMCI/vtxXq8I0
IDGsRIBsetkrzopKJE0pR3fx8m9O15CXs/fjjbw5G8Tw
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:35 2024 by rpki-client on console-ams.rpki-client.org