Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/LUntYx9q6ky3_af9M9h7OBF6YeY.roa
File: LUntYx9q6ky3_af9M9h7OBF6YeY.roa (raw, json)
Hash identifier: s+BKJ6ZHBRhYucPmugIJBlFUPLQEhZVmfg1kQRYm7xY=
Subject key identifier: 2D:49:ED:63:1F:6A:EA:4C:B7:FD:A7:FD:33:D8:7B:38:11:7A:61:E6
Certificate issuer: /CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Certificate serial: 018B76C7526ECE663D49D1ADD6F7E0F7E4F1
Authority key identifier: F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/LUntYx9q6ky3_af9M9h7OBF6YeY.roa
Signing time: Sat 28 Oct 2023 14:54:16 +0000
ROA not before: Sat 28 Oct 2023 14:54:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399486
IP address blocks: 194.33.191.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:76:c7:52:6e:ce:66:3d:49:d1:ad:d6:f7:e0:f7:e4:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Validity
Not Before: Oct 28 14:54:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d49ed631f6aea4cb7fda7fd33d87b38117a61e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ea:44:9e:e6:e2:7c:fa:ec:d7:25:a8:4c:51:
cd:5d:96:dd:40:eb:fa:54:c3:6b:6b:58:dc:79:df:
03:d3:2f:35:4e:d6:a0:bf:9a:e9:2f:8a:67:9f:83:
22:c7:32:46:c9:42:f6:18:8d:c7:2f:8b:c1:1e:46:
7d:c7:1e:e5:e4:38:b1:42:4b:73:2b:02:a0:4a:9d:
db:5b:dc:f9:65:39:d1:48:63:c9:70:b8:40:30:02:
06:07:90:74:99:39:0f:23:30:b2:a1:17:d2:0e:46:
bd:e9:2b:d8:a5:af:6a:5b:7a:a4:3c:74:0c:23:5d:
a9:10:c8:75:82:fe:11:ce:6c:ca:e1:98:73:67:0e:
04:67:7f:40:b2:82:be:e5:a9:42:73:77:40:03:d8:
ea:7e:b8:e5:84:fd:45:36:74:fb:30:54:e1:3f:71:
bc:ee:c2:13:df:2e:07:8d:d4:e4:a5:4f:79:4a:8c:
8b:85:3c:46:d2:3b:9c:0c:b5:87:6f:dd:65:23:a5:
e4:fd:9c:b9:39:41:9d:70:3d:21:b5:66:a0:0d:f4:
5a:76:c3:90:56:c1:b4:2b:af:96:44:e9:10:b1:93:
08:ed:f5:ca:f0:fb:42:f3:3e:70:e3:cb:df:21:00:
a3:0d:60:24:76:a3:c0:ec:8c:5b:df:a2:d9:0e:3a:
92:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:49:ED:63:1F:6A:EA:4C:B7:FD:A7:FD:33:D8:7B:38:11:7A:61:E6
X509v3 Authority Key Identifier:
keyid:F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/LUntYx9q6ky3_af9M9h7OBF6YeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/1-A4BfPFxFRmw_59lhYxJGy-l1As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.191.0/24
Signature Algorithm: sha256WithRSAEncryption
81:d9:43:02:7e:ef:ca:c6:8a:67:3c:44:72:a2:d1:9c:27:8a:
75:2c:54:c4:90:b1:7c:35:98:14:d3:df:1d:66:fd:00:e6:cf:
dc:ac:ef:3e:ce:eb:1b:cb:81:4d:20:a4:7a:3d:b4:32:63:22:
47:d9:f1:a3:34:bd:61:5a:60:e7:83:53:5c:0a:db:21:71:8c:
4c:c1:37:cd:29:33:c7:d2:a6:08:9e:e0:10:74:ed:03:10:0d:
75:d2:bf:59:2b:fa:ae:58:5c:ad:40:57:35:ac:2f:77:27:de:
90:a1:21:09:c5:87:c9:d8:8f:8c:cd:d3:6b:e7:a9:bf:df:34:
9e:90:a9:bb:b9:ed:6c:44:0d:ef:bf:9a:cc:49:de:ad:b8:76:
f1:a5:3f:1e:34:81:b1:61:49:12:e9:22:ca:f5:ee:0f:28:87:
fe:56:18:de:56:64:8a:53:d0:bb:99:b5:d9:ea:79:69:5b:ed:
9e:97:49:c9:e0:5b:a0:99:74:15:6f:2c:ae:2d:ce:84:6f:f7:
31:59:a2:7f:41:8c:2a:b8:63:8e:c8:87:b8:2f:84:2c:9c:de:
95:ce:c4:be:6c:c4:ab:be:e8:09:7b:83:d2:99:d1:11:c0:d5:
8c:0b:fd:d4:37:71:e0:12:44:44:1f:d6:97:f7:2d:68:e7:5d:
69:23:99:71
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYt2x1JuzmY9SdGt1vfg9+TxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4MGUwMTdjZjE3MTE1MTliMGZmOWY2NTg1OGM0OTFiMmZh
NWQ0MGIwHhcNMjMxMDI4MTQ1NDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDQ5ZWQ2MzFmNmFlYTRjYjdmZGE3ZmQzM2Q4N2IzODExN2E2MWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOpEnubifPrs1yWoTFHNXZbdQOv6
VMNra1jced8D0y81Ttagv5rpL4pnn4MixzJGyUL2GI3HL4vBHkZ9xx7l5DixQktz
KwKgSp3bW9z5ZTnRSGPJcLhAMAIGB5B0mTkPIzCyoRfSDka96SvYpa9qW3qkPHQM
I12pEMh1gv4RzmzK4ZhzZw4EZ39AsoK+5alCc3dAA9jqfrjlhP1FNnT7MFThP3G8
7sIT3y4HjdTkpU95SoyLhTxG0jucDLWHb91lI6Xk/Zy5OUGdcD0htWagDfRadsOQ
VsG0K6+WROkQsZMI7fXK8PtC8z5w48vfIQCjDWAkdqPA7Ixb36LZDjqSAQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFC1J7WMfaupMt/2n/TPYezgRemHmMB8GA1UdIwQY
MBaAFPgOAXzxcRUZsP+fZYWMSRsvpdQLMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1BNEJmUEZ4RlJtd181OWxoWXhKR3ktbDFBcy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvMmRjMTM2LTQwMGQtNDBlNy1hZDg2
LThjZTYwYTVjOGIxZi8xL0xVbnRZeDlxNmt5M19hZjlNOWg3T0JGNlllWS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODcvMmRjMTM2LTQwMGQtNDBlNy1hZDg2LThjZTYwYTVjOGIx
Zi8xLzEtQTRCZlBGeEZSbXdfNTlsaFl4Skd5LWwxQXMuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADCIb8w
DQYJKoZIhvcNAQELBQADggEBAIHZQwJ+78rGimc8RHKi0ZwninUsVMSQsXw1mBTT
3x1m/QDmz9ys7z7O6xvLgU0gpHo9tDJjIkfZ8aM0vWFaYOeDU1wK2yFxjEzBN80p
M8fSpgie4BB07QMQDXXSv1kr+q5YXK1AVzWsL3cn3pChIQnFh8nYj4zN02vnqb/f
NJ6Qqbu57WxEDe+/msxJ3q24dvGlPx40gbFhSRLpIsr17g8oh/5WGN5WZIpT0LuZ
tdnqeWlb7Z6XScngW6CZdBVvLK4tzoRv9zFZon9BjCq4Y47Ih7gvhCyc3pXOxL5s
xKu+6Al7g9KZ0RHA1YwL/dQ3ceASREQf1pf3LWjnXWkjmXE=
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:42 2024 by rpki-client on console-ams.rpki-client.org