Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/Im6dyB9uBw3UT4gOIqY4YN5Cak8.roa
File: Im6dyB9uBw3UT4gOIqY4YN5Cak8.roa (raw, json)
Hash identifier: 2G3rdsWzSrA2NgwxlPSZNEfxHPkoSVLw7hCZnhf4e1Y=
Subject key identifier: 22:6E:9D:C8:1F:6E:07:0D:D4:4F:88:0E:22:A6:38:60:DE:42:6A:4F
Certificate issuer: /CN=dee623e2aff7b03afeb94260348c1633b54d9056
Certificate serial: 0187FAC1FA8BD5B85BD55C53ED5D15F7D2F0
Authority key identifier: DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/Im6dyB9uBw3UT4gOIqY4YN5Cak8.roa
Signing time: Mon 08 May 2023 09:47:09 +0000
ROA not before: Mon 08 May 2023 09:47:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204798
IP address blocks: 194.127.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fa:c1:fa:8b:d5:b8:5b:d5:5c:53:ed:5d:15:f7:d2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dee623e2aff7b03afeb94260348c1633b54d9056
Validity
Not Before: May 8 09:47:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=226e9dc81f6e070dd44f880e22a63860de426a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:9c:10:de:41:4a:54:f0:e4:f3:2a:1d:a3:f5:
68:a7:9b:73:66:6c:10:78:f2:91:a4:a3:a1:5c:92:
1a:e7:23:19:74:ba:ac:87:9c:10:2a:0b:1b:03:42:
b0:ae:64:61:67:87:65:64:5f:ab:e3:d4:5b:b8:02:
40:e6:ea:85:fe:06:3c:4d:52:14:a1:6e:9d:50:94:
21:5e:ef:56:57:7b:06:c8:e0:43:b1:3f:b7:d7:5c:
ca:93:a5:53:6e:a2:ec:d8:e7:35:9a:a0:83:8b:53:
9e:70:0e:77:e3:61:98:92:74:97:d4:c7:7b:54:02:
fb:ff:f5:7c:cf:fa:a0:42:09:ab:8e:49:02:d6:8b:
71:f9:8c:c1:2d:2a:d1:6b:95:50:fc:b0:1a:b9:75:
df:17:ad:be:89:5c:be:df:71:b2:55:c2:3b:54:42:
e5:1e:b8:0a:44:01:2c:e6:97:76:53:e5:68:7d:17:
fe:63:a8:d9:02:85:14:c9:34:4d:b3:e5:b8:ac:40:
7a:a3:a4:dd:ea:f8:c0:ef:e0:b5:05:a5:fe:aa:15:
6e:92:f4:59:8d:d3:66:e8:d0:de:6a:18:8f:4e:0f:
af:e7:6f:85:ac:fd:85:81:4c:ea:e8:5b:cc:d8:1e:
bd:7c:1f:3e:80:f8:7c:2d:00:74:1c:73:d7:72:e7:
1e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6E:9D:C8:1F:6E:07:0D:D4:4F:88:0E:22:A6:38:60:DE:42:6A:4F
X509v3 Authority Key Identifier:
keyid:DE:E6:23:E2:AF:F7:B0:3A:FE:B9:42:60:34:8C:16:33:B5:4D:90:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3uYj4q_3sDr-uUJgNIwWM7VNkFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/Im6dyB9uBw3UT4gOIqY4YN5Cak8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9871ff-3f26-4b94-a464-6cc1d3ea832e/1/3uYj4q_3sDr-uUJgNIwWM7VNkFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.111.0/24
Signature Algorithm: sha256WithRSAEncryption
03:39:d7:46:82:39:a5:e1:71:3a:55:97:a8:65:52:b6:97:e3:
b9:da:1b:ba:a0:c2:01:3d:28:e8:e2:3e:68:8f:d9:98:6a:dd:
e7:52:6e:0c:b7:c0:ad:01:6d:75:91:f3:ce:71:27:80:d3:f1:
2a:69:a1:eb:9c:7d:bf:03:21:45:21:5d:be:30:f9:ab:64:d1:
12:b5:45:e3:69:35:34:ea:bf:f4:b2:50:70:ab:1d:0a:71:88:
bb:99:86:c5:c6:26:eb:0e:ec:52:01:81:ae:d0:20:48:0b:bd:
25:b4:b6:c0:39:c0:ef:8f:a6:a5:02:07:4c:55:62:76:14:2e:
17:1e:52:01:d9:8d:be:10:a6:05:ad:0e:64:5a:17:ee:b6:62:
b7:45:37:1b:43:f3:b9:36:9b:48:a2:50:b0:ab:12:de:52:a3:
00:23:3a:62:f6:fd:7b:a5:67:5d:e7:f3:97:60:80:c1:c8:5d:
4d:01:4c:d2:fa:17:82:34:75:a9:71:fe:45:70:37:e5:7e:67:
e2:89:2e:fe:62:1f:5e:f0:66:ed:2d:a1:5e:e5:3c:6f:37:40:
42:88:03:e6:ab:a3:af:26:0e:3b:ec:85:d2:f6:5e:af:95:86:
7f:3d:a0:85:38:01:dd:f4:5f:0e:03:ea:6f:5d:d9:63:79:c2:
f7:56:13:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf6wfqL1bhb1VxT7V0V99LwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlZTYyM2UyYWZmN2IwM2FmZWI5NDI2MDM0OGMxNjMzYjU0
ZDkwNTYwHhcNMjMwNTA4MDk0NzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjZlOWRjODFmNmUwNzBkZDQ0Zjg4MGUyMmE2Mzg2MGRlNDI2YTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5wQ3kFKVPDk8yodo/Vop5tzZmwQ
ePKRpKOhXJIa5yMZdLqsh5wQKgsbA0KwrmRhZ4dlZF+r49RbuAJA5uqF/gY8TVIU
oW6dUJQhXu9WV3sGyOBDsT+311zKk6VTbqLs2Oc1mqCDi1OecA5342GYknSX1Md7
VAL7//V8z/qgQgmrjkkC1otx+YzBLSrRa5VQ/LAauXXfF62+iVy+33GyVcI7VELl
HrgKRAEs5pd2U+VofRf+Y6jZAoUUyTRNs+W4rEB6o6Td6vjA7+C1BaX+qhVukvRZ
jdNm6NDeahiPTg+v52+FrP2FgUzq6FvM2B69fB8+gPh8LQB0HHPXcucekQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCJuncgfbgcN1E+IDiKmOGDeQmpPMB8GA1UdIwQY
MBaAFN7mI+Kv97A6/rlCYDSMFjO1TZBWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3VZajRxXzNzRHItdVVKZ05Jd1dNN1ZOa0ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ODcxZmYtM2YyNi00Yjk0LWE0NjQt
NmNjMWQzZWE4MzJlLzEvSW02ZHlCOXVCdzNVVDRnT0lxWTRZTjVDYWs4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC85ODcxZmYtM2YyNi00Yjk0LWE0NjQtNmNjMWQzZWE4MzJl
LzEvM3VZajRxXzNzRHItdVVKZ05Jd1dNN1ZOa0ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwn9vMA0G
CSqGSIb3DQEBCwUAA4IBAQADOddGgjml4XE6VZeoZVK2l+O52hu6oMIBPSjo4j5o
j9mYat3nUm4Mt8CtAW11kfPOcSeA0/EqaaHrnH2/AyFFIV2+MPmrZNEStUXjaTU0
6r/0slBwqx0KcYi7mYbFxibrDuxSAYGu0CBIC70ltLbAOcDvj6alAgdMVWJ2FC4X
HlIB2Y2+EKYFrQ5kWhfutmK3RTcbQ/O5NptIolCwqxLeUqMAIzpi9v17pWdd5/OX
YIDByF1NAUzS+heCNHWpcf5FcDflfmfiiS7+Yh9e8GbtLaFe5TxvN0BCiAPmq6Ov
Jg477IXS9l6vlYZ/PaCFOAHd9F8OA+pvXdljecL3VhMZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org