Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/JIqVTJPziSvmo7xTx9YkPPIG0-M.roa
File: JIqVTJPziSvmo7xTx9YkPPIG0-M.roa (raw, json)
Hash identifier: 1ZfVcOjc253VXERsAjdly3ON3NtysmUrbQ5E0b3nOUY=
Subject key identifier: 24:8A:95:4C:93:F3:89:2B:E6:A3:BC:53:C7:D6:24:3C:F2:06:D3:E3
Certificate issuer: /CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Certificate serial: 01856BC10228D9556051F0B1B78179FFCCA1
Authority key identifier: B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/JIqVTJPziSvmo7xTx9YkPPIG0-M.roa
Signing time: Sun 01 Jan 2023 05:14:49 +0000
ROA not before: Sun 01 Jan 2023 05:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12637
IP address blocks: 193.200.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:c1:02:28:d9:55:60:51:f0:b1:b7:81:79:ff:cc:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2af8f1774e05925f24e41dee69e5b623d9ac63d
Validity
Not Before: Jan 1 05:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=248a954c93f3892be6a3bc53c7d6243cf206d3e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d9:e9:4b:40:50:2d:57:00:ba:b2:df:85:4f:
dd:c1:9e:0f:53:fc:e8:44:3e:dd:64:10:6b:2c:6d:
25:41:6a:94:f9:e7:c5:d6:57:e9:55:a5:34:48:da:
42:5c:30:04:68:15:a7:78:62:98:a8:49:a2:05:12:
70:9f:e3:6e:6c:c9:4b:f4:45:60:62:01:b1:ae:5e:
11:b6:22:5e:f3:82:98:26:8b:47:da:5b:e2:ea:a9:
38:08:c9:f0:a6:dd:f7:16:b2:5c:a5:88:cc:6d:52:
75:b7:80:64:ec:e6:08:9c:06:b3:54:4f:9e:6c:30:
92:b3:a0:1c:a6:eb:c3:fe:ab:31:fb:e7:21:fc:6d:
79:6f:d8:75:ce:21:3f:9f:18:93:7a:99:d0:be:a6:
db:69:55:5b:75:2c:00:96:68:01:2c:26:88:6c:b3:
2c:3f:5e:84:a1:9b:a2:52:3e:ee:5e:d8:0e:d8:ac:
c3:33:54:6b:2b:10:cf:fa:21:7e:96:d8:ef:13:b7:
88:22:63:85:be:16:5d:2a:9b:fe:e4:af:28:01:1e:
dd:16:71:21:83:45:90:da:5d:9d:5f:ce:50:d9:c7:
f8:bc:23:1d:8b:ff:6a:3e:9a:41:60:2e:c4:70:1a:
8e:13:e6:32:1c:15:2f:02:cc:c3:26:c6:b5:6a:0a:
4a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8A:95:4C:93:F3:89:2B:E6:A3:BC:53:C7:D6:24:3C:F2:06:D3:E3
X509v3 Authority Key Identifier:
keyid:B2:AF:8F:17:74:E0:59:25:F2:4E:41:DE:E6:9E:5B:62:3D:9A:C6:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sq-PF3TgWSXyTkHe5p5bYj2axj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/JIqVTJPziSvmo7xTx9YkPPIG0-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c15671-ba1b-48f2-b691-fa57c126bc2a/1/sq-PF3TgWSXyTkHe5p5bYj2axj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.3.0/24
Signature Algorithm: sha256WithRSAEncryption
11:94:ad:ac:6c:cd:a1:47:92:9d:d2:e5:66:2e:72:c5:91:c8:
3d:56:23:76:a6:fa:54:85:19:c3:fb:da:28:c6:57:9c:8c:01:
55:8d:ec:21:08:8e:ba:2c:32:27:ce:88:32:11:0c:3a:11:6a:
52:f8:7a:ed:ce:b9:57:61:0d:de:c8:16:98:80:48:ff:b8:29:
4a:a1:d4:11:36:3c:59:80:93:bc:4b:4d:2e:48:09:fe:b8:ff:
49:b9:3c:9f:51:b4:db:54:d1:7c:15:df:a7:5e:a8:fd:a3:6c:
67:a2:9d:4c:a5:8a:da:8e:c5:b6:a3:c9:2e:3d:db:af:8d:d5:
25:9d:a3:7e:73:96:94:b4:70:e6:42:d3:9b:68:b7:8a:8c:1d:
17:65:bc:31:1e:de:80:b4:6e:84:ab:1e:cb:88:23:4c:d4:8b:
8d:32:da:98:8f:64:df:01:66:77:af:81:37:70:29:7a:6e:b9:
4f:77:45:ff:e0:9b:42:ab:7c:37:19:12:15:64:c7:c9:d5:9a:
6e:85:0b:30:2a:85:be:d7:b3:e3:17:ae:43:3d:74:a6:8a:6f:
01:d7:0a:44:8a:cf:96:83:7d:41:99:4b:35:fe:fb:a1:da:b6:
27:bb:78:e9:75:ee:96:eb:85:f0:ad:6f:1a:81:f6:c4:ef:96:
60:3a:3f:f4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrwQIo2VVgUfCxt4F5/8yhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYWY4ZjE3NzRlMDU5MjVmMjRlNDFkZWU2OWU1YjYyM2Q5
YWM2M2QwHhcNMjMwMTAxMDUxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDhhOTU0YzkzZjM4OTJiZTZhM2JjNTNjN2Q2MjQzY2YyMDZkM2UzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtnpS0BQLVcAurLfhU/dwZ4PU/zo
RD7dZBBrLG0lQWqU+efF1lfpVaU0SNpCXDAEaBWneGKYqEmiBRJwn+NubMlL9EVg
YgGxrl4RtiJe84KYJotH2lvi6qk4CMnwpt33FrJcpYjMbVJ1t4Bk7OYInAazVE+e
bDCSs6AcpuvD/qsx++ch/G15b9h1ziE/nxiTepnQvqbbaVVbdSwAlmgBLCaIbLMs
P16EoZuiUj7uXtgO2KzDM1RrKxDP+iF+ltjvE7eIImOFvhZdKpv+5K8oAR7dFnEh
g0WQ2l2dX85Q2cf4vCMdi/9qPppBYC7EcBqOE+YyHBUvAszDJsa1agpKHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCSKlUyT84kr5qO8U8fWJDzyBtPjMB8GA1UdIwQY
MBaAFLKvjxd04Fkl8k5B3uaeW2I9msY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9jMTU2NzEtYmExYi00OGYyLWI2OTEt
ZmE1N2MxMjZiYzJhLzEvSklxVlRKUHppU3Ztbzd4VHg5WWtQUElHMC1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9jMTU2NzEtYmExYi00OGYyLWI2OTEtZmE1N2MxMjZiYzJh
LzEvc3EtUEYzVGdXU1h5VGtIZTVwNWJZajJheGowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcgDMA0G
CSqGSIb3DQEBCwUAA4IBAQARlK2sbM2hR5Kd0uVmLnLFkcg9ViN2pvpUhRnD+9oo
xlecjAFVjewhCI66LDInzogyEQw6EWpS+HrtzrlXYQ3eyBaYgEj/uClKodQRNjxZ
gJO8S00uSAn+uP9JuTyfUbTbVNF8Fd+nXqj9o2xnop1MpYrajsW2o8kuPduvjdUl
naN+c5aUtHDmQtObaLeKjB0XZbwxHt6AtG6Eqx7LiCNM1IuNMtqYj2TfAWZ3r4E3
cCl6brlPd0X/4JtCq3w3GRIVZMfJ1ZpuhQswKoW+17PjF65DPXSmim8B1wpEis+W
g31BmUs1/vuh2rYnu3jpde6W64XwrW8agfbE75ZgOj/0
-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:44 2024 by rpki-client on console-ams.rpki-client.org