Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/cf93ac-dedd-4130-b365-b8e6566a279a/1/TDqZDrmv6yCkJ92fHrwOnLh89_s.roa
File: TDqZDrmv6yCkJ92fHrwOnLh89_s.roa (raw, json)
Hash identifier: VREF4Jkuq4VQeaIIrjrfAFcOyiK235g4rkb+uknG3C0=
Subject key identifier: 4C:3A:99:0E:B9:AF:EB:20:A4:27:DD:9F:1E:BC:0E:9C:B8:7C:F7:FB
Certificate issuer: /CN=548f757a56d17680d6d6690b19d9f39061980033
Certificate serial: 0185725594A5D45BCC926F5113EEFA1A4151
Authority key identifier: 54:8F:75:7A:56:D1:76:80:D6:D6:69:0B:19:D9:F3:90:61:98:00:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VI91elbRdoDW1mkLGdnzkGGYADM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/cf93ac-dedd-4130-b365-b8e6566a279a/1/TDqZDrmv6yCkJ92fHrwOnLh89_s.roa
Signing time: Mon 02 Jan 2023 11:54:49 +0000
ROA not before: Mon 02 Jan 2023 11:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207557
IP address blocks: 194.9.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:94:a5:d4:5b:cc:92:6f:51:13:ee:fa:1a:41:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=548f757a56d17680d6d6690b19d9f39061980033
Validity
Not Before: Jan 2 11:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c3a990eb9afeb20a427dd9f1ebc0e9cb87cf7fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f1:5b:0d:28:40:9c:16:aa:e6:90:34:5c:29:
31:56:7f:f2:15:99:42:3b:f7:34:96:32:b6:3e:cf:
cf:9a:38:e2:7c:5d:be:8a:84:98:98:31:86:73:93:
8c:04:d6:c3:ed:41:9a:aa:e5:eb:60:74:74:71:44:
ec:95:7b:aa:7e:95:ea:92:ab:ee:ce:a9:4b:a4:fe:
e3:bb:f0:b1:ca:36:ce:66:ee:df:56:8c:16:0a:c0:
f7:b8:ca:8f:55:c5:28:fe:44:4e:08:97:c1:21:d0:
15:6b:64:1b:1f:ab:88:09:5c:c8:bf:d5:49:ae:28:
e6:32:8e:bd:28:bf:e4:ff:a4:77:eb:10:d7:be:67:
ff:11:d4:7a:06:dc:66:9a:ec:03:2a:86:c3:35:49:
02:8b:7d:dc:10:ad:1a:50:10:25:fa:8f:13:f3:75:
7e:17:5f:d8:6b:d9:bf:23:1a:44:91:56:f2:8e:46:
97:fb:f5:75:98:28:6a:37:2d:5c:64:da:6e:64:97:
03:e3:ef:58:fb:31:33:4b:26:c8:e2:9a:b9:f8:c5:
43:4f:91:1e:b6:93:13:95:a7:ec:d4:25:bb:5f:4d:
e6:42:2f:57:c1:81:54:37:06:37:8c:1b:d7:cd:c3:
f5:38:fa:4c:ea:12:2e:04:42:4e:9d:c8:b0:8e:bd:
1f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3A:99:0E:B9:AF:EB:20:A4:27:DD:9F:1E:BC:0E:9C:B8:7C:F7:FB
X509v3 Authority Key Identifier:
keyid:54:8F:75:7A:56:D1:76:80:D6:D6:69:0B:19:D9:F3:90:61:98:00:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VI91elbRdoDW1mkLGdnzkGGYADM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cf93ac-dedd-4130-b365-b8e6566a279a/1/TDqZDrmv6yCkJ92fHrwOnLh89_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cf93ac-dedd-4130-b365-b8e6566a279a/1/VI91elbRdoDW1mkLGdnzkGGYADM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ac:e9:be:d8:f7:94:bc:0b:5d:5f:7b:66:49:6e:4f:fa:20:
d7:ef:20:46:2b:4d:0d:dd:a2:1b:60:83:bc:cd:e7:9b:b1:db:
6b:0b:42:d9:be:19:5f:40:19:f9:b3:43:a6:a6:7d:e8:11:04:
87:85:9c:dc:36:29:79:cb:ec:83:e8:5f:c4:c0:3b:40:f7:66:
96:08:4a:ca:a7:b7:8c:b2:85:4d:d3:12:a1:77:ec:d9:e7:1b:
ca:5d:70:24:fe:4b:4a:c7:1c:ff:ab:be:2f:f7:8e:be:58:90:
06:c8:a4:ee:1d:2e:9a:d0:23:b6:74:c3:45:90:3b:c9:f0:20:
26:87:c0:6d:e0:5c:87:43:d5:59:f0:59:af:72:de:fc:a8:44:
8b:3e:ed:9d:61:98:0b:30:ae:11:3f:57:8b:af:d1:8e:a6:0b:
87:e2:96:31:22:8a:13:a1:20:39:63:34:6b:01:4d:4b:37:3d:
c0:44:5f:09:16:87:37:14:1c:1d:c9:6f:4b:bf:ea:34:05:9c:
82:d9:f9:3d:a1:4c:93:97:4c:9a:a6:eb:4b:53:3d:d6:19:07:
af:65:1f:3e:76:15:45:65:5f:d9:d8:c7:42:cf:e0:6a:5d:a0:
22:c0:ad:5f:af:47:d5:34:87:b2:7f:d3:8c:6d:58:14:cd:d8:
5a:c5:a2:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyVZSl1FvMkm9RE+76GkFRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0OGY3NTdhNTZkMTc2ODBkNmQ2NjkwYjE5ZDlmMzkwNjE5
ODAwMzMwHhcNMjMwMTAyMTE1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzNhOTkwZWI5YWZlYjIwYTQyN2RkOWYxZWJjMGU5Y2I4N2NmN2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/FbDShAnBaq5pA0XCkxVn/yFZlC
O/c0ljK2Ps/PmjjifF2+ioSYmDGGc5OMBNbD7UGaquXrYHR0cUTslXuqfpXqkqvu
zqlLpP7ju/CxyjbOZu7fVowWCsD3uMqPVcUo/kROCJfBIdAVa2QbH6uICVzIv9VJ
rijmMo69KL/k/6R36xDXvmf/EdR6BtxmmuwDKobDNUkCi33cEK0aUBAl+o8T83V+
F1/Ya9m/IxpEkVbyjkaX+/V1mChqNy1cZNpuZJcD4+9Y+zEzSybI4pq5+MVDT5Ee
tpMTlafs1CW7X03mQi9XwYFUNwY3jBvXzcP1OPpM6hIuBEJOnciwjr0fxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEw6mQ65r+sgpCfdnx68Dpy4fPf7MB8GA1UdIwQY
MBaAFFSPdXpW0XaA1tZpCxnZ85BhmAAzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkk5MWVsYlJkb0RXMW1rTEdkbnprR0dZQURNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jZjkzYWMtZGVkZC00MTMwLWIzNjUt
YjhlNjU2NmEyNzlhLzEvVERxWkRybXY2eUNrSjkyZkhyd09uTGg4OV9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9jZjkzYWMtZGVkZC00MTMwLWIzNjUtYjhlNjU2NmEyNzlh
LzEvVkk5MWVsYlJkb0RXMW1rTEdkbnprR0dZQURNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgm8MA0G
CSqGSIb3DQEBCwUAA4IBAQCdrOm+2PeUvAtdX3tmSW5P+iDX7yBGK00N3aIbYIO8
zeebsdtrC0LZvhlfQBn5s0Ompn3oEQSHhZzcNil5y+yD6F/EwDtA92aWCErKp7eM
soVN0xKhd+zZ5xvKXXAk/ktKxxz/q74v946+WJAGyKTuHS6a0CO2dMNFkDvJ8CAm
h8Bt4FyHQ9VZ8Fmvct78qESLPu2dYZgLMK4RP1eLr9GOpguH4pYxIooToSA5YzRr
AU1LNz3ARF8JFoc3FBwdyW9Lv+o0BZyC2fk9oUyTl0yaputLUz3WGQevZR8+dhVF
ZV/Z2MdCz+BqXaAiwK1fr0fVNIeyf9OMbVgUzdhaxaJT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:07 2024 by rpki-client on console-fra.rpki-client.org