Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/SXTw1whIWgrznwHTN2q3MxG1EdY.roa
File: SXTw1whIWgrznwHTN2q3MxG1EdY.roa (raw, json)
Hash identifier: KqBYWZWT+sLG/FAfkKBbLhY2AqXb2CjyPeg+zVCQ5X4=
Subject key identifier: 49:74:F0:D7:08:48:5A:0A:F3:9F:01:D3:37:6A:B7:33:11:B5:11:D6
Certificate issuer: /CN=741491a6b10433b99615756fde9313f2be1d3df0
Certificate serial: 01856BF7D92832CE08B6A3F63BE7AB922FEB
Authority key identifier: 74:14:91:A6:B1:04:33:B9:96:15:75:6F:DE:93:13:F2:BE:1D:3D:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBSRprEEM7mWFXVv3pMT8r4dPfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/SXTw1whIWgrznwHTN2q3MxG1EdY.roa
Signing time: Sun 01 Jan 2023 06:14:43 +0000
ROA not before: Sun 01 Jan 2023 06:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9211
IP address blocks: 193.28.52.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:d9:28:32:ce:08:b6:a3:f6:3b:e7:ab:92:2f:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=741491a6b10433b99615756fde9313f2be1d3df0
Validity
Not Before: Jan 1 06:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4974f0d708485a0af39f01d3376ab73311b511d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6f:9a:47:f0:56:7e:12:37:3f:6d:61:66:6e:
30:08:11:bb:43:5f:02:3c:a1:2d:16:50:92:65:2f:
58:a9:a6:e8:bb:a3:c7:1b:99:fa:92:34:64:fa:e1:
8c:be:61:84:5a:8e:a1:d6:bb:ee:be:e5:be:9a:ea:
27:6b:ac:59:de:14:81:43:5e:7f:91:28:43:fb:44:
c1:ff:55:16:e7:f3:2b:96:97:1e:0e:b7:12:b7:4a:
b0:0b:e6:e1:5b:67:db:56:6b:9b:b9:7e:02:22:44:
ab:4e:c4:a6:7d:b4:45:1a:25:d2:97:64:00:2e:0b:
51:ab:94:55:9e:ad:18:ae:8e:26:3e:61:08:8e:cc:
d6:4a:48:44:4d:94:26:c8:3d:e3:f2:7e:d1:13:00:
0b:f9:1f:64:79:53:09:dc:b7:a1:fb:8c:60:46:b8:
e9:c6:88:d9:9b:71:62:d4:b7:8e:ed:2f:84:f0:03:
db:2c:af:3a:0c:b0:27:3b:01:29:9c:44:8f:11:b3:
56:1d:31:59:19:78:fd:51:2a:b4:78:af:f9:11:af:
0c:eb:e8:a7:01:65:63:8d:0c:e8:4b:ca:1c:88:91:
9b:26:6c:8a:cb:48:56:5d:3e:cc:d4:32:87:66:f6:
a5:53:7d:8c:11:a1:e8:90:66:e8:f0:6c:8f:a0:a1:
60:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:74:F0:D7:08:48:5A:0A:F3:9F:01:D3:37:6A:B7:33:11:B5:11:D6
X509v3 Authority Key Identifier:
keyid:74:14:91:A6:B1:04:33:B9:96:15:75:6F:DE:93:13:F2:BE:1D:3D:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBSRprEEM7mWFXVv3pMT8r4dPfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/SXTw1whIWgrznwHTN2q3MxG1EdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f54cb3-ebae-46b2-8b17-84b57693c7a8/1/dBSRprEEM7mWFXVv3pMT8r4dPfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.52.0/23
Signature Algorithm: sha256WithRSAEncryption
06:c9:6a:38:3a:fe:c5:d4:38:0e:27:67:5a:1c:c4:73:87:35:
a7:c6:cf:e4:fa:6a:8a:98:ea:c5:21:c5:76:2d:43:09:39:82:
2b:83:e3:22:bc:e1:00:30:a1:4f:7b:4e:94:44:46:f5:67:97:
b0:13:a1:e1:10:cf:63:5e:4b:be:e7:d7:22:da:6b:f0:b7:82:
f0:0b:f8:83:b0:52:e8:2b:50:f4:8e:18:4b:a9:20:a9:7f:a4:
94:17:68:26:f8:52:a9:04:de:57:cd:6e:59:2f:4b:23:04:9d:
f5:b1:2b:7a:b9:8e:20:68:5e:6e:e2:d3:37:12:8e:e6:15:49:
6f:68:d2:86:b4:16:d0:82:9a:ff:41:14:b0:38:9b:ce:e4:c9:
f9:2a:93:47:c5:97:4e:39:7e:af:f5:df:e8:bc:60:cd:fb:d5:
07:c5:02:b3:68:e1:a3:93:21:20:f0:5a:ec:c6:4e:17:96:5e:
04:5a:9f:98:82:3d:b4:ea:23:17:56:58:0d:18:3a:ca:95:4e:
3e:5e:98:ab:a8:e5:e3:82:9b:7f:d2:85:36:48:94:31:b3:9d:
44:97:1b:90:d4:41:e0:a7:ea:2d:da:ec:76:13:29:26:2f:53:
0c:fd:42:2e:bf:92:9f:61:b7:6b:89:54:e7:22:ed:4f:0c:69:
79:da:66:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr99koMs4ItqP2O+erki/rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0MTQ5MWE2YjEwNDMzYjk5NjE1NzU2ZmRlOTMxM2YyYmUx
ZDNkZjAwHhcNMjMwMTAxMDYxNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTc0ZjBkNzA4NDg1YTBhZjM5ZjAxZDMzNzZhYjczMzExYjUxMWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArG+aR/BWfhI3P21hZm4wCBG7Q18C
PKEtFlCSZS9Yqabou6PHG5n6kjRk+uGMvmGEWo6h1rvuvuW+muona6xZ3hSBQ15/
kShD+0TB/1UW5/MrlpceDrcSt0qwC+bhW2fbVmubuX4CIkSrTsSmfbRFGiXSl2QA
LgtRq5RVnq0Yro4mPmEIjszWSkhETZQmyD3j8n7REwAL+R9keVMJ3Leh+4xgRrjp
xojZm3Fi1LeO7S+E8APbLK86DLAnOwEpnESPEbNWHTFZGXj9USq0eK/5Ea8M6+in
AWVjjQzoS8ociJGbJmyKy0hWXT7M1DKHZvalU32MEaHokGbo8GyPoKFg0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEl08NcISFoK858B0zdqtzMRtRHWMB8GA1UdIwQY
MBaAFHQUkaaxBDO5lhV1b96TE/K+HT3wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEJTUnByRUVNN21XRlhWdjNwTVQ4cjRkUGZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mNTRjYjMtZWJhZS00NmIyLThiMTct
ODRiNTc2OTNjN2E4LzEvU1hUdzF3aElXZ3J6bndIVE4ycTNNeEcxRWRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9mNTRjYjMtZWJhZS00NmIyLThiMTctODRiNTc2OTNjN2E4
LzEvZEJTUnByRUVNN21XRlhWdjNwTVQ4cjRkUGZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwRw0MA0G
CSqGSIb3DQEBCwUAA4IBAQAGyWo4Ov7F1DgOJ2daHMRzhzWnxs/k+mqKmOrFIcV2
LUMJOYIrg+MivOEAMKFPe06UREb1Z5ewE6HhEM9jXku+59ci2mvwt4LwC/iDsFLo
K1D0jhhLqSCpf6SUF2gm+FKpBN5XzW5ZL0sjBJ31sSt6uY4gaF5u4tM3Eo7mFUlv
aNKGtBbQgpr/QRSwOJvO5Mn5KpNHxZdOOX6v9d/ovGDN+9UHxQKzaOGjkyEg8Frs
xk4Xll4EWp+Ygj206iMXVlgNGDrKlU4+XpirqOXjgpt/0oU2SJQxs51ElxuQ1EHg
p+ot2ux2EykmL1MM/UIuv5KfYbdriVTnIu1PDGl52mbB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org