Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/5yeZhKqU2wCCU1FBwN9_HHTeX1I.roa
File: 5yeZhKqU2wCCU1FBwN9_HHTeX1I.roa (raw, json)
Hash identifier: HgJykJZhKhwUyYSs9sVK42LogKWmEU0VRKo/gcQJ8TA=
Subject key identifier: E7:27:99:84:AA:94:DB:00:82:53:51:41:C0:DF:7F:1C:74:DE:5F:52
Certificate issuer: /CN=22d7c11a449a4376c3a787c7f613c551aa611f91
Certificate serial: 01867626273D1167AC765B275F6EA298A9F6
Authority key identifier: 22:D7:C1:1A:44:9A:43:76:C3:A7:87:C7:F6:13:C5:51:AA:61:1F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItfBGkSaQ3bDp4fH9hPFUaphH5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/5yeZhKqU2wCCU1FBwN9_HHTeX1I.roa
Signing time: Tue 21 Feb 2023 22:44:17 +0000
ROA not before: Tue 21 Feb 2023 22:44:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56430
IP address blocks: 193.105.218.0/24 maxlen: 24
2a12:aec0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:76:26:27:3d:11:67:ac:76:5b:27:5f:6e:a2:98:a9:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d7c11a449a4376c3a787c7f613c551aa611f91
Validity
Not Before: Feb 21 22:44:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7279984aa94db0082535141c0df7f1c74de5f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:76:6f:d0:d5:cc:3f:0a:15:f0:59:e8:75:71:
45:bb:da:1b:3c:6f:6c:2b:23:bd:fc:73:54:8b:2f:
11:b4:33:eb:ac:9c:1e:2a:2a:fd:07:8b:56:6c:59:
ef:95:8c:1c:45:aa:a1:ae:a5:97:1d:46:7f:01:90:
57:92:61:ee:9b:04:c6:8a:91:4f:dd:44:ed:58:f7:
aa:de:74:19:e3:28:8c:a1:7c:07:74:fb:c6:0a:1a:
53:aa:1d:8c:5a:aa:b3:7a:c4:d4:fc:b4:73:f7:cc:
b0:f2:19:b3:69:56:6d:c2:24:86:2f:27:78:dc:9a:
44:dc:53:ad:44:31:29:b9:04:ac:8a:4a:bd:65:c5:
40:78:01:1b:18:5f:31:86:43:a5:aa:23:8a:a4:4a:
df:4c:ff:1d:dd:fa:4b:7e:10:ee:4f:56:7c:5a:3d:
a6:2a:b7:c5:9f:d6:be:46:01:5c:77:be:a5:36:ad:
73:84:f2:49:c6:77:73:35:a5:9e:cc:c8:63:6a:9f:
19:12:e6:c0:74:f5:ff:40:6d:7d:c7:ff:40:60:a7:
67:90:45:a7:d9:df:68:f4:7a:bb:dc:5b:5c:2c:59:
28:a2:0d:82:0a:4e:44:90:ab:fc:97:e0:63:71:e0:
2b:0c:a1:cd:eb:92:ea:b1:09:73:5b:d0:61:d0:9b:
41:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:27:99:84:AA:94:DB:00:82:53:51:41:C0:DF:7F:1C:74:DE:5F:52
X509v3 Authority Key Identifier:
keyid:22:D7:C1:1A:44:9A:43:76:C3:A7:87:C7:F6:13:C5:51:AA:61:1F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItfBGkSaQ3bDp4fH9hPFUaphH5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/5yeZhKqU2wCCU1FBwN9_HHTeX1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/ItfBGkSaQ3bDp4fH9hPFUaphH5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.218.0/24
IPv6:
2a12:aec0::/29
Signature Algorithm: sha256WithRSAEncryption
2c:45:cd:bd:69:96:f0:7b:56:c6:4b:6a:cf:1c:86:40:2f:4e:
96:cc:6e:7d:55:37:9b:9c:40:05:8e:43:2c:85:a9:db:f7:64:
6c:d5:b8:3c:6c:c6:98:1b:98:78:cc:de:49:56:a7:b4:62:f3:
7c:62:83:1d:d5:c8:cb:70:07:52:f7:8f:b2:ad:d3:3b:e4:3b:
0f:a9:bd:60:b2:4a:57:7a:7e:e0:87:03:ee:5c:29:de:00:07:
5f:d7:4e:26:33:a9:f7:e9:b5:70:49:d7:e0:30:75:90:5f:66:
3a:6d:1f:67:51:a7:1e:17:76:fb:d5:fa:09:1b:d8:3d:0d:28:
ae:a9:f8:73:d7:93:f3:7a:a4:29:6e:0b:1c:aa:4e:70:c1:16:
d4:b9:08:e3:d7:8b:4f:f4:aa:8b:18:20:2d:56:69:3d:4a:9a:
45:50:15:3b:37:9f:d0:33:0e:43:12:6e:20:a5:ad:49:22:93:
3d:60:28:57:12:44:08:1f:d9:57:ca:af:e3:ad:31:2d:78:38:
72:6e:35:96:15:0c:db:95:57:bb:1e:40:16:b6:9d:96:56:17:
c2:ab:c6:db:f0:ea:ba:e1:21:53:00:b3:15:ef:65:db:d2:44:
5c:d6:50:59:9b:41:f3:d1:2e:28:fe:d2:29:f0:45:c2:40:ed:
df:1b:c6:12
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYZ2Jic9EWesdlsnX26imKn2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZDdjMTFhNDQ5YTQzNzZjM2E3ODdjN2Y2MTNjNTUxYWE2
MTFmOTEwHhcNMjMwMjIxMjI0NDE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzI3OTk4NGFhOTRkYjAwODI1MzUxNDFjMGRmN2YxYzc0ZGU1ZjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAinZv0NXMPwoV8FnodXFFu9obPG9s
KyO9/HNUiy8RtDPrrJweKir9B4tWbFnvlYwcRaqhrqWXHUZ/AZBXkmHumwTGipFP
3UTtWPeq3nQZ4yiMoXwHdPvGChpTqh2MWqqzesTU/LRz98yw8hmzaVZtwiSGLyd4
3JpE3FOtRDEpuQSsikq9ZcVAeAEbGF8xhkOlqiOKpErfTP8d3fpLfhDuT1Z8Wj2m
KrfFn9a+RgFcd76lNq1zhPJJxndzNaWezMhjap8ZEubAdPX/QG19x/9AYKdnkEWn
2d9o9Hq73FtcLFkoog2CCk5EkKv8l+BjceArDKHN65LqsQlzW9Bh0JtBqwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOcnmYSqlNsAglNRQcDffxx03l9SMB8GA1UdIwQY
MBaAFCLXwRpEmkN2w6eHx/YTxVGqYR+RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXRmQkdrU2FRM2JEcDRmSDloUEZVYXBoSDVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC84ZjJlZjQtZTE2MS00YjEwLWEyMjEt
OTk5ZjRmNjBmMGFmLzEvNXllWmhLcVUyd0NDVTFGQndOOV9ISFRlWDFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC84ZjJlZjQtZTE2MS00YjEwLWEyMjEtOTk5ZjRmNjBmMGFm
LzEvSXRmQkdrU2FRM2JEcDRmSDloUEZVYXBoSDVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwWnaMA0E
AgACMAcDBQMqEq7AMA0GCSqGSIb3DQEBCwUAA4IBAQAsRc29aZbwe1bGS2rPHIZA
L06WzG59VTebnEAFjkMshanb92Rs1bg8bMaYG5h4zN5JVqe0YvN8YoMd1cjLcAdS
94+yrdM75DsPqb1gskpXen7ghwPuXCneAAdf104mM6n36bVwSdfgMHWQX2Y6bR9n
UaceF3b71foJG9g9DSiuqfhz15PzeqQpbgscqk5wwRbUuQjj14tP9KqLGCAtVmk9
SppFUBU7N5/QMw5DEm4gpa1JIpM9YChXEkQIH9lXyq/jrTEteDhybjWWFQzblVe7
HkAWtp2WVhfCq8bb8Oq64SFTALMV72Xb0kRc1lBZm0Hz0S4o/tIp8EXCQO3fG8YS
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:16 2024 by rpki-client on console-ams.rpki-client.org