Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/J4aPausmxGynS6lryRNCONbRv74.roa
File: J4aPausmxGynS6lryRNCONbRv74.roa (raw, json)
Hash identifier: NHSsv+dPNgvW403sJSzJnhftXx1eeGEM8FHDFuQ7cGY=
Subject key identifier: 27:86:8F:6A:EB:26:C4:6C:A7:4B:A9:6B:C9:13:42:38:D6:D1:BF:BE
Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Certificate serial: 0191BDEFEB89FCD355A03A5417F14A87E0B1
Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/J4aPausmxGynS6lryRNCONbRv74.roa
Signing time: Wed 04 Sep 2024 16:48:22 +0000
ROA not before: Wed 04 Sep 2024 16:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 193.106.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bd:ef:eb:89:fc:d3:55:a0:3a:54:17:f1:4a:87:e0:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Validity
Not Before: Sep 4 16:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27868f6aeb26c46ca74ba96bc9134238d6d1bfbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f0:3a:4e:35:f4:ee:df:0c:90:9e:79:0a:2d:
da:fe:de:3c:e4:79:21:5d:02:66:ac:cd:a4:3c:9c:
80:dd:50:de:10:06:a2:e2:be:f9:c3:07:ba:dc:b3:
43:2a:4d:1b:e6:cd:fd:4e:ad:be:e4:e5:03:13:54:
5e:ef:60:f6:1c:bd:f7:f9:af:c7:f9:83:83:7e:54:
57:76:88:dd:31:5e:7c:7b:a0:52:7a:2e:88:86:5a:
48:bf:3a:dc:23:11:1b:91:d3:7f:c4:aa:8f:da:c3:
f8:26:1b:b1:98:32:9e:da:a9:55:46:62:30:05:b0:
bc:d5:1b:a7:9d:7e:26:95:da:0b:69:7b:be:54:63:
28:56:dc:cc:42:3a:f4:1e:af:fb:15:21:69:e7:09:
20:02:19:5a:1f:ef:f0:52:97:1c:73:7c:ea:29:c1:
15:40:6a:68:b8:72:da:8a:a4:0b:46:04:6b:90:f2:
66:38:22:eb:94:2a:43:c6:52:6d:46:df:90:a9:96:
89:33:0c:8b:95:b6:c7:e3:32:6e:39:d0:4a:08:de:
b2:34:49:bc:33:f9:9d:3a:6e:f2:52:e8:0a:0f:48:
d8:95:92:04:2c:3c:4d:1a:23:61:9b:02:54:46:e7:
3a:2b:8b:53:06:bb:2c:02:f0:47:ba:6e:06:fc:e5:
ee:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:86:8F:6A:EB:26:C4:6C:A7:4B:A9:6B:C9:13:42:38:D6:D1:BF:BE
X509v3 Authority Key Identifier:
keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/J4aPausmxGynS6lryRNCONbRv74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.197.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a5:3a:4e:21:75:f5:ac:c9:6e:c1:f2:8c:9f:f1:ce:1d:c3:
4b:e0:15:c2:8e:f5:ab:1d:88:21:c0:dc:3d:3e:e5:df:fd:76:
1a:58:01:98:7e:e5:e9:f8:dc:13:79:fc:67:59:0f:d4:c7:d2:
99:5d:b4:57:8b:00:4b:e7:4c:8b:f2:82:97:7b:98:31:80:36:
91:8d:cb:da:36:1f:a4:10:f9:ac:df:45:6d:42:63:78:aa:99:
eb:ba:2e:dd:79:76:53:5a:ec:44:aa:29:31:f1:e5:e9:fe:be:
31:ee:c6:34:f8:a8:48:2d:d1:79:8e:40:ee:0a:a1:8f:82:b2:
ee:4b:64:6e:98:ea:4d:f8:4d:f2:a0:5a:6e:8a:ce:59:6b:bc:
fa:4b:80:a0:4d:0f:0e:8c:dc:fc:c9:89:d0:6c:3c:b9:3b:91:
6b:4e:55:16:c8:41:73:af:f9:ef:c9:20:c7:b5:49:5b:f6:90:
24:55:4f:45:c3:be:34:a8:b3:f1:36:5c:24:7d:a7:fd:f6:05:
85:6a:91:70:46:b2:57:dc:95:21:59:b5:40:b1:5a:c0:3a:9b:
7a:b5:c7:29:ca:1c:6e:e1:fa:78:6f:9f:c7:56:0b:06:42:fe:
5f:e6:e4:e7:2d:30:39:1d:51:40:7a:71:ae:fb:f4:24:2a:ab:
ad:57:43:7a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZG97+uJ/NNVoDpUF/FKh+CxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZWU0NTQyNmUxMmU1MGZlMzBlOGZmYzM5ZTA0NDg1ZDhm
NzMzMzkwHhcNMjQwOTA0MTY0ODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzg2OGY2YWViMjZjNDZjYTc0YmE5NmJjOTEzNDIzOGQ2ZDFiZmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovA6TjX07t8MkJ55Ci3a/t485Hkh
XQJmrM2kPJyA3VDeEAai4r75wwe63LNDKk0b5s39Tq2+5OUDE1Re72D2HL33+a/H
+YODflRXdojdMV58e6BSei6IhlpIvzrcIxEbkdN/xKqP2sP4JhuxmDKe2qlVRmIw
BbC81RunnX4mldoLaXu+VGMoVtzMQjr0Hq/7FSFp5wkgAhlaH+/wUpccc3zqKcEV
QGpouHLaiqQLRgRrkPJmOCLrlCpDxlJtRt+QqZaJMwyLlbbH4zJuOdBKCN6yNEm8
M/mdOm7yUugKD0jYlZIELDxNGiNhmwJURuc6K4tTBrssAvBHum4G/OXuNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCeGj2rrJsRsp0upa8kTQjjW0b++MB8GA1UdIwQY
MBaAFMLuRUJuEuUP4w6P/DngRIXY9zM5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUt
ZGE3NTQzMGIxNmY2LzEvSjRhUGF1c214R3luUzZscnlSTkNPTmJSdjc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUtZGE3NTQzMGIxNmY2
LzEvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWrFMA0G
CSqGSIb3DQEBCwUAA4IBAQB8pTpOIXX1rMluwfKMn/HOHcNL4BXCjvWrHYghwNw9
PuXf/XYaWAGYfuXp+NwTefxnWQ/Ux9KZXbRXiwBL50yL8oKXe5gxgDaRjcvaNh+k
EPms30VtQmN4qpnrui7deXZTWuxEqikx8eXp/r4x7sY0+KhILdF5jkDuCqGPgrLu
S2RumOpN+E3yoFpuis5Za7z6S4CgTQ8OjNz8yYnQbDy5O5FrTlUWyEFzr/nvySDH
tUlb9pAkVU9Fw740qLPxNlwkfaf99gWFapFwRrJX3JUhWbVAsVrAOpt6tccpyhxu
4fp4b5/HVgsGQv5f5uTnLTA5HVFAenGu+/QkKqutV0N6
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:05:33 2025 by rpki-client