Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/xT6nEM7A9LfL6hxVDbEZd8maL_A.roa
File: xT6nEM7A9LfL6hxVDbEZd8maL_A.roa (raw, json)
Hash identifier: USdWQNRl5bjPliec1gXGj8zpT7tnISdJFsjG3b3Ji3k=
Subject key identifier: C5:3E:A7:10:CE:C0:F4:B7:CB:EA:1C:55:0D:B1:19:77:C9:9A:2F:F0
Certificate issuer: /CN=405d645741215677b7748d1fdefd416207adb12d
Certificate serial: 0185A4FB356111AB94870F4D1E2E4E04928C
Authority key identifier: 40:5D:64:57:41:21:56:77:B7:74:8D:1F:DE:FD:41:62:07:AD:B1:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/xT6nEM7A9LfL6hxVDbEZd8maL_A.roa
Signing time: Thu 12 Jan 2023 07:56:44 +0000
ROA not before: Thu 12 Jan 2023 07:56:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 193.8.76.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 15 May 2023 12:19:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a4:fb:35:61:11:ab:94:87:0f:4d:1e:2e:4e:04:92:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=405d645741215677b7748d1fdefd416207adb12d
Validity
Not Before: Jan 12 07:56:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c53ea710cec0f4b7cbea1c550db11977c99a2ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:00:15:4b:d8:e6:80:30:9c:07:6a:42:ed:3b:
bc:85:7c:63:11:95:da:c6:e1:00:46:8e:2f:4c:37:
bd:e7:b4:a2:7b:0f:59:7b:71:62:e3:d9:21:56:8b:
56:42:dc:56:eb:69:22:0d:04:76:7f:c7:02:ea:b0:
44:a7:a9:30:4f:e0:1c:95:78:2c:d7:35:cb:c6:af:
8e:92:99:2d:37:63:ef:81:08:2b:13:33:bf:8a:59:
cd:09:cb:c7:29:1c:77:42:e6:2e:da:99:d8:a0:c9:
b5:bf:cf:14:88:4b:31:36:0a:e1:95:9c:3b:c9:8c:
eb:b4:79:70:7c:bf:0d:d0:af:2a:58:c7:b0:da:ce:
29:4e:79:d6:a0:1f:52:0e:b9:ad:05:69:25:08:83:
90:b4:1e:35:1a:0e:a6:d5:24:cc:3d:62:0c:ac:e3:
5d:ca:e3:25:e7:d2:cb:3a:e1:dd:8b:ec:0e:87:32:
47:fb:43:6b:36:9b:62:7a:23:0c:65:2f:67:10:ea:
e2:1a:b9:83:e7:c4:4b:3f:1c:02:5f:66:80:8f:2e:
e3:91:de:86:8f:57:af:1b:06:7f:5d:5b:86:59:8e:
21:a2:41:1c:e0:fa:f0:db:f0:4f:29:d2:0f:d0:fe:
51:e9:6e:5b:2c:cc:bb:4e:dc:7b:09:e8:96:22:dd:
ac:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3E:A7:10:CE:C0:F4:B7:CB:EA:1C:55:0D:B1:19:77:C9:9A:2F:F0
X509v3 Authority Key Identifier:
keyid:40:5D:64:57:41:21:56:77:B7:74:8D:1F:DE:FD:41:62:07:AD:B1:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QF1kV0EhVne3dI0f3v1BYgetsS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/xT6nEM7A9LfL6hxVDbEZd8maL_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/43d830-9811-4599-8349-440dd012b141/1/QF1kV0EhVne3dI0f3v1BYgetsS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.76.0/23
Signature Algorithm: sha256WithRSAEncryption
19:07:c6:fa:83:53:16:27:f0:7c:17:68:33:d3:4b:55:89:1c:
5a:75:98:10:a2:80:a9:51:14:7d:b3:e9:ae:54:fb:1d:aa:2c:
cb:e2:2b:94:75:d9:e6:2e:e1:77:5c:8f:84:cc:99:3c:fb:1b:
dc:a3:22:4b:d1:d6:87:f6:34:f4:91:82:55:0c:dd:af:f2:a6:
27:cb:f2:d6:01:cd:bf:ae:76:9d:2e:66:c0:3c:ee:29:a4:ef:
6d:d5:20:2e:7a:b3:b9:b7:e4:43:af:de:7a:ad:fc:ff:59:f4:
97:38:b1:22:e8:30:5c:8d:9a:71:aa:0a:52:00:bb:88:2b:4a:
7b:52:58:54:06:fe:d9:d1:f6:c4:20:a4:be:f5:3b:51:5d:30:
54:ac:5a:63:b9:a8:e9:09:2f:00:40:37:46:f9:91:eb:83:6b:
c3:37:d8:5b:44:83:df:f3:fb:8e:7d:2b:33:4e:79:de:cf:66:
99:ae:39:e8:d8:55:84:f0:51:da:cd:c7:d9:a2:f6:55:37:df:
2f:45:4a:b0:9d:fc:1a:10:81:15:d8:b8:09:75:7d:7b:6f:36:
c4:4c:64:23:39:ab:3c:d9:f8:31:4e:f9:96:91:d0:b3:66:b2:
64:ab:b7:d3:43:36:c8:14:dc:fd:8d:9d:f5:21:e3:11:06:4e:
a2:b3:36:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWk+zVhEauUhw9NHi5OBJKMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwNWQ2NDU3NDEyMTU2NzdiNzc0OGQxZmRlZmQ0MTYyMDdh
ZGIxMmQwHhcNMjMwMTEyMDc1NjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTNlYTcxMGNlYzBmNGI3Y2JlYTFjNTUwZGIxMTk3N2M5OWEyZmYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwAVS9jmgDCcB2pC7Tu8hXxjEZXa
xuEARo4vTDe957Siew9Ze3Fi49khVotWQtxW62kiDQR2f8cC6rBEp6kwT+AclXgs
1zXLxq+OkpktN2PvgQgrEzO/ilnNCcvHKRx3QuYu2pnYoMm1v88UiEsxNgrhlZw7
yYzrtHlwfL8N0K8qWMew2s4pTnnWoB9SDrmtBWklCIOQtB41Gg6m1STMPWIMrONd
yuMl59LLOuHdi+wOhzJH+0NrNptieiMMZS9nEOriGrmD58RLPxwCX2aAjy7jkd6G
j1evGwZ/XVuGWY4hokEc4Prw2/BPKdIP0P5R6W5bLMy7Ttx7CeiWIt2sBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMU+pxDOwPS3y+ocVQ2xGXfJmi/wMB8GA1UdIwQY
MBaAFEBdZFdBIVZ3t3SNH979QWIHrbEtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUYxa1YwRWhWbmUzZEkwZjN2MUJZZ2V0c1MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni80M2Q4MzAtOTgxMS00NTk5LTgzNDkt
NDQwZGQwMTJiMTQxLzEveFQ2bkVNN0E5TGZMNmh4VkRiRVpkOG1hTF9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ni80M2Q4MzAtOTgxMS00NTk5LTgzNDktNDQwZGQwMTJiMTQx
LzEvUUYxa1YwRWhWbmUzZEkwZjN2MUJZZ2V0c1MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwQhMMA0G
CSqGSIb3DQEBCwUAA4IBAQAZB8b6g1MWJ/B8F2gz00tViRxadZgQooCpURR9s+mu
VPsdqizL4iuUddnmLuF3XI+EzJk8+xvcoyJL0daH9jT0kYJVDN2v8qYny/LWAc2/
rnadLmbAPO4ppO9t1SAuerO5t+RDr956rfz/WfSXOLEi6DBcjZpxqgpSALuIK0p7
UlhUBv7Z0fbEIKS+9TtRXTBUrFpjuajpCS8AQDdG+ZHrg2vDN9hbRIPf8/uOfSsz
Tnnez2aZrjno2FWE8FHazcfZovZVN98vRUqwnfwaEIEV2LgJdX17bzbETGQjOas8
2fgxTvmWkdCzZrJkq7fTQzbIFNz9jZ31IeMRBk6iszb4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:43 2024 by rpki-client on console-ams.rpki-client.org