Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/PS1eUYYfvzgnTnY2heu-GpO3SkI.roa
File: PS1eUYYfvzgnTnY2heu-GpO3SkI.roa (raw, json)
Hash identifier: 6VWdiGxr2Cicc/Hum5k15FhYAOz6PGHuf+X8e0ePjOU=
Subject key identifier: 3D:2D:5E:51:86:1F:BF:38:27:4E:76:36:85:EB:BE:1A:93:B7:4A:42
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01867EC57E59EF47FAE54DC29F713B9D0756
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/PS1eUYYfvzgnTnY2heu-GpO3SkI.roa
Signing time: Thu 23 Feb 2023 14:55:17 +0000
ROA not before: Thu 23 Feb 2023 14:55:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210135
IP address blocks: 193.32.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 15:23:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:c5:7e:59:ef:47:fa:e5:4d:c2:9f:71:3b:9d:07:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Feb 23 14:55:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d2d5e51861fbf38274e763685ebbe1a93b74a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:de:6d:9d:ca:97:73:ab:a8:40:aa:b1:02:d8:
52:a6:91:8f:06:96:1c:8c:22:a6:c4:4d:ae:d1:30:
c3:53:d3:cb:93:63:b1:6c:38:0f:32:e2:d3:46:94:
ec:54:21:a3:9a:c6:6f:1a:6e:4d:85:5b:87:6b:c8:
89:8d:25:02:40:c5:e2:f4:8c:88:a8:52:09:48:81:
c3:5f:5b:20:ce:ba:bf:56:15:f9:00:9a:c3:6e:45:
a4:6c:28:36:b5:5e:ef:67:b2:4b:60:c6:59:2a:5f:
0d:39:8d:70:28:73:71:4e:28:a9:f4:8a:58:f4:78:
d6:86:f7:6d:e0:6f:46:cc:ef:7c:ae:28:c7:ed:47:
fb:d9:c8:f9:53:c8:b6:a7:83:ea:bb:66:02:9a:5d:
89:4f:2e:9e:1a:4f:ff:78:1f:4c:16:b5:15:54:1e:
bb:7c:ae:4d:b9:e8:90:0f:86:2d:d1:54:f8:91:b5:
21:b6:1f:87:94:40:b0:d8:ec:f3:0e:f3:71:e6:13:
82:f5:83:9e:d8:10:71:a6:99:64:e6:9c:b3:c0:44:
56:1b:8e:dc:d0:f2:1e:79:e9:34:3e:ef:41:a2:02:
c1:42:82:3b:4f:59:4d:cb:13:11:0c:e6:50:cc:09:
89:fa:91:34:aa:df:b4:d9:84:d1:e8:05:65:ad:fb:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2D:5E:51:86:1F:BF:38:27:4E:76:36:85:EB:BE:1A:93:B7:4A:42
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/PS1eUYYfvzgnTnY2heu-GpO3SkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.189.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:06:1a:5b:01:4f:87:f0:eb:be:e6:24:c2:f8:dd:99:aa:28:
40:f1:32:09:90:5d:1b:9b:ca:42:fc:c1:06:38:c5:f0:9a:99:
01:6b:b6:fb:af:2d:2b:04:db:29:6b:56:36:0f:08:29:e7:85:
cf:8f:37:a5:9a:69:04:ad:e8:3e:84:1e:f4:25:23:dd:c6:3f:
f1:25:4b:cf:8b:21:96:01:57:a8:ed:ab:d5:ad:79:e1:30:30:
e8:24:c4:31:98:68:36:09:3e:f6:b8:08:c7:9f:71:33:57:49:
0d:bb:1c:d2:c7:2e:90:83:63:e3:56:c2:be:8c:b7:7c:fb:d3:
64:4e:61:16:55:a4:e7:b0:12:b4:3f:09:4f:1c:ce:09:b0:2d:
70:aa:b0:05:a1:90:f3:32:98:29:33:17:65:dd:dd:0e:f9:c4:
28:6d:89:11:57:d0:69:79:10:a7:70:9e:5e:b6:16:d5:7f:6d:
6d:a3:14:3f:51:0f:5d:d1:1d:55:78:2d:74:17:c6:6b:b3:b2:
36:40:d0:5b:03:b9:31:47:2b:64:22:a4:0c:33:96:87:63:71:
da:93:82:1b:c1:11:50:63:b1:61:1c:7c:34:2f:45:47:3c:37:
e2:9c:75:a3:1d:97:8c:e6:11:5a:fb:ca:dd:b2:63:d3:e2:89:
85:22:13:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ+xX5Z70f65U3Cn3E7nQdWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwMjIzMTQ1NTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDJkNWU1MTg2MWZiZjM4Mjc0ZTc2MzY4NWViYmUxYTkzYjc0YTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs95tncqXc6uoQKqxAthSppGPBpYc
jCKmxE2u0TDDU9PLk2OxbDgPMuLTRpTsVCGjmsZvGm5NhVuHa8iJjSUCQMXi9IyI
qFIJSIHDX1sgzrq/VhX5AJrDbkWkbCg2tV7vZ7JLYMZZKl8NOY1wKHNxTiip9IpY
9HjWhvdt4G9GzO98rijH7Uf72cj5U8i2p4Pqu2YCml2JTy6eGk//eB9MFrUVVB67
fK5NueiQD4Yt0VT4kbUhth+HlECw2OzzDvNx5hOC9YOe2BBxpplk5pyzwERWG47c
0PIeeek0Pu9BogLBQoI7T1lNyxMRDOZQzAmJ+pE0qt+02YTR6AVlrfsmewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD0tXlGGH784J052NoXrvhqTt0pCMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvUFMxZVVZWWZ2emduVG5ZMmhldS1HcE8zU2tJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSC9MA0G
CSqGSIb3DQEBCwUAA4IBAQCyBhpbAU+H8Ou+5iTC+N2ZqihA8TIJkF0bm8pC/MEG
OMXwmpkBa7b7ry0rBNspa1Y2Dwgp54XPjzelmmkEreg+hB70JSPdxj/xJUvPiyGW
AVeo7avVrXnhMDDoJMQxmGg2CT72uAjHn3EzV0kNuxzSxy6Qg2PjVsK+jLd8+9Nk
TmEWVaTnsBK0PwlPHM4JsC1wqrAFoZDzMpgpMxdl3d0O+cQobYkRV9BpeRCncJ5e
thbVf21toxQ/UQ9d0R1VeC10F8Zrs7I2QNBbA7kxRytkIqQMM5aHY3Hak4IbwRFQ
Y7FhHHw0L0VHPDfinHWjHZeM5hFa+8rdsmPT4omFIhPr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org