Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/IhAh1_J7EC4fTmleDpQHmWSuABo.roa
File: IhAh1_J7EC4fTmleDpQHmWSuABo.roa (raw, json)
Hash identifier: LSPHjV8+qsLlZAeBNrCvlZAeIegkAOKQEx+hbZhmU2c=
Subject key identifier: 22:10:21:D7:F2:7B:10:2E:1F:4E:69:5E:0E:94:07:99:64:AE:00:1A
Certificate issuer: /CN=29187f811597dd03513be42f43155bc15a3a0b3f
Certificate serial: 018570396D4B5A1443F855AF7913A0DCD73E
Authority key identifier: 29:18:7F:81:15:97:DD:03:51:3B:E4:2F:43:15:5B:C1:5A:3A:0B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/IhAh1_J7EC4fTmleDpQHmWSuABo.roa
Signing time: Mon 02 Jan 2023 02:04:49 +0000
ROA not before: Mon 02 Jan 2023 02:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49239
IP address blocks: 193.17.179.0/24 maxlen: 24
193.17.70.0/24 maxlen: 24
193.17.193.0/24 maxlen: 24
193.17.220.0/24 maxlen: 24
2a0f:7540:1::/48 maxlen: 48
2a0f:7540::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 05 Feb 2023 19:45:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:6d:4b:5a:14:43:f8:55:af:79:13:a0:dc:d7:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29187f811597dd03513be42f43155bc15a3a0b3f
Validity
Not Before: Jan 2 02:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=221021d7f27b102e1f4e695e0e94079964ae001a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f5:fb:72:f0:08:b0:d7:20:3b:07:32:ff:ec:
ee:08:80:82:cd:ad:39:ad:08:b1:f1:d7:64:15:15:
94:0e:dd:10:17:46:a9:5e:19:99:ee:c1:94:93:0a:
79:cb:9c:b0:b6:fb:1a:54:c7:92:1c:46:fe:60:56:
63:9a:85:03:e3:0f:8f:22:45:33:4f:fe:be:43:b2:
02:b0:c6:a8:40:12:e6:77:17:67:04:6f:7a:4a:5d:
f2:df:ac:9f:04:f0:51:42:9b:1a:ca:63:08:05:6e:
37:7c:f4:ab:53:7b:f6:e5:13:05:a6:59:ab:12:ff:
ae:05:d6:c9:dd:61:3f:98:3e:f3:90:73:1b:a9:ec:
85:95:61:4f:34:28:d8:0d:3e:42:19:90:9e:f7:59:
39:d1:93:93:26:99:0d:e5:62:70:9b:47:9d:63:fa:
5c:cf:21:2d:c7:ca:0d:98:6b:e4:fe:c2:75:bf:f6:
9b:a6:fe:13:d2:95:c0:30:b1:4a:ba:3f:8e:c4:17:
5e:9f:d3:25:8d:ae:e4:66:74:bf:94:95:4a:50:af:
74:0f:0e:63:ce:ac:b0:e3:6c:6f:7a:13:76:ba:3a:
40:03:95:80:b9:66:67:3c:a2:8d:06:ee:7f:69:e1:
e6:62:15:fa:34:ae:1f:03:c0:61:99:59:74:4a:7d:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:10:21:D7:F2:7B:10:2E:1F:4E:69:5E:0E:94:07:99:64:AE:00:1A
X509v3 Authority Key Identifier:
keyid:29:18:7F:81:15:97:DD:03:51:3B:E4:2F:43:15:5B:C1:5A:3A:0B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/IhAh1_J7EC4fTmleDpQHmWSuABo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.70.0/24
193.17.179.0/24
193.17.193.0/24
193.17.220.0/24
IPv6:
2a0f:7540::/47
Signature Algorithm: sha256WithRSAEncryption
73:7b:e3:aa:4a:86:ea:6f:cf:52:86:8b:65:21:8e:49:27:b2:
be:89:3a:0f:0e:df:a6:c2:24:8c:bd:6a:1d:98:60:ca:31:21:
e8:52:ae:21:49:93:31:5b:b9:a6:3a:55:76:6f:f5:fd:22:e3:
74:f6:38:af:5c:d9:92:1f:99:3f:a3:68:2f:87:c1:3d:40:c6:
cc:17:bc:d6:12:fc:62:58:a0:91:41:a8:35:71:3e:da:79:e2:
5f:3f:49:f1:55:07:ba:4a:91:0d:fe:6d:da:67:b7:53:ac:ca:
0c:00:db:cb:84:99:1d:d1:2b:c2:ba:32:a0:88:db:08:2d:ea:
2b:7e:45:54:ee:a1:e0:ae:d8:fa:02:1c:b2:7c:62:3f:75:5f:
8f:cd:66:de:25:0d:2e:45:22:3e:1c:8c:f8:d1:86:66:1c:dc:
d9:4f:50:b1:eb:33:74:55:aa:56:12:28:9f:62:8a:49:5a:4f:
01:4b:6a:02:0c:d3:24:f2:48:e2:72:da:8c:d7:4b:2a:21:6b:
14:1c:50:cb:b5:e7:c1:5e:0f:7f:3f:f1:8c:79:80:90:d2:3b:
5d:26:bb:4b:b6:ca:7b:c8:8a:ec:bd:68:91:8e:70:23:39:e4:
de:8c:2b:6e:24:bf:6a:7f:80:10:57:93:8e:94:41:83:d1:c9:
75:09:2f:42
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAYVwOW1LWhRD+FWveROg3Nc+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MTg3ZjgxMTU5N2RkMDM1MTNiZTQyZjQzMTU1YmMxNWEz
YTBiM2YwHhcNMjMwMTAyMDIwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjEwMjFkN2YyN2IxMDJlMWY0ZTY5NWUwZTk0MDc5OTY0YWUwMDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfX7cvAIsNcgOwcy/+zuCICCza05
rQix8ddkFRWUDt0QF0apXhmZ7sGUkwp5y5ywtvsaVMeSHEb+YFZjmoUD4w+PIkUz
T/6+Q7ICsMaoQBLmdxdnBG96Sl3y36yfBPBRQpsaymMIBW43fPSrU3v25RMFplmr
Ev+uBdbJ3WE/mD7zkHMbqeyFlWFPNCjYDT5CGZCe91k50ZOTJpkN5WJwm0edY/pc
zyEtx8oNmGvk/sJ1v/abpv4T0pXAMLFKuj+OxBden9Mlja7kZnS/lJVKUK90Dw5j
zqyw42xvehN2ujpAA5WAuWZnPKKNBu5/aeHmYhX6NK4fA8BhmVl0Sn15LwIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFCIQIdfyexAuH05pXg6UB5lkrgAaMB8GA1UdIwQY
MBaAFCkYf4EVl90DUTvkL0MVW8FaOgs/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1JoX2dSV1gzUU5STy1RdlF4VmJ3Vm82Q3o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84YzAwNmQtNTBmNS00NDVkLWI3ZTgt
MjQ5OTRiMDQwZjQxLzEvSWhBaDFfSjdFQzRmVG1sZURwUUhtV1N1QUJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC84YzAwNmQtNTBmNS00NDVkLWI3ZTgtMjQ5OTRiMDQwZjQx
LzEvS1JoX2dSV1gzUU5STy1RdlF4VmJ3Vm82Q3o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQAwRFGAwQA
wRGzAwQAwRHBAwQAwRHcMA8EAgACMAkDBwEqD3VAAAAwDQYJKoZIhvcNAQELBQAD
ggEBAHN746pKhupvz1KGi2Uhjkknsr6JOg8O36bCJIy9ah2YYMoxIehSriFJkzFb
uaY6VXZv9f0i43T2OK9c2ZIfmT+jaC+HwT1AxswXvNYS/GJYoJFBqDVxPtp54l8/
SfFVB7pKkQ3+bdpnt1OsygwA28uEmR3RK8K6MqCI2wgt6it+RVTuoeCu2PoCHLJ8
Yj91X4/NZt4lDS5FIj4cjPjRhmYc3NlPULHrM3RVqlYSKJ9iiklaTwFLagIM0yTy
SOJy2ozXSyohaxQcUMu158FeD38/8Yx5gJDSO10mu0u2ynvIiuy9aJGOcCM55N6M
K24kv2p/gBBXk46UQYPRyXUJL0I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:29 2024 by rpki-client on console-fra.rpki-client.org