Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/IUbUeWHEMnYSOQ893z00wX5TbUs.roa
File: IUbUeWHEMnYSOQ893z00wX5TbUs.roa (raw, json)
Hash identifier: p7eFAfYuPyU1xKpQUwp33cAgqTb64+XNdEkVAWhmC2M=
Subject key identifier: 21:46:D4:79:61:C4:32:76:12:39:0F:3D:DF:3D:34:C1:7E:53:6D:4B
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 018572B43D7B18A044842C1DE5209F20E407
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/IUbUeWHEMnYSOQ893z00wX5TbUs.roa
Signing time: Mon 02 Jan 2023 13:38:12 +0000
ROA not before: Mon 02 Jan 2023 13:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50128
IP address blocks: 194.1.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:3d:7b:18:a0:44:84:2c:1d:e5:20:9f:20:e4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Jan 2 13:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2146d47961c4327612390f3ddf3d34c17e536d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:42:10:0f:aa:4c:7c:5b:d5:9a:c9:2b:bc:
af:bc:f1:ea:eb:2b:60:84:58:f6:d0:7b:11:92:d9:
61:78:bc:51:c3:4c:0c:7a:ae:79:89:f5:4e:c5:64:
19:ab:93:f4:75:aa:ba:c4:e4:e1:52:c4:08:b2:2c:
14:0d:e3:4a:b5:3c:49:f2:0d:85:ac:61:e0:9a:9c:
cd:eb:93:60:27:fb:c9:ae:cc:57:24:a2:3e:bc:53:
58:3d:2a:95:db:c5:24:9b:eb:92:c7:4f:59:5f:c7:
02:62:1a:34:bf:3a:92:ef:7a:0d:a5:37:30:97:08:
d9:b8:e4:a3:9f:65:0d:c9:23:8f:59:9e:29:a8:74:
de:13:01:fa:8f:0a:bb:6a:97:cf:0e:41:11:37:5e:
5b:62:f6:4a:5c:2b:79:a4:77:ca:f7:0d:63:74:5d:
4e:ee:be:73:e3:d8:5e:89:c4:13:6e:1a:af:7d:3a:
8f:c7:d5:0c:a6:36:d6:db:85:18:43:7c:bd:56:95:
10:fa:3a:bd:92:ff:a6:c3:45:65:3a:3e:4f:5e:30:
ce:49:a4:ee:33:a6:a5:f4:d3:a2:dd:05:11:c6:2a:
0d:25:9a:27:54:62:97:b3:41:da:fe:31:98:71:75:
c3:92:16:48:b5:4b:75:01:0a:a2:1e:35:cb:f3:b6:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:46:D4:79:61:C4:32:76:12:39:0F:3D:DF:3D:34:C1:7E:53:6D:4B
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/IUbUeWHEMnYSOQ893z00wX5TbUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.130.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:47:90:c4:66:10:c2:43:0f:a6:b0:7a:e6:b2:2f:27:51:57:
65:19:af:2b:d1:6b:87:9d:29:dd:2b:ee:85:4d:43:3a:e6:6a:
60:b6:e8:30:18:c4:a7:aa:f3:6d:fb:ec:62:9f:39:41:0d:6a:
36:39:cc:e3:de:b2:26:ba:16:23:8d:f1:1e:fc:c4:d7:45:9f:
c8:96:61:c0:ff:ba:40:40:7a:be:81:98:75:c9:80:47:3b:82:
50:b0:7b:28:65:d4:d7:91:6e:89:e0:39:ae:90:e1:17:50:86:
c2:6b:c7:2f:52:9b:51:d1:be:46:e5:a1:df:0d:5b:d5:d1:c3:
39:0b:fa:1a:8e:7e:f5:ae:1a:fb:e9:08:2e:d3:80:64:86:6d:
4f:bb:63:cc:2a:6c:dc:84:9c:3f:50:6b:98:cd:64:db:c6:6b:
4e:af:fd:cd:07:bd:2a:60:67:cf:2d:53:f8:6c:49:df:64:bc:
14:87:97:35:d2:4c:03:f3:b0:78:ad:0c:c6:44:ca:97:c9:1e:
9c:5c:44:31:2e:19:fc:e5:b0:7a:f5:08:13:4a:a3:8a:e7:5f:
78:07:0e:b1:1b:3f:21:0d:e4:96:6b:a9:16:d0:d2:ec:f5:9d:
a9:f2:2d:b2:44:f7:8b:8a:4d:80:da:c6:97:b9:ef:0e:31:ec:
40:e6:8e:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytD17GKBEhCwd5SCfIOQHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NjJkNWE2N2I3YTIwZjg2NWU3NTMxNjNhNmVkMGU1ZjM0
N2U4MzkwHhcNMjMwMTAyMTMzODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTQ2ZDQ3OTYxYzQzMjc2MTIzOTBmM2RkZjNkMzRjMTdlNTM2ZDRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl85CEA+qTHxb1ZrJK7yvvPHq6ytg
hFj20HsRktlheLxRw0wMeq55ifVOxWQZq5P0daq6xOThUsQIsiwUDeNKtTxJ8g2F
rGHgmpzN65NgJ/vJrsxXJKI+vFNYPSqV28Ukm+uSx09ZX8cCYho0vzqS73oNpTcw
lwjZuOSjn2UNySOPWZ4pqHTeEwH6jwq7apfPDkERN15bYvZKXCt5pHfK9w1jdF1O
7r5z49heicQTbhqvfTqPx9UMpjbW24UYQ3y9VpUQ+jq9kv+mw0VlOj5PXjDOSaTu
M6al9NOi3QURxioNJZonVGKXs0Ha/jGYcXXDkhZItUt1AQqiHjXL87YX3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCFG1HlhxDJ2EjkPPd89NMF+U21LMB8GA1UdIwQY
MBaAFAVi1aZ7eiD4ZedTFjpu0OXzR+g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQldMVnBudDZJUGhsNTFNV09tN1E1Zk5INkRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi84YjAxYzItZWNiZS00Zjg4LWFlMzct
NTA0YzhmYzIyMGVhLzEvSVViVWVXSEVNbllTT1E4OTN6MDB3WDVUYlVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi84YjAxYzItZWNiZS00Zjg4LWFlMzctNTA0YzhmYzIyMGVh
LzEvQldMVnBudDZJUGhsNTFNV09tN1E1Zk5INkRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgGCMA0G
CSqGSIb3DQEBCwUAA4IBAQArR5DEZhDCQw+msHrmsi8nUVdlGa8r0WuHnSndK+6F
TUM65mpgtugwGMSnqvNt++xinzlBDWo2Oczj3rImuhYjjfEe/MTXRZ/IlmHA/7pA
QHq+gZh1yYBHO4JQsHsoZdTXkW6J4DmukOEXUIbCa8cvUptR0b5G5aHfDVvV0cM5
C/oajn71rhr76Qgu04Bkhm1Pu2PMKmzchJw/UGuYzWTbxmtOr/3NB70qYGfPLVP4
bEnfZLwUh5c10kwD87B4rQzGRMqXyR6cXEQxLhn85bB69QgTSqOK5194Bw6xGz8h
DeSWa6kW0NLs9Z2p8i2yRPeLik2A2saXue8OMexA5o6C
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org