Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/30e6fe-dafd-4c0e-b209-05d2cdfa16a6/1/xNEoxSCjsmUtuRBZ54sxNTEfyrY.roa
File: xNEoxSCjsmUtuRBZ54sxNTEfyrY.roa (raw, json)
Hash identifier: du6orF9WLk86zafOd+kQC6WH775RElyPBQIikAeYZPc=
Subject key identifier: C4:D1:28:C5:20:A3:B2:65:2D:B9:10:59:E7:8B:31:35:31:1F:CA:B6
Certificate issuer: /CN=d66433fb0fbddcc97eb01566928d60706ccc6623
Certificate serial: 018F6321747C9E788F33F8C290817EF0396F
Authority key identifier: D6:64:33:FB:0F:BD:DC:C9:7E:B0:15:66:92:8D:60:70:6C:CC:66:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1mQz-w-93Ml-sBVmko1gcGzMZiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/30e6fe-dafd-4c0e-b209-05d2cdfa16a6/1/xNEoxSCjsmUtuRBZ54sxNTEfyrY.roa
Signing time: Fri 10 May 2024 15:31:27 +0000
ROA not before: Fri 10 May 2024 15:31:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 38931
IP address blocks: 193.203.218.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:63:21:74:7c:9e:78:8f:33:f8:c2:90:81:7e:f0:39:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d66433fb0fbddcc97eb01566928d60706ccc6623
Validity
Not Before: May 10 15:31:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4d128c520a3b2652db91059e78b3135311fcab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:26:60:7d:57:f9:f0:03:a4:74:83:b6:1d:68:
75:54:77:45:24:a3:da:b6:d1:45:6b:1f:cd:f1:4c:
e3:e0:54:04:56:e0:86:27:d3:14:ae:a2:6d:c7:ea:
e5:18:10:b0:f3:86:4a:5d:45:0b:38:fb:2f:c1:24:
79:08:05:b0:b8:8e:4f:c4:9c:38:d4:70:7a:ad:19:
1f:31:75:17:be:18:ca:bd:9d:33:c3:80:f3:96:84:
a6:b3:13:d8:2d:c4:e7:9f:02:6a:ed:45:c5:42:7c:
c1:27:af:d5:8b:c6:84:21:dc:c8:57:52:0b:c4:61:
80:30:08:01:94:d7:90:0a:bb:61:ba:ac:2c:e1:76:
30:50:64:55:52:1c:a4:cb:c7:b8:ec:8a:5b:7c:bf:
a5:aa:82:53:50:7e:cf:55:38:54:2c:ea:09:6c:f2:
3c:75:0e:20:c4:90:06:b2:ca:d0:fb:56:bf:37:85:
1d:ca:a3:1f:47:8b:0e:9c:68:a4:82:66:f4:fa:7b:
61:68:66:36:09:31:1f:58:b8:2c:86:f9:91:4e:b5:
21:98:76:b3:fe:00:fa:05:b3:e1:b9:fc:6b:b3:44:
85:d8:25:37:29:1b:54:9e:1a:a5:3c:a5:47:e0:5d:
27:51:fd:5d:8e:c8:a1:1b:d1:de:e6:c1:a6:42:07:
56:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D1:28:C5:20:A3:B2:65:2D:B9:10:59:E7:8B:31:35:31:1F:CA:B6
X509v3 Authority Key Identifier:
keyid:D6:64:33:FB:0F:BD:DC:C9:7E:B0:15:66:92:8D:60:70:6C:CC:66:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1mQz-w-93Ml-sBVmko1gcGzMZiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/30e6fe-dafd-4c0e-b209-05d2cdfa16a6/1/xNEoxSCjsmUtuRBZ54sxNTEfyrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/30e6fe-dafd-4c0e-b209-05d2cdfa16a6/1/1mQz-w-93Ml-sBVmko1gcGzMZiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.218.0/23
Signature Algorithm: sha256WithRSAEncryption
89:64:70:c3:32:11:7f:f6:61:eb:a9:9a:b4:dd:3f:a9:63:76:
ee:f7:d2:41:cf:3f:f9:e7:42:7d:c0:b5:bf:eb:8b:d8:2f:38:
2b:51:da:06:c7:91:aa:a0:57:f8:d9:7e:0b:b9:fa:b7:2a:b5:
39:98:40:31:f8:6a:67:14:da:b3:13:71:22:6c:72:43:7a:6b:
59:4c:b7:cc:c2:e1:ad:71:36:4a:5c:a5:88:64:8d:3c:82:0e:
62:4c:19:bb:4c:40:d4:e5:5f:bd:61:7f:52:a5:65:09:55:ae:
d2:3d:9b:c7:01:9b:b9:27:aa:11:23:c0:a5:4c:06:07:c7:9d:
31:24:9f:d0:c0:8f:e7:7f:4e:8c:74:0b:ca:5d:45:fa:71:99:
83:0f:a4:44:23:9f:38:35:61:de:bc:7e:6c:ea:98:7d:c6:fb:
d1:c6:b3:97:11:65:e9:36:93:bc:ec:9e:43:a7:d1:80:29:9d:
df:34:5e:c8:25:c6:e8:b9:03:5a:0b:63:31:28:82:ee:5c:76:
26:c5:5f:00:c6:ab:10:3d:5e:c1:d3:43:05:9e:17:c1:70:fb:
cc:96:13:f9:69:15:88:ce:86:bd:8c:8a:23:9d:45:73:a8:ed:
ef:c0:8d:7f:61:dc:2f:8b:43:34:da:d6:69:59:9b:5e:45:9d:
4c:6f:21:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY9jIXR8nniPM/jCkIF+8DlvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NjQzM2ZiMGZiZGRjYzk3ZWIwMTU2NjkyOGQ2MDcwNmNj
YzY2MjMwHhcNMjQwNTEwMTUzMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNGQxMjhjNTIwYTNiMjY1MmRiOTEwNTllNzhiMzEzNTMxMWZjYWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviZgfVf58AOkdIO2HWh1VHdFJKPa
ttFFax/N8Uzj4FQEVuCGJ9MUrqJtx+rlGBCw84ZKXUULOPsvwSR5CAWwuI5PxJw4
1HB6rRkfMXUXvhjKvZ0zw4DzloSmsxPYLcTnnwJq7UXFQnzBJ6/Vi8aEIdzIV1IL
xGGAMAgBlNeQCrthuqws4XYwUGRVUhyky8e47IpbfL+lqoJTUH7PVThULOoJbPI8
dQ4gxJAGssrQ+1a/N4UdyqMfR4sOnGikgmb0+nthaGY2CTEfWLgshvmRTrUhmHaz
/gD6BbPhufxrs0SF2CU3KRtUnhqlPKVH4F0nUf1djsihG9He5sGmQgdWwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMTRKMUgo7JlLbkQWeeLMTUxH8q2MB8GA1UdIwQY
MBaAFNZkM/sPvdzJfrAVZpKNYHBszGYjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW1Rei13LTkzTWwtc0JWbWtvMWdjR3pNWmlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8zMGU2ZmUtZGFmZC00YzBlLWIyMDkt
MDVkMmNkZmExNmE2LzEveE5Fb3hTQ2pzbVV0dVJCWjU0c3hOVEVmeXJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8zMGU2ZmUtZGFmZC00YzBlLWIyMDktMDVkMmNkZmExNmE2
LzEvMW1Rei13LTkzTWwtc0JWbWtvMWdjR3pNWmlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwcvaMA0G
CSqGSIb3DQEBCwUAA4IBAQCJZHDDMhF/9mHrqZq03T+pY3bu99JBzz/550J9wLW/
64vYLzgrUdoGx5GqoFf42X4Lufq3KrU5mEAx+GpnFNqzE3EibHJDemtZTLfMwuGt
cTZKXKWIZI08gg5iTBm7TEDU5V+9YX9SpWUJVa7SPZvHAZu5J6oRI8ClTAYHx50x
JJ/QwI/nf06MdAvKXUX6cZmDD6REI584NWHevH5s6ph9xvvRxrOXEWXpNpO87J5D
p9GAKZ3fNF7IJcbouQNaC2MxKILuXHYmxV8AxqsQPV7B00MFnhfBcPvMlhP5aRWI
zoa9jIojnUVzqO3vwI1/Ydwvi0M02tZpWZteRZ1MbyF8
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:10 2025 by rpki-client