Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/50013a-fb19-45cf-ad8a-326c1e370bcf/1/TN9U8UnTe4xNF5IzZJ3AWPhF2co.roa
File: TN9U8UnTe4xNF5IzZJ3AWPhF2co.roa (raw, json)
Hash identifier: JxpRDrTp3qkgyQO8StSgGmSQ+ZimYrmt057m28PDOK0=
Subject key identifier: 4C:DF:54:F1:49:D3:7B:8C:4D:17:92:33:64:9D:C0:58:F8:45:D9:CA
Certificate issuer: /CN=820625b669e89a75ae78df0081d6f01b67c7b3cf
Certificate serial: 0186C85E58414DA4439D9DCA1E8962D6D8F1
Authority key identifier: 82:06:25:B6:69:E8:9A:75:AE:78:DF:00:81:D6:F0:1B:67:C7:B3:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ggYltmnomnWueN8AgdbwG2fHs88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/50013a-fb19-45cf-ad8a-326c1e370bcf/1/TN9U8UnTe4xNF5IzZJ3AWPhF2co.roa
Signing time: Thu 09 Mar 2023 21:54:31 +0000
ROA not before: Thu 09 Mar 2023 21:54:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56655
IP address blocks: 194.110.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c8:5e:58:41:4d:a4:43:9d:9d:ca:1e:89:62:d6:d8:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=820625b669e89a75ae78df0081d6f01b67c7b3cf
Validity
Not Before: Mar 9 21:54:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cdf54f149d37b8c4d179233649dc058f845d9ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7e:a4:ae:20:35:9c:bf:19:0f:7e:86:74:60:
2f:fb:04:1f:ce:7f:01:ab:00:82:f6:ab:5d:67:ca:
90:8f:16:8e:4b:30:98:2a:ce:6c:d2:2a:10:b4:ba:
06:05:5a:e8:9c:eb:f7:37:a0:25:22:3a:69:60:5b:
eb:9a:7b:c1:96:6c:bd:97:46:c0:92:92:48:e1:cf:
7a:34:09:c0:3f:99:a5:2d:28:e6:25:d5:51:b3:39:
56:2f:64:1e:fa:4f:bf:09:d7:8b:68:2f:f2:f4:f6:
ee:76:58:20:a6:02:3b:86:cf:36:d5:43:cb:b7:4c:
2e:12:d8:a4:98:90:a8:57:b9:a5:d6:63:d4:d9:54:
b1:c1:d2:01:3d:d6:39:88:a1:97:23:68:5c:09:db:
87:f1:03:28:81:7a:93:fb:d8:de:29:3f:69:be:d6:
38:56:4e:2e:05:40:ab:a5:8e:60:34:b1:89:16:a7:
7d:ad:70:09:01:05:af:80:43:c8:2d:37:67:18:f2:
a7:59:cf:8d:35:ee:6e:83:4c:49:8d:94:b1:86:0b:
45:28:03:41:5e:39:df:7f:ba:22:84:22:a3:56:fa:
2b:63:91:b9:76:f8:78:7e:b0:b3:ec:7a:31:11:af:
99:29:72:c4:d5:a7:b0:a2:65:46:eb:c0:49:dd:19:
02:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DF:54:F1:49:D3:7B:8C:4D:17:92:33:64:9D:C0:58:F8:45:D9:CA
X509v3 Authority Key Identifier:
keyid:82:06:25:B6:69:E8:9A:75:AE:78:DF:00:81:D6:F0:1B:67:C7:B3:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ggYltmnomnWueN8AgdbwG2fHs88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/50013a-fb19-45cf-ad8a-326c1e370bcf/1/TN9U8UnTe4xNF5IzZJ3AWPhF2co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/50013a-fb19-45cf-ad8a-326c1e370bcf/1/ggYltmnomnWueN8AgdbwG2fHs88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.207.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a3:63:ba:9a:05:a4:c0:4b:dc:8c:41:46:b3:90:c5:bd:dc:
79:c9:fa:6c:b9:fa:70:22:67:80:bd:98:fb:e3:29:94:18:0b:
09:c0:05:c1:26:fa:f5:b4:a7:75:73:87:3a:07:c6:e7:db:cd:
8d:08:c3:6d:9a:2f:e9:a2:51:da:f9:98:44:fb:bf:12:c2:95:
15:8b:ec:69:44:82:0d:7f:a6:8e:bc:94:48:cb:86:a8:0a:26:
e6:1e:b4:f8:ba:be:06:d3:d4:21:97:85:84:01:d3:22:15:09:
4d:04:74:fb:c4:b8:da:e4:50:2d:b0:6a:2d:d9:0f:da:aa:ed:
24:5a:40:f1:d3:3a:25:5d:91:2b:8f:2b:90:35:fd:eb:48:b7:
64:3c:ca:34:45:eb:ff:b5:25:c6:3f:a6:55:01:37:4f:d8:d1:
6c:f9:aa:e3:2e:d9:47:5e:4e:2f:1e:c9:2f:fe:3b:fd:62:4a:
b9:3f:c4:09:d5:d1:f2:f8:7c:33:14:74:68:09:e6:02:f6:ec:
1a:f5:66:5d:11:df:1e:1c:9b:47:2f:b7:1e:8c:00:e2:84:4c:
3f:59:24:c2:f0:91:ef:7b:62:b0:78:a9:0e:f3:ad:34:60:fd:
24:f3:46:98:1b:39:8a:20:15:45:e2:a3:18:94:f5:99:61:3f:
d2:94:7a:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbIXlhBTaRDnZ3KHoli1tjxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMDYyNWI2NjllODlhNzVhZTc4ZGYwMDgxZDZmMDFiNjdj
N2IzY2YwHhcNMjMwMzA5MjE1NDMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2RmNTRmMTQ5ZDM3YjhjNGQxNzkyMzM2NDlkYzA1OGY4NDVkOWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkH6kriA1nL8ZD36GdGAv+wQfzn8B
qwCC9qtdZ8qQjxaOSzCYKs5s0ioQtLoGBVronOv3N6AlIjppYFvrmnvBlmy9l0bA
kpJI4c96NAnAP5mlLSjmJdVRszlWL2Qe+k+/CdeLaC/y9PbudlggpgI7hs821UPL
t0wuEtikmJCoV7ml1mPU2VSxwdIBPdY5iKGXI2hcCduH8QMogXqT+9jeKT9pvtY4
Vk4uBUCrpY5gNLGJFqd9rXAJAQWvgEPILTdnGPKnWc+NNe5ug0xJjZSxhgtFKANB
Xjnff7oihCKjVvorY5G5dvh4frCz7HoxEa+ZKXLE1aewomVG68BJ3RkCyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEzfVPFJ03uMTReSM2SdwFj4RdnKMB8GA1UdIwQY
MBaAFIIGJbZp6Jp1rnjfAIHW8Btnx7PPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2dZbHRtbm9tbld1ZU44QWdkYndHMmZIczg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC81MDAxM2EtZmIxOS00NWNmLWFkOGEt
MzI2YzFlMzcwYmNmLzEvVE45VThVblRlNHhORjVJelpKM0FXUGhGMmNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC81MDAxM2EtZmIxOS00NWNmLWFkOGEtMzI2YzFlMzcwYmNm
LzEvZ2dZbHRtbm9tbld1ZU44QWdkYndHMmZIczg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwm7PMA0G
CSqGSIb3DQEBCwUAA4IBAQCvo2O6mgWkwEvcjEFGs5DFvdx5yfpsufpwImeAvZj7
4ymUGAsJwAXBJvr1tKd1c4c6B8bn282NCMNtmi/polHa+ZhE+78SwpUVi+xpRIIN
f6aOvJRIy4aoCibmHrT4ur4G09Qhl4WEAdMiFQlNBHT7xLja5FAtsGot2Q/aqu0k
WkDx0zolXZErjyuQNf3rSLdkPMo0Rev/tSXGP6ZVATdP2NFs+arjLtlHXk4vHskv
/jv9Ykq5P8QJ1dHy+HwzFHRoCeYC9uwa9WZdEd8eHJtHL7cejADihEw/WSTC8JHv
e2KweKkO8600YP0k80aYGzmKIBVF4qMYlPWZYT/SlHoG
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:20 2024 by rpki-client on console-ams.rpki-client.org