Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/Za79bXbiLn0wBXgyQPeiGl7v5FQ.roa
File: Za79bXbiLn0wBXgyQPeiGl7v5FQ.roa (raw, json)
Hash identifier: Q+6aGB7hUwkpZTw66ZIBViRbaOnQv1z+q7boM/P40Q0=
Subject key identifier: 65:AE:FD:6D:76:E2:2E:7D:30:05:78:32:40:F7:A2:1A:5E:EF:E4:54
Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Certificate serial: 01856F42B55ECE0EF7B89CA067D5AD9CDE97
Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/Za79bXbiLn0wBXgyQPeiGl7v5FQ.roa
Signing time: Sun 01 Jan 2023 21:35:20 +0000
ROA not before: Sun 01 Jan 2023 21:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31274
IP address blocks: 193.25.124.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:b5:5e:ce:0e:f7:b8:9c:a0:67:d5:ad:9c:de:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a
Validity
Not Before: Jan 1 21:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65aefd6d76e22e7d3005783240f7a21a5eefe454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:aa:e9:53:e3:7d:ed:22:52:52:50:ea:aa:e0:
6b:8c:55:72:c2:df:ae:c9:b3:47:03:39:ad:8f:97:
38:c4:aa:3a:81:4a:f9:bb:19:b0:46:07:5f:20:3b:
5c:c0:d2:16:01:d4:90:58:03:ed:e8:7d:94:fd:1d:
4d:cb:6d:4b:0b:55:01:a9:bb:86:39:4f:00:b7:89:
96:53:b9:24:a7:c3:16:a0:94:d1:63:4f:a5:52:62:
6e:5a:07:48:2f:8d:47:c2:1b:f0:54:ee:1e:55:06:
c1:3f:db:4c:e3:e5:eb:53:27:4a:6c:f1:4b:85:d7:
11:01:11:14:03:81:61:7b:96:21:12:44:94:83:d5:
12:5d:36:69:62:9b:9d:01:dd:e6:48:f5:1b:d1:fb:
ab:55:10:b5:c1:67:71:83:1c:d2:97:8b:18:c6:ef:
f4:59:a7:d6:e1:90:88:eb:15:c9:cd:f0:8f:9b:45:
81:f3:01:0b:bb:ed:05:8f:eb:aa:89:05:21:83:56:
03:56:3d:80:b1:aa:68:12:10:b3:73:a9:21:92:16:
0f:82:ff:78:b0:93:a4:a2:8e:1e:c4:99:7c:f9:1c:
a3:79:22:d6:df:bc:83:7e:40:b8:0e:1e:27:46:84:
68:33:8f:fb:94:fb:1c:25:d5:46:e6:6b:0b:02:5e:
f7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:AE:FD:6D:76:E2:2E:7D:30:05:78:32:40:F7:A2:1A:5E:EF:E4:54
X509v3 Authority Key Identifier:
keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/Za79bXbiLn0wBXgyQPeiGl7v5FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.124.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f5:39:07:9f:16:e5:25:46:c6:1f:52:03:74:b5:44:00:6d:
b1:2d:d5:9c:fb:b7:11:2e:3e:e6:19:3c:be:cd:d7:cd:fb:87:
2b:3e:35:e5:64:ae:3c:03:46:b8:27:be:dc:b4:83:39:62:71:
bd:bc:c5:9e:e8:31:a4:d8:64:8c:c7:7c:bf:7d:1d:81:37:81:
5d:c4:d7:97:e5:27:60:a8:61:63:d1:51:81:2c:0b:97:7e:f7:
bf:e5:6a:07:5c:15:ef:c6:10:2a:1a:9e:7c:54:6c:e1:9f:fb:
c6:dc:4c:ef:75:97:39:92:b8:30:bf:2a:72:27:97:18:c6:f1:
59:6e:61:2c:22:1e:f5:d1:08:9c:a1:1a:15:6c:72:a4:29:cc:
15:88:95:94:51:92:da:21:c8:b1:bc:7b:5a:05:29:ea:4a:8c:
2f:2c:8f:16:7d:ae:24:5d:5c:f2:54:2f:a6:c3:8e:fa:55:67:
d8:81:83:20:37:36:fc:38:35:e0:46:db:bc:eb:97:4e:06:2c:
40:b1:86:cb:cd:21:a0:80:43:60:dd:53:ff:af:79:c7:7a:18:
82:d5:e8:fa:38:e7:f7:db:9d:16:e7:18:43:fa:2d:ae:2a:f1:
a8:65:02:f3:31:17:3f:62:20:3c:5d:a4:95:77:b4:89:bb:16:
a9:0c:61:e5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQrVezg73uJygZ9WtnN6XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyODM2MTMwN2VmZDlmM2FiZWZlNjliZDE0ZGUwZTFiZDYw
YjZlNmEwHhcNMjMwMTAxMjEzNTIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWFlZmQ2ZDc2ZTIyZTdkMzAwNTc4MzI0MGY3YTIxYTVlZWZlNDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqrpU+N97SJSUlDqquBrjFVywt+u
ybNHAzmtj5c4xKo6gUr5uxmwRgdfIDtcwNIWAdSQWAPt6H2U/R1Ny21LC1UBqbuG
OU8At4mWU7kkp8MWoJTRY0+lUmJuWgdIL41HwhvwVO4eVQbBP9tM4+XrUydKbPFL
hdcRAREUA4Fhe5YhEkSUg9USXTZpYpudAd3mSPUb0furVRC1wWdxgxzSl4sYxu/0
WafW4ZCI6xXJzfCPm0WB8wELu+0Fj+uqiQUhg1YDVj2AsapoEhCzc6khkhYPgv94
sJOkoo4exJl8+RyjeSLW37yDfkC4Dh4nRoRoM4/7lPscJdVG5msLAl735wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGWu/W124i59MAV4MkD3ohpe7+RUMB8GA1UdIwQY
MBaAFAKDYTB+/Z86vv5pvRTeDhvWC25qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQW9OaE1INzluenEtX21tOUZONE9HOVlMYm1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9lODEwMWEtMjQwZi00ZTMyLWEwOTct
MjdjMjczYTYwNzg4LzEvWmE3OWJYYmlMbjB3QlhneVFQZWlHbDd2NUZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9lODEwMWEtMjQwZi00ZTMyLWEwOTctMjdjMjczYTYwNzg4
LzEvQW9OaE1INzluenEtX21tOUZONE9HOVlMYm1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwRl8MA0G
CSqGSIb3DQEBCwUAA4IBAQAl9TkHnxblJUbGH1IDdLVEAG2xLdWc+7cRLj7mGTy+
zdfN+4crPjXlZK48A0a4J77ctIM5YnG9vMWe6DGk2GSMx3y/fR2BN4FdxNeX5Sdg
qGFj0VGBLAuXfve/5WoHXBXvxhAqGp58VGzhn/vG3EzvdZc5krgwvypyJ5cYxvFZ
bmEsIh710QicoRoVbHKkKcwViJWUUZLaIcixvHtaBSnqSowvLI8Wfa4kXVzyVC+m
w476VWfYgYMgNzb8ODXgRtu865dOBixAsYbLzSGggENg3VP/r3nHehiC1ej6OOf3
250W5xhD+i2uKvGoZQLzMRc/YiA8XaSVd7SJuxapDGHl
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:35 2024 by rpki-client on console-ams.rpki-client.org