Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/nGyA0KM-wyFWqytWjylexHcIymY.roa
File: nGyA0KM-wyFWqytWjylexHcIymY.roa (raw, json)
Hash identifier: 3QVB9s2vh1g4fU64igAGNMGYCBQ8WsW2GOS+sZptGWU=
Subject key identifier: 9C:6C:80:D0:A3:3E:C3:21:56:AB:2B:56:8F:29:5E:C4:77:08:CA:66
Certificate issuer: /CN=67c3acf929a22338f2b380180cc852db4779aad0
Certificate serial: 01856F391513ED114CF10D6680BFEF14DAC2
Authority key identifier: 67:C3:AC:F9:29:A2:23:38:F2:B3:80:18:0C:C8:52:DB:47:79:AA:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8Os-SmiIzjys4AYDMhS20d5qtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/nGyA0KM-wyFWqytWjylexHcIymY.roa
Signing time: Sun 01 Jan 2023 21:24:50 +0000
ROA not before: Sun 01 Jan 2023 21:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34380
IP address blocks: 193.43.245.0/24 maxlen: 24
193.43.246.0/24 maxlen: 24
193.43.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:15:13:ed:11:4c:f1:0d:66:80:bf:ef:14:da:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67c3acf929a22338f2b380180cc852db4779aad0
Validity
Not Before: Jan 1 21:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c6c80d0a33ec32156ab2b568f295ec47708ca66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:83:12:5d:5a:23:85:05:3a:ed:f7:fb:3f:f6:
13:56:bd:eb:6c:07:1c:3e:cf:8c:b7:67:26:26:8d:
be:a0:6c:81:df:e1:9b:c7:53:b7:53:0b:00:a0:43:
43:54:13:8b:a1:53:29:cb:a8:22:17:10:9d:b7:0a:
50:0d:9a:12:5e:7a:35:78:03:fa:82:21:c2:c2:b6:
cb:96:11:34:af:b9:fb:0f:19:1f:3c:aa:bb:19:73:
b5:55:6e:1e:91:14:2e:b1:44:94:51:88:d9:d4:7a:
c6:b6:64:c8:5d:9d:5f:03:57:a3:f9:b3:35:b7:93:
ef:ac:a2:cc:ff:ea:73:8e:8e:fd:fb:3b:e7:53:98:
d2:36:ad:b6:28:3f:2d:8d:f2:b4:e5:33:2a:db:09:
a2:50:0c:cb:39:ad:cb:db:5a:36:c9:fc:52:2a:48:
59:c2:c7:b6:1a:e8:be:7a:cb:16:1a:19:73:dd:2e:
6c:9e:d2:2a:c1:58:26:c7:21:95:31:a7:71:8d:c4:
6b:e1:9c:b9:ad:6d:55:05:18:bb:dd:bc:5c:f9:dd:
5e:fd:90:d8:e8:75:d1:53:1b:6b:54:d5:94:9a:d7:
35:6c:3d:76:8e:a3:7d:78:e4:fc:6e:af:45:a2:fb:
df:dc:93:31:7a:0a:2b:4b:1f:2b:55:6f:53:84:1a:
7c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:6C:80:D0:A3:3E:C3:21:56:AB:2B:56:8F:29:5E:C4:77:08:CA:66
X509v3 Authority Key Identifier:
keyid:67:C3:AC:F9:29:A2:23:38:F2:B3:80:18:0C:C8:52:DB:47:79:AA:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8Os-SmiIzjys4AYDMhS20d5qtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/nGyA0KM-wyFWqytWjylexHcIymY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/ca4815-0e00-49bf-88f5-caca8b80c91c/1/Z8Os-SmiIzjys4AYDMhS20d5qtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.244.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:2f:8c:da:e8:c9:ee:be:99:40:7b:a7:ec:7a:65:92:a4:58:
2e:5d:9a:e3:56:55:f8:d5:f6:73:07:07:de:b9:ae:d8:e9:39:
29:31:e5:ed:cc:0a:f2:d0:20:26:5d:cf:f1:83:1e:dd:c9:89:
91:c9:63:42:15:5f:97:ce:13:5b:1c:ea:45:cb:8a:14:c1:c3:
62:1f:e1:78:82:f3:a6:f5:c9:18:07:71:28:c7:6c:fe:f2:4b:
7d:7b:d0:d6:34:a3:89:8d:9a:23:1f:48:80:bb:ec:42:f1:0e:
07:ed:40:dd:38:26:30:1a:82:4d:fe:8e:38:9a:64:a4:9a:51:
f6:ff:06:66:64:0d:75:ed:29:56:42:9d:ed:53:9b:6e:e2:7d:
35:3f:16:cb:47:aa:0b:8d:25:03:d4:9a:22:58:68:8e:cd:56:
ad:2b:27:61:b1:e5:c3:07:81:60:9c:92:14:8f:0b:3c:12:c5:
99:ec:81:e1:62:9a:a4:a6:47:c1:6d:f8:cd:38:ac:18:83:03:
32:38:84:cd:46:25:c9:d7:5d:0c:bd:2c:41:d8:f4:7f:26:76:
9c:0c:c5:94:16:64:55:e6:62:ff:73:cd:f6:68:ae:63:82:cd:
9f:6a:ba:69:85:69:a0:f2:bf:85:89:e9:f2:86:44:d7:b1:d3:
8c:9f:7b:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvORUT7RFM8Q1mgL/vFNrCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YzNhY2Y5MjlhMjIzMzhmMmIzODAxODBjYzg1MmRiNDc3
OWFhZDAwHhcNMjMwMTAxMjEyNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzZjODBkMGEzM2VjMzIxNTZhYjJiNTY4ZjI5NWVjNDc3MDhjYTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYMSXVojhQU67ff7P/YTVr3rbAcc
Ps+Mt2cmJo2+oGyB3+Gbx1O3UwsAoENDVBOLoVMpy6giFxCdtwpQDZoSXno1eAP6
giHCwrbLlhE0r7n7DxkfPKq7GXO1VW4ekRQusUSUUYjZ1HrGtmTIXZ1fA1ej+bM1
t5PvrKLM/+pzjo79+zvnU5jSNq22KD8tjfK05TMq2wmiUAzLOa3L21o2yfxSKkhZ
wse2Gui+essWGhlz3S5sntIqwVgmxyGVMadxjcRr4Zy5rW1VBRi73bxc+d1e/ZDY
6HXRUxtrVNWUmtc1bD12jqN9eOT8bq9Fovvf3JMxegorSx8rVW9ThBp86wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJxsgNCjPsMhVqsrVo8pXsR3CMpmMB8GA1UdIwQY
MBaAFGfDrPkpoiM48rOAGAzIUttHearQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjhPcy1TbWlJemp5czRBWURNaFMyMGQ1cXRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9jYTQ4MTUtMGUwMC00OWJmLTg4ZjUt
Y2FjYThiODBjOTFjLzEvbkd5QTBLTS13eUZXcXl0V2p5bGV4SGNJeW1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9jYTQ4MTUtMGUwMC00OWJmLTg4ZjUtY2FjYThiODBjOTFj
LzEvWjhPcy1TbWlJemp5czRBWURNaFMyMGQ1cXRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwSv0MA0G
CSqGSIb3DQEBCwUAA4IBAQBOL4za6MnuvplAe6fsemWSpFguXZrjVlX41fZzBwfe
ua7Y6TkpMeXtzAry0CAmXc/xgx7dyYmRyWNCFV+XzhNbHOpFy4oUwcNiH+F4gvOm
9ckYB3Eox2z+8kt9e9DWNKOJjZojH0iAu+xC8Q4H7UDdOCYwGoJN/o44mmSkmlH2
/wZmZA117SlWQp3tU5tu4n01PxbLR6oLjSUD1JoiWGiOzVatKydhseXDB4FgnJIU
jws8EsWZ7IHhYpqkpkfBbfjNOKwYgwMyOITNRiXJ110MvSxB2PR/JnacDMWUFmRV
5mL/c832aK5jgs2farpphWmg8r+FienyhkTXsdOMn3vX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:10 2024 by rpki-client on console-ams.rpki-client.org