Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/qs4wjQY5qKxf4m5r2BoVKkG8LfI.roa
File: qs4wjQY5qKxf4m5r2BoVKkG8LfI.roa (raw, json)
Hash identifier: lo4e8cGe8N1mEQsvMJBgRA8+oTnNVnzOBU0xNKYHW/M=
Subject key identifier: AA:CE:30:8D:06:39:A8:AC:5F:E2:6E:6B:D8:1A:15:2A:41:BC:2D:F2
Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a
Certificate serial: 018570398B9B49D4D8A9888D97F53C7A142C
Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/qs4wjQY5qKxf4m5r2BoVKkG8LfI.roa
Signing time: Mon 02 Jan 2023 02:04:57 +0000
ROA not before: Mon 02 Jan 2023 02:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50194
IP address blocks: 193.104.165.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:8b:9b:49:d4:d8:a9:88:8d:97:f5:3c:7a:14:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a
Validity
Not Before: Jan 2 02:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aace308d0639a8ac5fe26e6bd81a152a41bc2df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2d:c7:55:38:0f:04:d0:b7:df:ee:29:5b:2b:
72:77:37:70:86:d5:2f:01:30:ce:3c:17:28:4c:d9:
59:ae:43:b9:93:37:12:f9:53:9c:d1:ea:a4:51:4f:
7d:ed:cf:a5:50:e7:30:86:24:11:a8:3b:fa:fe:cb:
75:ea:92:a2:57:c7:96:34:ee:40:61:90:b4:34:c4:
cb:36:fb:d8:87:0a:60:22:76:fc:d4:18:66:5c:ac:
44:4a:0c:58:b7:6c:30:96:f4:31:23:24:58:43:c3:
5a:9f:d7:97:bb:88:ee:9d:98:a1:57:0d:3e:8a:55:
6f:67:33:1c:4e:14:22:43:2b:57:65:ce:85:5a:a4:
7e:ff:1f:f4:07:bd:68:c1:9e:05:41:ab:75:b0:11:
4d:eb:2b:ee:6e:e0:11:f1:bb:63:e1:0c:89:a4:9f:
58:78:4d:a5:45:fd:9f:29:25:54:66:bd:0c:80:27:
88:fd:0b:40:10:79:dd:b4:ca:e0:18:a3:ac:08:e1:
a0:95:2c:f7:97:88:d9:81:dc:3f:52:d1:87:45:5a:
da:af:70:94:23:12:dc:a2:2e:2d:71:71:f7:10:bf:
b7:85:56:da:86:6d:52:97:11:6a:40:31:42:c6:1e:
49:93:fa:23:b5:5f:44:bc:de:05:e3:27:e0:49:f1:
4c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CE:30:8D:06:39:A8:AC:5F:E2:6E:6B:D8:1A:15:2A:41:BC:2D:F2
X509v3 Authority Key Identifier:
keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/qs4wjQY5qKxf4m5r2BoVKkG8LfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.165.0/24
Signature Algorithm: sha256WithRSAEncryption
13:3f:5e:a4:c3:1e:a5:d2:bb:fb:d7:f8:7b:5e:d2:31:a8:7a:
c9:92:6c:0f:36:f3:bd:9b:85:44:1f:d9:d5:1a:a1:42:04:fb:
65:bd:ba:47:7d:9e:b8:88:30:5d:9e:16:16:fb:41:1e:9e:3d:
7a:a3:ec:df:3f:df:72:ee:15:b9:c7:dd:70:34:e2:c6:79:8e:
83:76:2b:42:14:e0:28:5d:fe:0e:0e:c4:06:19:05:1b:4e:f5:
d9:01:97:e3:e6:1d:8d:e4:89:f7:a0:70:06:c3:6f:4d:bc:c1:
24:0f:be:0c:de:d9:f2:b1:87:47:1f:a2:b6:1f:f5:d0:b8:49:
6e:35:73:f5:44:a3:39:74:cb:ee:61:41:7c:37:a0:b2:f4:98:
51:55:c2:ee:7b:89:06:ab:37:d4:b5:4e:74:57:60:b7:d4:97:
1e:64:30:cf:f6:fe:3c:ff:5b:5a:fc:a4:a8:b1:66:11:4d:62:
82:18:26:55:f1:c7:7c:04:e7:f8:bf:83:c7:46:a3:86:da:58:
51:db:4e:a2:52:e5:e5:60:79:11:6b:23:15:ac:20:ad:a1:34:
aa:bc:9e:a9:06:e9:92:69:db:3d:5f:6e:ec:b7:7e:a0:87:51:
5d:81:e4:46:39:0e:81:93:df:a0:9a:27:e6:81:4f:c4:8d:cc:
a0:a9:63:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwOYubSdTYqYiNl/U8ehQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMmJhMjlhYTAxMTNmYWZkMzcwZDg2NWZiNDQ0NDk4N2I0
NzMwOGEwHhcNMjMwMTAyMDIwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWNlMzA4ZDA2MzlhOGFjNWZlMjZlNmJkODFhMTUyYTQxYmMyZGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiC3HVTgPBNC33+4pWytydzdwhtUv
ATDOPBcoTNlZrkO5kzcS+VOc0eqkUU997c+lUOcwhiQRqDv6/st16pKiV8eWNO5A
YZC0NMTLNvvYhwpgInb81BhmXKxESgxYt2wwlvQxIyRYQ8Nan9eXu4junZihVw0+
ilVvZzMcThQiQytXZc6FWqR+/x/0B71owZ4FQat1sBFN6yvubuAR8btj4QyJpJ9Y
eE2lRf2fKSVUZr0MgCeI/QtAEHndtMrgGKOsCOGglSz3l4jZgdw/UtGHRVrar3CU
IxLcoi4tcXH3EL+3hVbahm1SlxFqQDFCxh5Jk/ojtV9EvN4F4yfgSfFMZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKrOMI0GOaisX+Jua9gaFSpBvC3yMB8GA1UdIwQY
MBaAFN4ropqgET+v03DYZftERJh7RzCKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAt
ZDFhNGE0NWZhZmJjLzEvcXM0d2pRWTVxS3hmNG01cjJCb1ZLa0c4TGZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAtZDFhNGE0NWZhZmJj
LzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWilMA0G
CSqGSIb3DQEBCwUAA4IBAQATP16kwx6l0rv71/h7XtIxqHrJkmwPNvO9m4VEH9nV
GqFCBPtlvbpHfZ64iDBdnhYW+0Eenj16o+zfP99y7hW5x91wNOLGeY6DditCFOAo
Xf4ODsQGGQUbTvXZAZfj5h2N5In3oHAGw29NvMEkD74M3tnysYdHH6K2H/XQuElu
NXP1RKM5dMvuYUF8N6Cy9JhRVcLue4kGqzfUtU50V2C31JceZDDP9v48/1ta/KSo
sWYRTWKCGCZV8cd8BOf4v4PHRqOG2lhR206iUuXlYHkRayMVrCCtoTSqvJ6pBumS
ads9X27st36gh1FdgeRGOQ6Bk9+gmifmgU/EjcygqWPH
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:26 2024 by rpki-client on console-ams.rpki-client.org