Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/D7VEMO4xc9ktK3LFEfQExu4Yytk.roa
File: D7VEMO4xc9ktK3LFEfQExu4Yytk.roa (raw, json)
Hash identifier: leQI2hXUeZxv5yJbYCVCwjE05jt96N4U0qw2BKUSMjw=
Subject key identifier: 0F:B5:44:30:EE:31:73:D9:2D:2B:72:C5:11:F4:04:C6:EE:18:CA:D9
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01856F54B556477EE02457248F490775621E
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/D7VEMO4xc9ktK3LFEfQExu4Yytk.roa
Signing time: Sun 01 Jan 2023 21:55:00 +0000
ROA not before: Sun 01 Jan 2023 21:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39616
IP address blocks: 194.242.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b5:56:47:7e:e0:24:57:24:8f:49:07:75:62:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fb54430ee3173d92d2b72c511f404c6ee18cad9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:e7:20:c3:e0:7b:82:6b:74:fc:7f:25:9e:
f9:de:e5:cc:02:0f:a3:54:f5:96:c8:fe:cb:79:35:
61:9e:83:d4:29:13:8b:4f:8f:53:0c:ac:11:84:c9:
b7:aa:fe:5b:55:20:cb:62:80:87:6a:8d:fc:e1:cd:
8e:33:da:c8:5f:e9:fe:4d:b3:6e:7a:97:c1:15:c7:
87:28:6e:86:ef:ab:8b:8d:44:07:5c:dd:09:3e:b2:
37:10:d4:f1:f8:8a:29:02:96:85:67:e9:7f:00:56:
bb:c5:01:c4:ad:ff:41:28:1a:46:83:37:d8:be:a5:
fa:68:0d:ca:bc:c1:ac:4e:6c:d1:29:94:cb:78:a5:
44:88:4d:74:21:c3:c7:ce:13:10:33:16:9a:19:ff:
01:18:00:0d:ef:ba:47:99:78:1a:c3:69:d2:33:03:
71:3f:9c:2a:8d:3d:59:d2:ed:13:bb:4f:d9:b0:b5:
a2:0e:6c:71:c7:c3:1e:83:33:fd:e9:08:dd:4b:38:
ae:5c:65:5b:7e:af:30:2e:29:3f:cd:02:aa:7a:e5:
1c:8d:c0:40:58:06:51:98:6f:ca:5d:19:0f:09:3c:
92:09:8a:05:cb:8c:9b:e5:d8:d7:7d:5d:38:ef:9a:
60:52:d6:4d:f1:58:23:45:3d:b9:f0:7f:c0:9c:f2:
24:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B5:44:30:EE:31:73:D9:2D:2B:72:C5:11:F4:04:C6:EE:18:CA:D9
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/D7VEMO4xc9ktK3LFEfQExu4Yytk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.63.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:0a:b5:ef:a7:01:ea:85:22:7f:fe:77:a0:06:7d:36:72:2b:
22:c8:b9:24:cd:95:77:6e:13:4e:03:e1:c5:d6:ba:bb:9b:57:
6b:7c:32:e6:a5:1c:8c:c4:56:cf:8b:9e:13:64:4f:5c:d9:2b:
1c:60:ba:37:37:33:26:e2:51:14:65:db:34:7f:b4:f2:42:23:
e0:62:de:df:e3:11:bf:70:ba:48:4b:68:74:49:5a:10:78:fd:
d0:ad:9e:90:d7:aa:0d:7b:09:54:dd:36:a5:ed:f3:f3:da:98:
5c:bc:6e:c9:75:90:ed:84:f8:db:a2:6f:da:a1:38:10:d9:c9:
b4:1c:56:c7:83:74:7f:68:e3:af:8f:76:92:2d:0b:7b:e8:e7:
9d:a4:a5:d3:62:f5:ab:7f:cd:45:a1:61:2d:c4:db:84:d7:64:
ef:2d:3a:50:1c:f1:37:b0:ce:5b:44:ff:be:3d:0b:cd:2b:59:
ae:bd:b4:b3:27:70:9a:8a:d4:6b:c1:26:29:aa:7a:ab:10:19:
16:9c:8b:96:4c:ba:3c:3a:5f:5e:26:b2:ec:35:b2:bc:6a:e1:
31:e4:50:08:0a:15:a2:b9:3f:55:3b:55:1d:45:e9:6e:b6:df:
42:37:08:ae:b3:79:85:57:20:cf:ca:4b:b8:df:ed:3d:e1:80:
25:3a:54:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVLVWR37gJFckj0kHdWIeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwMTAxMjE1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmI1NDQzMGVlMzE3M2Q5MmQyYjcyYzUxMWY0MDRjNmVlMThjYWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK/nIMPge4JrdPx/JZ753uXMAg+j
VPWWyP7LeTVhnoPUKROLT49TDKwRhMm3qv5bVSDLYoCHao384c2OM9rIX+n+TbNu
epfBFceHKG6G76uLjUQHXN0JPrI3ENTx+IopApaFZ+l/AFa7xQHErf9BKBpGgzfY
vqX6aA3KvMGsTmzRKZTLeKVEiE10IcPHzhMQMxaaGf8BGAAN77pHmXgaw2nSMwNx
P5wqjT1Z0u0Tu0/ZsLWiDmxxx8MegzP96QjdSziuXGVbfq8wLik/zQKqeuUcjcBA
WAZRmG/KXRkPCTySCYoFy4yb5djXfV0475pgUtZN8VgjRT258H/AnPIk+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA+1RDDuMXPZLStyxRH0BMbuGMrZMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvRDdWRU1PNHhjOWt0SzNMRkVmUUV4dTRZeXRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwvI/MA0G
CSqGSIb3DQEBCwUAA4IBAQCbCrXvpwHqhSJ//negBn02cisiyLkkzZV3bhNOA+HF
1rq7m1drfDLmpRyMxFbPi54TZE9c2SscYLo3NzMm4lEUZds0f7TyQiPgYt7f4xG/
cLpIS2h0SVoQeP3QrZ6Q16oNewlU3Tal7fPz2phcvG7JdZDthPjbom/aoTgQ2cm0
HFbHg3R/aOOvj3aSLQt76OedpKXTYvWrf81FoWEtxNuE12TvLTpQHPE3sM5bRP++
PQvNK1muvbSzJ3CaitRrwSYpqnqrEBkWnIuWTLo8Ol9eJrLsNbK8auEx5FAIChWi
uT9VO1UdRelutt9CNwius3mFVyDPyku43+094YAlOlQ2
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:43 2024 by rpki-client on console-ams.rpki-client.org