Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/bYHPV4H1mTJHxUWrMuvOiiPT_1s.roa
File: bYHPV4H1mTJHxUWrMuvOiiPT_1s.roa (raw, json)
Hash identifier: Hr1aqlRq44qiuVxSEOAolmeFKUJ4AddHQ5oq4mJjESA=
Subject key identifier: 6D:81:CF:57:81:F5:99:32:47:C5:45:AB:32:EB:CE:8A:23:D3:FF:5B
Certificate issuer: /CN=3642bbc83e28c103c17d5a201edef5672634dbe8
Certificate serial: 01856E54303CF4641B7A0583B02F4295F7DD
Authority key identifier: 36:42:BB:C8:3E:28:C1:03:C1:7D:5A:20:1E:DE:F5:67:26:34:DB:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NkK7yD4owQPBfVogHt71ZyY02-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/bYHPV4H1mTJHxUWrMuvOiiPT_1s.roa
Signing time: Sun 01 Jan 2023 17:14:49 +0000
ROA not before: Sun 01 Jan 2023 17:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211709
IP address blocks: 193.3.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:30:3c:f4:64:1b:7a:05:83:b0:2f:42:95:f7:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3642bbc83e28c103c17d5a201edef5672634dbe8
Validity
Not Before: Jan 1 17:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d81cf5781f5993247c545ab32ebce8a23d3ff5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3e:e5:34:a3:2b:20:3e:f0:e2:11:c5:c1:f8:
af:63:40:bb:37:bd:1b:d1:85:95:48:42:01:b4:36:
60:9b:f2:1c:6d:0c:eb:c2:cd:f6:04:67:96:8f:0b:
4f:f3:7e:bc:2c:15:7d:11:81:e7:6c:28:6d:19:75:
a5:40:46:f9:39:fe:fe:ea:d9:72:a9:38:d3:6a:29:
ae:4d:64:26:26:2f:bd:74:72:56:31:2d:a6:ad:e1:
98:ca:27:0d:e4:dd:72:f6:8c:5a:35:1a:40:19:9a:
5a:db:72:5d:ba:0d:8d:68:7f:c6:74:9d:38:9e:91:
30:31:87:02:ad:b3:73:f9:9c:cf:a2:5f:5d:93:72:
a5:53:5f:21:38:ef:1c:08:23:2c:6b:82:9f:7d:be:
8a:f2:58:13:89:d0:61:be:6d:a5:15:bf:ef:84:ff:
34:d8:fd:22:7f:5c:b9:59:0f:58:18:f2:a2:f1:cf:
cc:ca:b7:40:9f:3d:43:a6:5a:49:dd:77:ad:c9:5e:
54:c5:3d:20:ea:92:28:2e:18:b2:98:29:41:62:c3:
9b:9d:cb:18:0d:96:48:99:e0:e7:3f:d0:34:67:03:
9a:f1:5b:36:39:09:2b:eb:48:f8:98:f6:44:a2:1d:
26:7e:94:ae:3a:98:20:4b:0d:1e:2d:f9:3e:ea:2c:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:81:CF:57:81:F5:99:32:47:C5:45:AB:32:EB:CE:8A:23:D3:FF:5B
X509v3 Authority Key Identifier:
keyid:36:42:BB:C8:3E:28:C1:03:C1:7D:5A:20:1E:DE:F5:67:26:34:DB:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NkK7yD4owQPBfVogHt71ZyY02-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/bYHPV4H1mTJHxUWrMuvOiiPT_1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1519a9-ac9f-4f5d-bf4f-6cb2e02caef2/1/NkK7yD4owQPBfVogHt71ZyY02-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.41.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:30:c6:14:6a:ec:11:1d:3e:f2:e0:36:ce:ee:f8:b2:e0:e9:
59:78:75:5e:6d:1d:72:00:11:95:e1:1d:26:95:d6:8e:6e:97:
b0:fd:d8:19:b6:57:71:b4:68:5d:88:a1:c9:3a:33:53:d3:9c:
70:15:e6:97:12:8f:9e:42:04:b9:73:37:77:df:48:ca:a0:1a:
94:4b:9a:52:b1:c0:cf:98:79:00:cc:26:78:8d:59:fb:c2:d2:
0e:21:a3:b2:33:b2:fd:3b:31:fa:e3:ae:84:66:82:e9:70:39:
d6:52:61:a6:22:50:73:f1:f6:c7:d8:5c:10:44:7d:d8:51:3e:
55:bc:7e:24:b8:09:43:40:e7:f9:85:da:95:6c:05:3d:7b:60:
4a:91:46:3c:90:e3:a2:b6:f7:41:14:35:16:b8:3f:4f:6f:c0:
d3:2e:23:b3:a8:04:4a:38:56:d3:88:cb:ab:d4:b2:79:20:f6:
6c:c2:5d:a1:07:f0:9b:f7:d9:1d:ab:7c:a7:e9:1f:3c:50:b9:
bb:99:89:38:81:24:df:a5:37:27:71:39:bc:74:bd:41:48:21:
1e:6e:62:da:56:69:99:94:ab:2a:78:d6:0d:af:51:b5:41:67:
76:cd:37:f5:cf:1a:28:97:7e:5a:28:21:d4:9a:2f:79:22:83:
20:3c:10:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuVDA89GQbegWDsC9ClffdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2NDJiYmM4M2UyOGMxMDNjMTdkNWEyMDFlZGVmNTY3MjYz
NGRiZTgwHhcNMjMwMTAxMTcxNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDgxY2Y1NzgxZjU5OTMyNDdjNTQ1YWIzMmViY2U4YTIzZDNmZjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvT7lNKMrID7w4hHFwfivY0C7N70b
0YWVSEIBtDZgm/IcbQzrws32BGeWjwtP8368LBV9EYHnbChtGXWlQEb5Of7+6tly
qTjTaimuTWQmJi+9dHJWMS2mreGYyicN5N1y9oxaNRpAGZpa23Jdug2NaH/GdJ04
npEwMYcCrbNz+ZzPol9dk3KlU18hOO8cCCMsa4Kffb6K8lgTidBhvm2lFb/vhP80
2P0if1y5WQ9YGPKi8c/MyrdAnz1DplpJ3XetyV5UxT0g6pIoLhiymClBYsObncsY
DZZImeDnP9A0ZwOa8Vs2OQkr60j4mPZEoh0mfpSuOpggSw0eLfk+6ixhSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG2Bz1eB9ZkyR8VFqzLrzooj0/9bMB8GA1UdIwQY
MBaAFDZCu8g+KMEDwX1aIB7e9WcmNNvoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmtLN3lENG93UVBCZlZvZ0h0NzFaeVkwMi1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8xNTE5YTktYWM5Zi00ZjVkLWJmNGYt
NmNiMmUwMmNhZWYyLzEvYllIUFY0SDFtVEpIeFVXck11dk9paVBUXzFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8xNTE5YTktYWM5Zi00ZjVkLWJmNGYtNmNiMmUwMmNhZWYy
LzEvTmtLN3lENG93UVBCZlZvZ0h0NzFaeVkwMi1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQMpMA0G
CSqGSIb3DQEBCwUAA4IBAQB7MMYUauwRHT7y4DbO7viy4OlZeHVebR1yABGV4R0m
ldaObpew/dgZtldxtGhdiKHJOjNT05xwFeaXEo+eQgS5czd330jKoBqUS5pSscDP
mHkAzCZ4jVn7wtIOIaOyM7L9OzH6466EZoLpcDnWUmGmIlBz8fbH2FwQRH3YUT5V
vH4kuAlDQOf5hdqVbAU9e2BKkUY8kOOitvdBFDUWuD9Pb8DTLiOzqARKOFbTiMur
1LJ5IPZswl2hB/Cb99kdq3yn6R88ULm7mYk4gSTfpTcncTm8dL1BSCEebmLaVmmZ
lKsqeNYNr1G1QWd2zTf1zxool35aKCHUmi95IoMgPBCN
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:58 2024 by rpki-client on console-ams.rpki-client.org