Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/Xx2vZmkLr3lQhHz0FSzUSlGDf7A.roa
File: Xx2vZmkLr3lQhHz0FSzUSlGDf7A.roa (raw, json)
Hash identifier: OcJZQzl+8Uit3Blnt+1Plfo1xcMdD4hHXT/2KoDAeGs=
Subject key identifier: 5F:1D:AF:66:69:0B:AF:79:50:84:7C:F4:15:2C:D4:4A:51:83:7F:B0
Certificate issuer: /CN=e8cbbff218a437df8f80a98cd2faeb9c2418fd00
Certificate serial: 018C169FD010D05F534BBD0B1E71E16F7F9B
Authority key identifier: E8:CB:BF:F2:18:A4:37:DF:8F:80:A9:8C:D2:FA:EB:9C:24:18:FD:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Mu_8hikN9-PgKmM0vrrnCQY_QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/Xx2vZmkLr3lQhHz0FSzUSlGDf7A.roa
Signing time: Tue 28 Nov 2023 15:50:21 +0000
ROA not before: Tue 28 Nov 2023 15:50:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34953
IP address blocks: 193.32.64.0/24 maxlen: 24
2001:67c:2054::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:16:9f:d0:10:d0:5f:53:4b:bd:0b:1e:71:e1:6f:7f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8cbbff218a437df8f80a98cd2faeb9c2418fd00
Validity
Not Before: Nov 28 15:50:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f1daf66690baf7950847cf4152cd44a51837fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:81:6e:d3:15:a1:16:ee:79:a7:35:42:bb:90:
29:09:c0:86:cc:9a:cf:6a:af:2f:ed:22:77:55:d3:
8a:22:f2:46:fd:04:f0:1d:ec:86:9b:0b:65:a4:40:
94:fc:87:3c:5b:01:0e:ca:43:23:9a:6b:e3:60:cd:
56:33:89:42:bd:2d:57:a5:c5:20:48:9e:fd:e7:6a:
bb:12:b7:2f:e2:c5:2c:25:95:3e:3c:75:36:8b:17:
49:13:57:d0:ef:54:e7:20:72:d5:57:f9:a9:0d:f3:
b3:7d:74:20:28:08:64:25:8c:d4:0c:20:d9:b0:d0:
9a:77:3e:85:bc:31:81:04:c9:da:d7:75:33:d4:e5:
fd:a7:85:33:39:95:4d:b3:94:be:16:4a:66:5e:a8:
35:7c:17:d4:ca:be:03:3f:75:24:0d:84:96:c3:a9:
68:af:04:73:de:15:22:61:15:9a:2d:d0:b5:53:13:
a3:5e:37:b6:d6:16:17:b1:2f:25:65:e0:ee:46:55:
1d:e6:5a:d4:07:9e:c2:f1:2c:5a:bf:d2:95:6b:00:
1f:b5:bd:2d:d0:0d:3f:be:60:30:ea:cc:ea:29:77:
64:e5:57:b7:2a:c3:51:08:8f:99:dc:f3:76:40:99:
95:30:13:93:2f:d2:e2:80:98:aa:ba:54:7c:c9:16:
23:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1D:AF:66:69:0B:AF:79:50:84:7C:F4:15:2C:D4:4A:51:83:7F:B0
X509v3 Authority Key Identifier:
keyid:E8:CB:BF:F2:18:A4:37:DF:8F:80:A9:8C:D2:FA:EB:9C:24:18:FD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Mu_8hikN9-PgKmM0vrrnCQY_QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/Xx2vZmkLr3lQhHz0FSzUSlGDf7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/6Mu_8hikN9-PgKmM0vrrnCQY_QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.64.0/24
IPv6:
2001:67c:2054::/48
Signature Algorithm: sha256WithRSAEncryption
ae:c3:22:4c:fb:9b:22:25:47:ec:94:f6:f6:7b:76:5a:97:35:
c5:3d:9d:a3:93:a9:ea:e8:77:ee:ea:d6:6b:d1:16:32:a6:ad:
c5:4e:05:a9:d0:09:c2:23:04:6b:4a:15:01:d1:a1:67:86:46:
13:a8:04:e4:19:2b:75:dc:63:7b:15:ff:7b:f9:39:18:93:d6:
c6:15:32:d0:7c:cf:c6:ec:bf:a0:b5:51:a9:cc:d8:5d:6a:bb:
eb:1b:9d:eb:fc:eb:f9:62:ff:bb:fd:70:6a:bc:cc:8d:63:7b:
b8:09:89:cc:28:3f:24:a6:09:22:09:82:38:cc:7e:f4:6d:0d:
f4:fd:c0:0f:6f:b5:3d:fe:ed:8f:fb:56:78:1c:07:23:44:99:
7d:eb:01:64:c6:d8:6c:eb:89:9f:80:d7:67:2f:80:e1:6f:8b:
3a:90:7e:45:d3:35:b6:04:d5:77:d6:f4:0b:4b:49:56:fc:5e:
40:d2:95:43:7e:5e:e4:83:43:4b:14:3f:37:31:c7:71:9e:1c:
e3:d1:e6:6d:74:c2:d6:58:0f:ca:ea:15:50:f7:4c:68:d1:bb:
cd:a0:c2:01:28:b9:03:82:ff:8d:cd:2b:6c:06:2f:58:ec:e0:
58:b8:da:76:95:2e:99:e2:b4:e9:06:88:19:58:93:cd:3a:94:
35:64:84:f4
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYwWn9AQ0F9TS70LHnHhb3+bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4Y2JiZmYyMThhNDM3ZGY4ZjgwYTk4Y2QyZmFlYjljMjQx
OGZkMDAwHhcNMjMxMTI4MTU1MDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjFkYWY2NjY5MGJhZjc5NTA4NDdjZjQxNTJjZDQ0YTUxODM3ZmIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoFu0xWhFu55pzVCu5ApCcCGzJrP
aq8v7SJ3VdOKIvJG/QTwHeyGmwtlpECU/Ic8WwEOykMjmmvjYM1WM4lCvS1XpcUg
SJ7952q7Ercv4sUsJZU+PHU2ixdJE1fQ71TnIHLVV/mpDfOzfXQgKAhkJYzUDCDZ
sNCadz6FvDGBBMna13Uz1OX9p4UzOZVNs5S+FkpmXqg1fBfUyr4DP3UkDYSWw6lo
rwRz3hUiYRWaLdC1UxOjXje21hYXsS8lZeDuRlUd5lrUB57C8Sxav9KVawAftb0t
0A0/vmAw6szqKXdk5Ve3KsNRCI+Z3PN2QJmVMBOTL9LigJiqulR8yRYjoQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFF8dr2ZpC695UIR89BUs1EpRg3+wMB8GA1UdIwQY
MBaAFOjLv/IYpDffj4CpjNL665wkGP0AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNk11XzhoaWtOOS1QZ0ttTTB2cnJuQ1FZX1FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8xZmQ2YmMtNTdlMi00ZjUwLTk4Yjct
Y2M3NjM1ZGU2ZTdhLzEvWHgydlpta0xyM2xRaEh6MEZTelVTbEdEZjdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8xZmQ2YmMtNTdlMi00ZjUwLTk4YjctY2M3NjM1ZGU2ZTdh
LzEvNk11XzhoaWtOOS1QZ0ttTTB2cnJuQ1FZX1FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwSBAMA8E
AgACMAkDBwAgAQZ8IFQwDQYJKoZIhvcNAQELBQADggEBAK7DIkz7myIlR+yU9vZ7
dlqXNcU9naOTqerod+7q1mvRFjKmrcVOBanQCcIjBGtKFQHRoWeGRhOoBOQZK3Xc
Y3sV/3v5ORiT1sYVMtB8z8bsv6C1UanM2F1qu+sbnev86/li/7v9cGq8zI1je7gJ
icwoPySmCSIJgjjMfvRtDfT9wA9vtT3+7Y/7VngcByNEmX3rAWTG2GzriZ+A12cv
gOFvizqQfkXTNbYE1XfW9AtLSVb8XkDSlUN+XuSDQ0sUPzcxx3GeHOPR5m10wtZY
D8rqFVD3TGjRu82gwgEouQOC/43NK2wGL1js4Fi42naVLpnitOkGiBlYk806lDVk
hPQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:24 2024 by rpki-client on console-fra.rpki-client.org