Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/E3wR-4-kIFwIORk7lIJjHKr0R2Q.roa
File: E3wR-4-kIFwIORk7lIJjHKr0R2Q.roa (raw, json)
Hash identifier: AbVx6jCKoSxi2UkLR7DG2eXFXxEMB659JqntBv5r5p8=
Subject key identifier: 13:7C:11:FB:8F:A4:20:5C:08:39:19:3B:94:82:63:1C:AA:F4:47:64
Certificate issuer: /CN=eb153da3c24ce1236e20c46861635dc8efb56a92
Certificate serial: 018572BA88131D41E5C10C17F06655510881
Authority key identifier: EB:15:3D:A3:C2:4C:E1:23:6E:20:C4:68:61:63:5D:C8:EF:B5:6A:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6xU9o8JM4SNuIMRoYWNdyO-1apI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/E3wR-4-kIFwIORk7lIJjHKr0R2Q.roa
Signing time: Mon 02 Jan 2023 13:45:05 +0000
ROA not before: Mon 02 Jan 2023 13:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 193.201.20.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:88:13:1d:41:e5:c1:0c:17:f0:66:55:51:08:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb153da3c24ce1236e20c46861635dc8efb56a92
Validity
Not Before: Jan 2 13:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=137c11fb8fa4205c0839193b9482631caaf44764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ca:6e:67:95:32:21:a6:0f:e2:2e:fb:66:c8:
77:ff:78:6d:c5:69:76:ec:5e:a1:e7:ce:ab:55:e7:
06:74:d6:4a:74:ae:04:c7:97:5b:7c:45:97:6b:20:
15:1d:94:99:e9:54:c6:4a:56:44:42:9c:f9:38:28:
49:45:04:d3:72:82:e8:e3:d1:39:1e:db:fa:e1:9e:
d8:0a:d3:f1:ce:f6:1c:23:e4:b3:fb:0e:f2:67:bb:
c5:e4:eb:23:55:d5:c9:ec:34:07:80:0b:db:a9:e5:
d4:dc:73:b8:63:8a:2f:d2:f1:a3:c8:c6:1e:43:c9:
bf:10:37:ab:41:f0:28:cc:f5:73:ea:d7:4e:04:08:
75:20:48:21:5e:cc:db:51:52:62:c6:46:5f:a4:ff:
d5:9d:9c:bf:c4:3b:7d:80:77:27:3e:f4:5a:eb:49:
18:6d:b5:9a:38:36:b7:92:64:02:72:a2:38:1d:ca:
8d:08:68:b7:9d:d3:84:2b:38:bb:27:27:01:40:76:
40:bc:ca:24:7f:3e:24:36:6d:9f:10:51:95:b2:8c:
6b:0d:40:a9:1c:e1:98:e9:d9:7a:7b:11:68:ff:0d:
83:3b:f3:d9:c3:d0:ed:61:54:01:b2:ff:cf:26:d5:
fc:e4:21:42:80:27:88:2d:af:6f:73:88:d3:07:38:
89:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:7C:11:FB:8F:A4:20:5C:08:39:19:3B:94:82:63:1C:AA:F4:47:64
X509v3 Authority Key Identifier:
keyid:EB:15:3D:A3:C2:4C:E1:23:6E:20:C4:68:61:63:5D:C8:EF:B5:6A:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6xU9o8JM4SNuIMRoYWNdyO-1apI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/E3wR-4-kIFwIORk7lIJjHKr0R2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4bb067-c365-452e-a93e-39da1ae8b731/1/6xU9o8JM4SNuIMRoYWNdyO-1apI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.20.0/23
Signature Algorithm: sha256WithRSAEncryption
42:8b:f0:61:c9:af:a4:34:67:43:d4:35:a2:6e:d8:31:96:6d:
bf:87:12:bf:4c:f5:3b:2c:7f:06:70:63:72:fc:79:56:ce:bf:
1d:11:18:6a:f5:5e:11:c1:3c:f6:0b:75:49:10:c9:48:a7:20:
41:f7:2e:df:2c:f7:f7:c4:88:0f:00:7c:09:5e:8a:25:21:0b:
e5:1f:1d:10:51:25:75:1b:4f:c6:c7:b8:6f:16:8f:f2:5e:4e:
36:68:1c:eb:af:f2:96:bc:c0:45:c4:72:00:23:d1:8c:be:6e:
a8:76:56:d1:20:f6:b3:9b:1a:28:3b:cd:8a:09:2e:75:9d:70:
f2:e0:a2:ac:60:ae:eb:5d:5c:56:6d:4d:4a:4a:b4:29:97:d1:
f5:70:80:5f:4e:70:30:04:2c:05:93:92:37:10:01:47:cb:62:
5b:a4:20:96:4f:ed:57:d2:51:72:09:0f:1f:02:27:25:24:ec:
d7:96:f2:3c:7b:2f:55:c4:1d:25:e0:c9:f1:d5:f5:54:a5:8d:
ea:7b:e5:a0:8e:d9:04:b3:43:0a:3a:7d:e8:a7:c2:71:32:9d:
37:75:ee:83:f0:d9:27:0f:f2:ae:a0:88:a0:c1:b5:07:f5:ad:
1c:99:32:21:7e:33:1a:56:69:68:fe:9e:87:cc:56:c9:80:76:
b7:57:03:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyuogTHUHlwQwX8GZVUQiBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViMTUzZGEzYzI0Y2UxMjM2ZTIwYzQ2ODYxNjM1ZGM4ZWZi
NTZhOTIwHhcNMjMwMTAyMTM0NTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzdjMTFmYjhmYTQyMDVjMDgzOTE5M2I5NDgyNjMxY2FhZjQ0NzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8puZ5UyIaYP4i77Zsh3/3htxWl2
7F6h586rVecGdNZKdK4Ex5dbfEWXayAVHZSZ6VTGSlZEQpz5OChJRQTTcoLo49E5
Htv64Z7YCtPxzvYcI+Sz+w7yZ7vF5OsjVdXJ7DQHgAvbqeXU3HO4Y4ov0vGjyMYe
Q8m/EDerQfAozPVz6tdOBAh1IEghXszbUVJixkZfpP/VnZy/xDt9gHcnPvRa60kY
bbWaODa3kmQCcqI4HcqNCGi3ndOEKzi7JycBQHZAvMokfz4kNm2fEFGVsoxrDUCp
HOGY6dl6exFo/w2DO/PZw9DtYVQBsv/PJtX85CFCgCeILa9vc4jTBziJ6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBN8EfuPpCBcCDkZO5SCYxyq9EdkMB8GA1UdIwQY
MBaAFOsVPaPCTOEjbiDEaGFjXcjvtWqSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnhVOW84Sk00U051SU1Sb1lXTmR5Ty0xYXBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80YmIwNjctYzM2NS00NTJlLWE5M2Ut
MzlkYTFhZThiNzMxLzEvRTN3Ui00LWtJRndJT1JrN2xJSmpIS3IwUjJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80YmIwNjctYzM2NS00NTJlLWE5M2UtMzlkYTFhZThiNzMx
LzEvNnhVOW84Sk00U051SU1Sb1lXTmR5Ty0xYXBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwckUMA0G
CSqGSIb3DQEBCwUAA4IBAQBCi/Bhya+kNGdD1DWibtgxlm2/hxK/TPU7LH8GcGNy
/HlWzr8dERhq9V4RwTz2C3VJEMlIpyBB9y7fLPf3xIgPAHwJXoolIQvlHx0QUSV1
G0/Gx7hvFo/yXk42aBzrr/KWvMBFxHIAI9GMvm6odlbRIPazmxooO82KCS51nXDy
4KKsYK7rXVxWbU1KSrQpl9H1cIBfTnAwBCwFk5I3EAFHy2JbpCCWT+1X0lFyCQ8f
AiclJOzXlvI8ey9VxB0l4Mnx1fVUpY3qe+WgjtkEs0MKOn3op8JxMp03de6D8Nkn
D/KuoIigwbUH9a0cmTIhfjMaVmlo/p6HzFbJgHa3VwNZ
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:04 2024 by rpki-client on console-fra.rpki-client.org