Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/A76Bx54ow9oqtIrhB1klPlW5TWE.roa
File: A76Bx54ow9oqtIrhB1klPlW5TWE.roa (raw, json)
Hash identifier: m9dWRsSCxGMSR2IuhJhYR2szizMLrZDrVcJ320H5mBY=
Subject key identifier: 03:BE:81:C7:9E:28:C3:DA:2A:B4:8A:E1:07:59:25:3E:55:B9:4D:61
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 0188C31D6711BD964EEA9696D324375FD476
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/A76Bx54ow9oqtIrhB1klPlW5TWE.roa
Signing time: Fri 16 Jun 2023 07:31:03 +0000
ROA not before: Fri 16 Jun 2023 07:31:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8985
IP address blocks: 193.232.64.0/24 maxlen: 24
194.190.146.0/24 maxlen: 24
193.232.76.0/24 maxlen: 24
194.85.16.0/24 maxlen: 24
193.232.226.0/23 maxlen: 23
194.226.41.0/24 maxlen: 24
195.19.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Jun 2023 10:28:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:1d:67:11:bd:96:4e:ea:96:96:d3:24:37:5f:d4:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Jun 16 07:31:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03be81c79e28c3da2ab48ae10759253e55b94d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:29:f5:bc:b0:44:7d:2b:b1:ad:a3:fc:6d:c5:
a6:ca:5e:bf:d6:48:6d:f7:2f:25:00:c9:98:4d:a3:
82:e2:e8:7a:18:dc:66:b6:f7:27:34:0b:cb:57:14:
0a:08:4a:95:39:a8:f2:b0:54:71:f0:bf:38:64:39:
b0:6f:eb:a7:6a:74:d9:f0:2e:e9:cc:de:14:6b:34:
25:49:1e:eb:56:eb:75:69:56:78:90:2a:03:07:02:
bc:c2:7e:8c:71:17:83:de:46:21:dc:89:f4:8f:ae:
4a:bc:71:0b:22:23:f6:be:16:cf:80:24:17:39:de:
73:32:e5:93:cb:35:60:4c:38:a6:aa:98:92:42:d2:
5e:3d:82:3c:12:04:96:1b:5a:fa:df:b8:21:ec:ed:
45:73:ca:94:fc:0f:f3:fd:6f:5c:b8:1a:b5:ed:3a:
6c:fa:71:7f:cf:26:7a:f4:9d:00:99:c3:25:44:99:
37:6a:42:e6:c8:35:91:1e:c1:93:82:9b:51:1f:34:
29:a3:33:93:ef:fb:90:50:53:a2:28:80:77:f2:1a:
fd:58:c4:7d:55:56:b2:b2:02:b2:14:88:7b:e5:39:
c3:bd:46:c5:7e:96:f4:ba:64:d4:41:8f:42:e4:cd:
05:3b:62:38:55:41:b8:60:ca:0a:fe:97:93:ac:e8:
60:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BE:81:C7:9E:28:C3:DA:2A:B4:8A:E1:07:59:25:3E:55:B9:4D:61
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/A76Bx54ow9oqtIrhB1klPlW5TWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.64.0/24
193.232.76.0/24
193.232.226.0/23
194.85.16.0/24
194.190.146.0/24
194.226.41.0/24
195.19.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:69:0a:a6:33:1a:ca:ef:f6:d5:78:eb:bb:8f:a6:0e:c3:48:
70:88:9a:92:ea:0f:8c:93:08:1d:71:e8:1c:c8:74:ff:0f:08:
3a:4c:f9:b8:9e:85:d2:27:66:6f:e0:24:b4:74:3e:2f:b0:14:
27:2e:d8:c0:fa:43:40:c8:1f:2d:19:53:c8:95:cc:89:bd:be:
8d:ed:81:31:c8:a5:2e:86:ad:a6:3b:fb:8f:9c:b6:0e:8a:90:
ad:9d:5c:93:d8:cc:90:f1:73:b4:ae:cd:44:72:e8:c0:20:42:
84:0a:b2:82:c7:5a:fe:80:8b:70:1b:ef:44:d5:9a:4f:d1:f4:
5e:1f:53:9b:03:02:73:c4:25:24:94:52:9f:9f:76:c9:54:81:
72:c5:c7:d0:a4:a0:09:45:87:b1:86:da:c7:7d:9d:57:84:28:
51:98:16:05:cb:8b:62:9e:66:d3:86:c8:f6:b7:1a:18:c7:4a:
2d:db:37:9f:41:b0:52:b8:9b:c2:97:f7:fd:14:8f:ad:c5:d6:
d1:de:c3:f4:86:9a:1f:b3:9a:84:26:f3:ca:0d:b6:5b:fd:01:
9a:fb:ab:e1:72:a5:ff:b3:87:3a:e9:5e:ae:70:a0:06:13:c6:
30:63:fb:2d:11:84:80:dc:5b:d4:1b:24:7a:61:55:ba:6f:1d:
45:7d:5b:0f
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYjDHWcRvZZO6paW0yQ3X9R2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2
OTdhMDMwHhcNMjMwNjE2MDczMTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2JlODFjNzllMjhjM2RhMmFiNDhhZTEwNzU5MjUzZTU1Yjk0ZDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgin1vLBEfSuxraP8bcWmyl6/1kht
9y8lAMmYTaOC4uh6GNxmtvcnNAvLVxQKCEqVOajysFRx8L84ZDmwb+unanTZ8C7p
zN4UazQlSR7rVut1aVZ4kCoDBwK8wn6McReD3kYh3In0j65KvHELIiP2vhbPgCQX
Od5zMuWTyzVgTDimqpiSQtJePYI8EgSWG1r637gh7O1Fc8qU/A/z/W9cuBq17Tps
+nF/zyZ69J0AmcMlRJk3akLmyDWRHsGTgptRHzQpozOT7/uQUFOiKIB38hr9WMR9
VVaysgKyFIh75TnDvUbFfpb0umTUQY9C5M0FO2I4VUG4YMoK/peTrOhgLQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFAO+gceeKMPaKrSK4QdZJT5VuU1hMB8GA1UdIwQY
MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt
Njg4ZDMzM2VkOWQ1LzEvQTc2Qng1NG93OW9xdElyaEIxa2xQbFc1VFdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1
LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAwehAAwQA
wehMAwQBwejiAwQAwlUQAwQAwr6SAwQAwuIpAwQAwxMIMA0GCSqGSIb3DQEBCwUA
A4IBAQBaaQqmMxrK7/bVeOu7j6YOw0hwiJqS6g+MkwgdcegcyHT/Dwg6TPm4noXS
J2Zv4CS0dD4vsBQnLtjA+kNAyB8tGVPIlcyJvb6N7YExyKUuhq2mO/uPnLYOipCt
nVyT2MyQ8XO0rs1EcujAIEKECrKCx1r+gItwG+9E1ZpP0fReH1ObAwJzxCUklFKf
n3bJVIFyxcfQpKAJRYexhtrHfZ1XhChRmBYFy4tinmbThsj2txoYx0ot2zefQbBS
uJvCl/f9FI+txdbR3sP0hpofs5qEJvPKDbZb/QGa+6vhcqX/s4c66V6ucKAGE8Yw
Y/stEYSA3FvUGyR6YVW6bx1FfVsP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:51 2024 by rpki-client on console-fra.rpki-client.org