Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/xLLque0kTJ6b0vYXrKGZSDoS15o.roa
File: xLLque0kTJ6b0vYXrKGZSDoS15o.roa (raw, json)
Hash identifier: 4S3cv3HLvizVDeIle6xx4Q15HGbDnBZ1aF1omtvyBKU=
Subject key identifier: C4:B2:EA:B9:ED:24:4C:9E:9B:D2:F6:17:AC:A1:99:48:3A:12:D7:9A
Certificate issuer: /CN=9f0f7e99fb4d6544f222df38a898eb162c0d818e
Certificate serial: 01856F14D38014549AA824F90585A0C22618
Authority key identifier: 9F:0F:7E:99:FB:4D:65:44:F2:22:DF:38:A8:98:EB:16:2C:0D:81:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nw9-mftNZUTyIt84qJjrFiwNgY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/xLLque0kTJ6b0vYXrKGZSDoS15o.roa
Signing time: Sun 01 Jan 2023 20:45:13 +0000
ROA not before: Sun 01 Jan 2023 20:45:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58028
IP address blocks: 193.201.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:d3:80:14:54:9a:a8:24:f9:05:85:a0:c2:26:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0f7e99fb4d6544f222df38a898eb162c0d818e
Validity
Not Before: Jan 1 20:45:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4b2eab9ed244c9e9bd2f617aca199483a12d79a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e4:0d:8a:b3:20:1b:b2:da:fa:00:95:5f:fb:
56:dd:2b:01:2c:ff:f8:a2:d8:60:6c:97:1f:fb:8f:
e7:4e:d5:8a:24:42:79:5a:5c:87:9c:5d:8b:07:8f:
a6:fa:e7:8d:a5:bd:55:48:84:cd:ea:ee:37:3a:5f:
30:d6:06:67:41:23:f2:47:01:3a:fe:bb:23:de:04:
34:fb:90:cb:5f:59:9e:1e:39:39:71:39:69:a1:8d:
7c:e2:eb:0d:f0:c8:4e:99:81:e4:98:0b:ee:f3:b4:
0a:1f:d3:50:be:61:b4:3d:6a:90:e7:fc:0a:8c:37:
c3:da:1e:ce:e9:6f:78:4a:ad:94:a9:b0:6c:2b:a7:
92:33:65:f9:fa:d0:53:55:26:bf:de:4d:26:ac:c9:
e9:a4:94:11:ec:03:56:ab:b6:21:1e:f1:7d:b2:34:
4c:a4:f3:bb:00:68:06:29:1e:1e:6a:15:e6:bc:ff:
a4:3b:2b:0d:e5:49:2a:45:42:d9:4b:ad:5d:8d:e1:
6a:e6:94:ea:30:9b:1a:20:c1:24:d4:74:b9:da:2c:
58:98:e9:2d:f5:99:0e:bf:82:ec:7c:11:24:b9:d9:
d8:84:e8:8a:8a:05:1c:6c:6a:99:c9:6d:5c:e6:3d:
03:2d:8a:8b:3b:22:c4:65:2f:b1:01:e6:14:fc:d2:
73:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B2:EA:B9:ED:24:4C:9E:9B:D2:F6:17:AC:A1:99:48:3A:12:D7:9A
X509v3 Authority Key Identifier:
keyid:9F:0F:7E:99:FB:4D:65:44:F2:22:DF:38:A8:98:EB:16:2C:0D:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nw9-mftNZUTyIt84qJjrFiwNgY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/xLLque0kTJ6b0vYXrKGZSDoS15o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/962ec5-38c7-4790-8962-0df566ea64dd/1/nw9-mftNZUTyIt84qJjrFiwNgY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.158.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b0:60:60:0b:19:c8:bc:78:a0:7c:a6:94:9c:d4:a1:ee:a0:
5d:5a:31:1f:33:7a:ff:ef:d2:0a:bc:2d:1e:fc:29:77:b4:fb:
7f:44:80:3e:b5:c3:7f:37:28:88:ed:4d:38:ac:16:08:2d:1b:
79:56:bc:93:0a:5a:4e:22:2b:bc:a2:70:51:ec:c7:6f:a4:c3:
97:2f:36:bf:56:b9:d7:2f:fe:9e:a7:06:e2:b2:fa:8b:8f:ca:
72:4e:d4:d3:25:bf:9e:60:ec:e1:d6:19:38:d7:d2:f0:35:34:
8c:fd:76:bb:c2:84:4e:de:af:65:4b:51:91:4f:02:b7:d0:59:
83:ff:8e:be:8a:d8:92:c9:d5:6a:c6:2d:79:95:85:3e:c7:4a:
f2:0a:28:2a:32:68:ad:b3:64:05:3a:cc:4a:78:d5:20:70:fd:
b4:50:a7:b1:67:d1:a0:4d:93:72:d6:06:21:35:4b:72:ba:a8:
5f:42:71:0b:2a:e6:12:38:09:d8:d1:63:dc:79:68:51:32:81:
21:19:db:82:cc:20:65:55:04:36:ab:70:f2:96:42:9a:ca:f7:
b3:40:57:05:6d:7a:ba:75:d2:f5:e3:51:43:b8:2c:93:95:03:
fc:f9:c1:be:29:78:1a:1c:a1:70:39:b8:1a:b6:43:92:5b:0a:
cb:33:32:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFNOAFFSaqCT5BYWgwiYYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMGY3ZTk5ZmI0ZDY1NDRmMjIyZGYzOGE4OThlYjE2MmMw
ZDgxOGUwHhcNMjMwMTAxMjA0NTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNGIyZWFiOWVkMjQ0YzllOWJkMmY2MTdhY2ExOTk0ODNhMTJkNzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh+QNirMgG7La+gCVX/tW3SsBLP/4
othgbJcf+4/nTtWKJEJ5WlyHnF2LB4+m+ueNpb1VSITN6u43Ol8w1gZnQSPyRwE6
/rsj3gQ0+5DLX1meHjk5cTlpoY184usN8MhOmYHkmAvu87QKH9NQvmG0PWqQ5/wK
jDfD2h7O6W94Sq2UqbBsK6eSM2X5+tBTVSa/3k0mrMnppJQR7ANWq7YhHvF9sjRM
pPO7AGgGKR4eahXmvP+kOysN5UkqRULZS61djeFq5pTqMJsaIMEk1HS52ixYmOkt
9ZkOv4LsfBEkudnYhOiKigUcbGqZyW1c5j0DLYqLOyLEZS+xAeYU/NJzywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMSy6rntJEyem9L2F6yhmUg6EteaMB8GA1UdIwQY
MBaAFJ8Pfpn7TWVE8iLfOKiY6xYsDYGOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnc5LW1mdE5aVVR5SXQ4NHFKanJGaXdOZ1k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy85NjJlYzUtMzhjNy00NzkwLTg5NjIt
MGRmNTY2ZWE2NGRkLzEveExMcXVlMGtUSjZiMHZZWHJLR1pTRG9TMTVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy85NjJlYzUtMzhjNy00NzkwLTg5NjItMGRmNTY2ZWE2NGRk
LzEvbnc5LW1mdE5aVVR5SXQ4NHFKanJGaXdOZ1k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcmeMA0G
CSqGSIb3DQEBCwUAA4IBAQBMsGBgCxnIvHigfKaUnNSh7qBdWjEfM3r/79IKvC0e
/Cl3tPt/RIA+tcN/NyiI7U04rBYILRt5VryTClpOIiu8onBR7MdvpMOXLza/VrnX
L/6epwbisvqLj8pyTtTTJb+eYOzh1hk419LwNTSM/Xa7woRO3q9lS1GRTwK30FmD
/46+itiSydVqxi15lYU+x0ryCigqMmits2QFOsxKeNUgcP20UKexZ9GgTZNy1gYh
NUtyuqhfQnELKuYSOAnY0WPceWhRMoEhGduCzCBlVQQ2q3DylkKayvezQFcFbXq6
ddL141FDuCyTlQP8+cG+KXgaHKFwObgatkOSWwrLMzLG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:06 2024 by rpki-client on console-ams.rpki-client.org