Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/p8bFRXwa3YKERrywyrlLWtTHs8U.roa
File: p8bFRXwa3YKERrywyrlLWtTHs8U.roa (raw, json)
Hash identifier: U8y7JXoC54cPBd5pxPDOw3KUSXzdBrCaDSI/JpSCN3s=
Subject key identifier: A7:C6:C5:45:7C:1A:DD:82:84:46:BC:B0:CA:B9:4B:5A:D4:C7:B3:C5
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E87F1A336FE1449564426ADE9BD0E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/p8bFRXwa3YKERrywyrlLWtTHs8U.roa
Signing time: Mon 02 Jan 2023 08:34:52 +0000
ROA not before: Mon 02 Jan 2023 08:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57530
IP address blocks: 194.226.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:87:f1:a3:36:fe:14:49:56:44:26:ad:e9:bd:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7c6c5457c1add828446bcb0cab94b5ad4c7b3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:af:a8:4e:d5:c1:58:c7:44:6d:d3:e0:e6:86:
27:bb:35:c3:ca:a7:ef:b4:77:22:e4:59:43:44:60:
86:b8:9b:78:fc:f6:92:b2:ba:8b:5f:82:6f:03:44:
a2:d6:34:bd:e2:be:f4:cb:86:ba:63:4b:34:3d:31:
ae:4b:72:f3:36:0d:68:94:a8:e9:9c:bb:07:12:a7:
2a:75:ea:59:bd:50:ce:6e:c1:04:ab:6e:03:48:8c:
0c:8f:ca:20:63:3f:10:bf:92:c5:3f:82:c8:30:bc:
5d:9c:ca:a1:89:de:71:e3:f1:5c:f7:0c:74:ed:28:
f5:05:f0:e4:05:30:ed:be:d8:23:ed:ca:ae:17:a2:
d7:9d:e9:e3:ef:8b:f2:9e:f4:e6:4b:65:2a:48:d9:
82:d2:ad:5a:cd:f0:89:de:8c:31:22:31:b1:a4:22:
ed:e3:7f:a4:f6:ea:c2:b8:e3:35:fa:98:e1:00:06:
d6:20:9b:7e:f6:73:12:28:21:a2:9e:cf:05:5b:41:
bc:cb:88:95:04:d7:e8:83:5c:4f:34:fb:96:1a:d0:
4a:35:d2:0c:b3:b5:bf:53:c6:48:d7:26:dd:e3:38:
1f:d7:8d:42:de:f0:22:04:6f:c1:0b:f9:06:0d:c1:
7f:e7:45:c9:35:58:42:24:e2:55:ee:6c:74:29:e6:
01:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C6:C5:45:7C:1A:DD:82:84:46:BC:B0:CA:B9:4B:5A:D4:C7:B3:C5
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/p8bFRXwa3YKERrywyrlLWtTHs8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.176.0/24
Signature Algorithm: sha256WithRSAEncryption
75:a6:b0:28:f8:d7:8b:e8:5e:88:73:82:48:a1:ff:76:9d:b0:
94:e7:e2:c2:0e:7e:96:1d:5a:42:a1:17:57:40:6b:20:8e:fb:
c1:fa:76:17:35:30:7b:d4:bf:e1:ff:f8:ef:0f:f9:2c:4d:4a:
11:56:0e:35:2a:e9:90:32:6e:53:c8:e9:8b:1e:c7:b2:cc:19:
75:fc:bf:93:a1:90:8d:5b:6c:c3:e1:98:7f:90:c6:c6:ae:b9:
ce:a7:dc:da:c3:ec:67:f8:d9:3b:03:6f:f5:d9:9a:ec:c7:14:
d8:4b:f5:5c:c6:b3:67:bf:f0:b0:0a:a5:2a:de:64:9f:1b:7f:
65:98:62:08:99:6b:c3:d6:45:04:b5:b0:b8:ce:5a:2c:a7:60:
6f:74:51:96:63:44:d0:c5:9d:7b:73:67:9f:68:73:af:70:0d:
5a:39:cf:16:2b:f0:fb:9b:9d:2b:1b:aa:af:01:3a:ed:d8:56:
30:c7:9a:65:7a:07:7d:95:a8:78:0b:3c:66:0e:29:34:3f:a0:
86:31:e3:19:2c:8b:e6:0c:a1:ca:5a:6c:4e:1e:3f:c6:f8:69:
f3:4c:a2:0d:2d:04:a6:83:cf:d1:e2:09:af:cc:52:e8:0d:71:
df:9d:ba:30:9f:23:33:07:38:79:6d:b2:61:7b:9d:0c:ce:57:
56:10:56:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnofxozb+FElWRCat6b0OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjMwMTAyMDgzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2M2YzU0NTdjMWFkZDgyODQ0NmJjYjBjYWI5NGI1YWQ0YzdiM2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyK+oTtXBWMdEbdPg5oYnuzXDyqfv
tHci5FlDRGCGuJt4/PaSsrqLX4JvA0Si1jS94r70y4a6Y0s0PTGuS3LzNg1olKjp
nLsHEqcqdepZvVDObsEEq24DSIwMj8ogYz8Qv5LFP4LIMLxdnMqhid5x4/Fc9wx0
7Sj1BfDkBTDtvtgj7cquF6LXnenj74vynvTmS2UqSNmC0q1azfCJ3owxIjGxpCLt
43+k9urCuOM1+pjhAAbWIJt+9nMSKCGins8FW0G8y4iVBNfog1xPNPuWGtBKNdIM
s7W/U8ZI1ybd4zgf141C3vAiBG/BC/kGDcF/50XJNVhCJOJV7mx0KeYB8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKfGxUV8Gt2ChEa8sMq5S1rUx7PFMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvcDhiRlJYd2EzWUtFUnJ5d3lybExXdFRIczhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwuKwMA0G
CSqGSIb3DQEBCwUAA4IBAQB1prAo+NeL6F6Ic4JIof92nbCU5+LCDn6WHVpCoRdX
QGsgjvvB+nYXNTB71L/h//jvD/ksTUoRVg41KumQMm5TyOmLHseyzBl1/L+ToZCN
W2zD4Zh/kMbGrrnOp9zaw+xn+Nk7A2/12ZrsxxTYS/VcxrNnv/CwCqUq3mSfG39l
mGIImWvD1kUEtbC4zlosp2BvdFGWY0TQxZ17c2efaHOvcA1aOc8WK/D7m50rG6qv
ATrt2FYwx5plegd9lah4CzxmDik0P6CGMeMZLIvmDKHKWmxOHj/G+GnzTKINLQSm
g8/R4gmvzFLoDXHfnbownyMzBzh5bbJhe50MzldWEFZt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org