Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/AhnNJ2NjLD0snt9egV8evflJ6Xk.roa
File: AhnNJ2NjLD0snt9egV8evflJ6Xk.roa (raw, json)
Hash identifier: jJlo7EACOeDV9BnNNNxtBHglsPEbh1dPZoF8ZbBQ7mM=
Subject key identifier: 02:19:CD:27:63:63:2C:3D:2C:9E:DF:5E:81:5F:1E:BD:F9:49:E9:79
Certificate issuer: /CN=5ee4eb9ef8dd3589e232df8fe876f25ce9707a14
Certificate serial: 01856B40DF96A8C897DC43EBB6F9B118C9FB
Authority key identifier: 5E:E4:EB:9E:F8:DD:35:89:E2:32:DF:8F:E8:76:F2:5C:E9:70:7A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuTrnvjdNYniMt-P6HbyXOlwehQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/AhnNJ2NjLD0snt9egV8evflJ6Xk.roa
Signing time: Sun 01 Jan 2023 02:54:51 +0000
ROA not before: Sun 01 Jan 2023 02:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35099
IP address blocks: 193.221.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:df:96:a8:c8:97:dc:43:eb:b6:f9:b1:18:c9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee4eb9ef8dd3589e232df8fe876f25ce9707a14
Validity
Not Before: Jan 1 02:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0219cd2763632c3d2c9edf5e815f1ebdf949e979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:28:f6:3a:60:10:46:6a:1e:99:d7:8c:99:79:
cf:57:12:34:39:98:d1:1f:a3:dc:1a:dd:a9:be:03:
8d:4c:2d:36:2c:64:fb:59:f7:0d:8d:3f:08:78:a1:
4f:8d:42:72:4d:53:3d:8a:96:99:53:53:f5:af:89:
78:d8:fe:71:9d:c3:77:4d:ee:c7:82:77:60:be:8c:
c9:0c:29:9e:c3:47:83:01:1e:d9:3b:a6:b8:fb:fd:
cd:46:2f:ed:cf:90:ea:e9:84:2b:95:2c:73:c4:75:
a6:ef:d0:20:53:ab:1c:7d:64:02:41:c6:0f:72:4b:
e3:bd:89:5f:c6:c5:ef:f2:41:ef:3a:7f:a9:3b:68:
7b:ef:44:9d:e5:2e:35:b5:c5:08:c6:e4:db:26:cc:
a1:31:b0:36:38:d5:ed:26:fc:4e:89:36:ee:da:4c:
4c:43:34:50:8f:a4:11:d9:03:7d:a5:96:11:50:b1:
27:bf:82:1a:88:89:93:e4:95:c3:c5:a9:82:40:92:
f5:6a:66:fd:e3:81:c7:e2:ae:08:26:d3:fe:af:98:
36:bf:58:ab:a1:94:ad:20:15:5f:68:7d:5e:cd:43:
72:c1:1e:35:7f:88:a6:76:14:f2:fb:42:1b:f9:2d:
52:b9:01:48:c1:dc:5f:f0:5a:bb:41:e6:51:ea:0a:
77:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:19:CD:27:63:63:2C:3D:2C:9E:DF:5E:81:5F:1E:BD:F9:49:E9:79
X509v3 Authority Key Identifier:
keyid:5E:E4:EB:9E:F8:DD:35:89:E2:32:DF:8F:E8:76:F2:5C:E9:70:7A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuTrnvjdNYniMt-P6HbyXOlwehQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/AhnNJ2NjLD0snt9egV8evflJ6Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b2f893-911d-40c0-8ac2-fd3ff35f34a9/1/XuTrnvjdNYniMt-P6HbyXOlwehQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.115.0/24
Signature Algorithm: sha256WithRSAEncryption
56:4e:60:63:0c:bd:f2:af:2b:2c:f5:df:aa:3d:0b:8f:db:e9:
dc:dd:51:ee:bc:cb:0d:52:36:50:9d:b1:1c:e3:10:2e:b6:a9:
8f:2c:71:ef:e3:48:b0:95:10:3d:83:db:e4:aa:68:07:a5:a2:
00:7c:73:ff:1e:c3:a2:74:3a:8a:9a:dd:4e:40:a5:ad:fd:ee:
ee:36:d1:53:50:3d:58:9b:9a:4f:db:5e:07:2c:66:d5:c4:15:
e6:5f:d9:ea:51:ea:9f:e8:93:e3:ef:bd:04:bc:43:5a:2b:6a:
f9:a8:cd:1e:fe:8e:93:63:2b:1f:39:e5:3d:2d:63:41:d7:00:
ba:d7:15:ef:39:4d:0d:c8:dc:6b:7b:6f:cc:17:67:66:58:98:
c0:bf:8c:55:af:9c:e0:82:04:fe:5d:68:dc:50:77:b1:39:57:
27:1d:78:ed:da:3e:6b:5d:07:7c:1e:d5:52:99:d8:0e:7f:47:
44:b7:9e:de:bf:ac:48:3e:b7:13:2c:f6:6b:c4:58:2b:ce:ca:
41:eb:bf:1d:38:5e:2b:d6:f8:41:22:b4:5d:c0:14:77:e5:35:
9e:79:25:3a:48:4a:07:de:b9:51:0e:bf:69:b9:1c:b4:35:67:
b7:b8:ab:a8:de:1a:2a:5c:33:9c:13:88:ed:0e:5e:de:53:2d:
8d:22:78:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrQN+WqMiX3EPrtvmxGMn7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTRlYjllZjhkZDM1ODllMjMyZGY4ZmU4NzZmMjVjZTk3
MDdhMTQwHhcNMjMwMTAxMDI1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjE5Y2QyNzYzNjMyYzNkMmM5ZWRmNWU4MTVmMWViZGY5NDllOTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Cj2OmAQRmoemdeMmXnPVxI0OZjR
H6PcGt2pvgONTC02LGT7WfcNjT8IeKFPjUJyTVM9ipaZU1P1r4l42P5xncN3Te7H
gndgvozJDCmew0eDAR7ZO6a4+/3NRi/tz5Dq6YQrlSxzxHWm79AgU6scfWQCQcYP
ckvjvYlfxsXv8kHvOn+pO2h770Sd5S41tcUIxuTbJsyhMbA2ONXtJvxOiTbu2kxM
QzRQj6QR2QN9pZYRULEnv4IaiImT5JXDxamCQJL1amb944HH4q4IJtP+r5g2v1ir
oZStIBVfaH1ezUNywR41f4imdhTy+0Ib+S1SuQFIwdxf8Fq7QeZR6gp3gwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAIZzSdjYyw9LJ7fXoFfHr35Sel5MB8GA1UdIwQY
MBaAFF7k65743TWJ4jLfj+h28lzpcHoUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVUcm52amROWW5pTXQtUDZIYnlYT2x3ZWhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9iMmY4OTMtOTExZC00MGMwLThhYzIt
ZmQzZmYzNWYzNGE5LzEvQWhuTkoyTmpMRDBzbnQ5ZWdWOGV2ZmxKNlhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9iMmY4OTMtOTExZC00MGMwLThhYzItZmQzZmYzNWYzNGE5
LzEvWHVUcm52amROWW5pTXQtUDZIYnlYT2x3ZWhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwd1zMA0G
CSqGSIb3DQEBCwUAA4IBAQBWTmBjDL3yryss9d+qPQuP2+nc3VHuvMsNUjZQnbEc
4xAutqmPLHHv40iwlRA9g9vkqmgHpaIAfHP/HsOidDqKmt1OQKWt/e7uNtFTUD1Y
m5pP214HLGbVxBXmX9nqUeqf6JPj770EvENaK2r5qM0e/o6TYysfOeU9LWNB1wC6
1xXvOU0NyNxre2/MF2dmWJjAv4xVr5zgggT+XWjcUHexOVcnHXjt2j5rXQd8HtVS
mdgOf0dEt57ev6xIPrcTLPZrxFgrzspB678dOF4r1vhBIrRdwBR35TWeeSU6SEoH
3rlRDr9puRy0NWe3uKuo3hoqXDOcE4jtDl7eUy2NInja
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:40 2024 by rpki-client on console-ams.rpki-client.org