Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/SwXztLIMYHH4WDenv0VhtKC1n44.roa
File: SwXztLIMYHH4WDenv0VhtKC1n44.roa (raw, json)
Hash identifier: DSLd1opuodcuIMmludXWFH6UNogKkOWsAlJiBE2Xr+M=
Subject key identifier: 4B:05:F3:B4:B2:0C:60:71:F8:58:37:A7:BF:45:61:B4:A0:B5:9F:8E
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7AFEA9BEFFAC55923209952A7E65B
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/SwXztLIMYHH4WDenv0VhtKC1n44.roa
Signing time: Mon 02 Jan 2023 09:54:47 +0000
ROA not before: Mon 02 Jan 2023 09:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 83.137.154.0/24 maxlen: 24
88.209.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:af:ea:9b:ef:fa:c5:59:23:20:99:52:a7:e6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b05f3b4b20c6071f85837a7bf4561b4a0b59f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:71:0d:90:27:3c:97:57:3b:fe:59:b0:90:
06:34:d8:6d:de:1b:4a:6b:57:34:22:72:d0:c8:c1:
01:04:6e:72:bb:37:70:26:44:1b:53:27:12:9f:88:
92:da:e2:c4:9f:e8:d4:a7:02:27:68:7d:7b:e8:b0:
25:ec:87:28:fa:75:9d:76:bc:57:08:cb:7d:98:14:
aa:46:ba:24:63:0c:18:57:96:c1:bb:71:cf:5e:76:
89:40:1c:66:21:03:58:47:cf:c3:e4:25:1a:2d:89:
dd:45:a1:a2:ef:29:ff:70:ad:b9:69:68:ff:f6:dc:
b7:b5:53:4c:99:b2:92:21:57:cc:18:c1:38:9f:65:
cf:4c:d6:4a:92:75:7b:fe:6b:62:c2:76:46:2a:8b:
73:03:ff:03:d4:91:8b:dd:df:36:5b:9a:29:2a:64:
84:04:45:c4:6c:2d:80:80:dd:30:6b:f4:4a:e7:75:
91:fa:fa:d5:d2:3e:d1:9b:4f:e9:3c:b2:b3:3a:94:
6c:6e:e9:e2:4a:0f:d1:d8:a5:38:e2:12:24:6a:d8:
7e:1a:43:c0:ff:8c:94:ee:c9:c9:e7:91:a9:a0:d8:
82:ed:55:6d:51:21:10:59:de:4c:f2:a1:fc:1c:0e:
58:21:4a:77:e7:25:26:0a:0f:27:eb:2a:0f:9b:f6:
93:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:05:F3:B4:B2:0C:60:71:F8:58:37:A7:BF:45:61:B4:A0:B5:9F:8E
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/SwXztLIMYHH4WDenv0VhtKC1n44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.154.0/24
88.209.204.0/24
Signature Algorithm: sha256WithRSAEncryption
76:91:d3:dc:64:af:ae:b9:8c:56:12:73:09:4e:4b:90:7c:f8:
97:57:1d:75:b8:f3:ec:a3:7f:de:87:a3:f5:c6:76:53:23:d0:
a8:13:a5:1f:7b:72:1e:68:1d:27:c5:97:29:13:e8:09:af:a1:
a1:2a:1d:3c:47:3e:64:d4:a7:5a:74:d5:1a:26:df:c0:58:4d:
73:46:05:27:be:f5:99:cc:d1:d8:d8:92:3d:f5:e3:76:ea:ce:
eb:42:8e:aa:fd:fc:bb:0b:c4:08:ad:d9:37:9a:48:c5:12:71:
96:9c:2f:62:79:b9:af:a5:5e:76:a3:50:67:d1:33:42:d1:1a:
af:3e:7d:e1:54:34:21:ff:25:87:08:cc:5d:dc:3c:51:d5:22:
2a:86:3a:0f:34:9f:fc:bc:4e:f5:7e:ad:82:7e:5c:16:b6:df:
74:ae:bc:35:59:74:1e:30:66:01:5f:16:57:db:d1:4f:49:a0:
b3:ad:ac:07:2a:15:fc:96:1b:88:32:84:5d:a4:b4:b2:e5:cf:
d5:ad:64:83:af:84:fd:0f:5b:05:78:f0:f4:5d:42:2d:92:7a:
2e:1c:e3:b4:8a:95:24:a0:c7:d8:bf:7f:01:10:b6:98:cb:f1:
3b:05:2b:e7:cd:0b:2d:67:f1:be:8b:f4:b2:99:e5:11:c1:67:
63:f9:41:4b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVx56/qm+/6xVkjIJlSp+ZbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMTAyMDk1NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjA1ZjNiNGIyMGM2MDcxZjg1ODM3YTdiZjQ1NjFiNGEwYjU5ZjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx45xDZAnPJdXO/5ZsJAGNNht3htK
a1c0InLQyMEBBG5yuzdwJkQbUycSn4iS2uLEn+jUpwInaH176LAl7Ico+nWddrxX
CMt9mBSqRrokYwwYV5bBu3HPXnaJQBxmIQNYR8/D5CUaLYndRaGi7yn/cK25aWj/
9ty3tVNMmbKSIVfMGME4n2XPTNZKknV7/mtiwnZGKotzA/8D1JGL3d82W5opKmSE
BEXEbC2AgN0wa/RK53WR+vrV0j7Rm0/pPLKzOpRsbuniSg/R2KU44hIkath+GkPA
/4yU7snJ55GpoNiC7VVtUSEQWd5M8qH8HA5YIUp35yUmCg8n6yoPm/aTcQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEsF87SyDGBx+Fg3p79FYbSgtZ+OMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvU3dYenRMSU1ZSEg0V0RlbnYwVmh0S0MxbjQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAU4maAwQA
WNHMMA0GCSqGSIb3DQEBCwUAA4IBAQB2kdPcZK+uuYxWEnMJTkuQfPiXVx11uPPs
o3/eh6P1xnZTI9CoE6Ufe3IeaB0nxZcpE+gJr6GhKh08Rz5k1KdadNUaJt/AWE1z
RgUnvvWZzNHY2JI99eN26s7rQo6q/fy7C8QIrdk3mkjFEnGWnC9iebmvpV52o1Bn
0TNC0RqvPn3hVDQh/yWHCMxd3DxR1SIqhjoPNJ/8vE71fq2CflwWtt90rrw1WXQe
MGYBXxZX29FPSaCzrawHKhX8lhuIMoRdpLSy5c/VrWSDr4T9D1sFePD0XUItknou
HOO0ipUkoMfYv38BELaYy/E7BSvnzQstZ/G+i/SymeURwWdj+UFL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org