Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/TO_f8nl6DMbw00sMAOv0-0m-Phk.roa
File: TO_f8nl6DMbw00sMAOv0-0m-Phk.roa (raw, json)
Hash identifier: FyMFWMX3B/1TkIoVMYhtb29UDO+fWcE2arc9hxwyKII=
Subject key identifier: 4C:EF:DF:F2:79:7A:0C:C6:F0:D3:4B:0C:00:EB:F4:FB:49:BE:3E:19
Certificate issuer: /CN=5f1768e26ff4f9a2a8a56da4dcb7e1ec0c2e4a93
Certificate serial: 01857082D87B2BBE36698D64175932FFBBC2
Authority key identifier: 5F:17:68:E2:6F:F4:F9:A2:A8:A5:6D:A4:DC:B7:E1:EC:0C:2E:4A:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/TO_f8nl6DMbw00sMAOv0-0m-Phk.roa
Signing time: Mon 02 Jan 2023 03:25:01 +0000
ROA not before: Mon 02 Jan 2023 03:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198611
IP address blocks: 193.239.204.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:d8:7b:2b:be:36:69:8d:64:17:59:32:ff:bb:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1768e26ff4f9a2a8a56da4dcb7e1ec0c2e4a93
Validity
Not Before: Jan 2 03:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cefdff2797a0cc6f0d34b0c00ebf4fb49be3e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:0a:59:ff:12:38:26:43:b6:09:a2:f4:e1:ab:
22:6d:5a:84:76:6c:36:fd:82:41:47:85:65:b3:8f:
cc:8f:eb:44:e1:a8:35:94:0a:cc:ec:ae:dd:64:07:
ad:8f:ef:ab:90:5e:14:21:a5:b4:db:b1:00:d1:6b:
12:77:bd:f5:0d:e9:16:6e:b3:7c:e8:1d:a6:50:b0:
58:86:d1:08:fc:c6:dc:a4:eb:65:d9:7d:d5:21:79:
b2:73:4f:dc:7b:1f:41:39:9d:4d:00:4d:c0:3f:da:
c7:89:1f:5a:2b:c5:ea:e1:f7:5a:f0:1f:bd:39:fe:
ad:fb:7f:77:f0:9f:43:ec:5c:4b:99:1b:e3:47:dc:
a6:45:3e:26:8a:fd:21:22:dd:f0:4f:43:5c:ca:46:
8b:2f:52:cd:e8:3d:48:2f:de:b8:58:ab:e6:6f:48:
26:5d:cc:1b:da:0a:bb:57:a9:03:64:c9:0c:dc:36:
81:d3:21:8e:2b:e5:a2:3c:7a:ef:7e:3b:b5:43:95:
5e:45:4f:8b:c6:d7:ee:0d:dc:12:81:07:52:3a:4b:
ac:3b:e2:05:a9:0c:ce:38:cf:4f:6a:12:b8:1b:31:
b1:89:c6:bb:d3:c2:d5:b9:94:84:08:b8:e7:cb:ab:
ea:69:98:66:50:09:ec:71:7e:e7:27:7c:2e:e9:04:
11:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EF:DF:F2:79:7A:0C:C6:F0:D3:4B:0C:00:EB:F4:FB:49:BE:3E:19
X509v3 Authority Key Identifier:
keyid:5F:17:68:E2:6F:F4:F9:A2:A8:A5:6D:A4:DC:B7:E1:EC:0C:2E:4A:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/TO_f8nl6DMbw00sMAOv0-0m-Phk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e5e53a-dfe8-4e99-85a8-1e0367c07d46/1/Xxdo4m_0-aKopW2k3Lfh7AwuSpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.204.0/24
Signature Algorithm: sha256WithRSAEncryption
02:60:45:8c:2a:db:77:f1:2e:1e:c0:9a:ee:45:ab:ca:01:45:
1a:75:41:90:1d:04:a5:d9:45:4c:8b:6a:1c:46:3f:e3:f3:dc:
d4:77:32:33:92:39:e0:4f:b4:8a:2e:5e:76:17:31:eb:e9:23:
f2:3a:70:93:f3:9a:9c:dd:4e:c9:4b:4a:e7:d3:d8:b6:7a:9f:
8b:76:19:66:3e:9f:6b:f4:f8:66:53:b0:2e:f2:c9:09:68:29:
51:86:64:59:4f:76:fc:74:53:65:54:0b:b3:eb:4a:31:a0:2d:
5e:fc:76:f2:b8:7a:c2:c9:eb:06:16:59:3c:8d:3b:ff:8a:67:
a3:04:a0:6b:49:fb:d7:73:20:ea:c2:64:a0:e6:71:11:8f:3e:
30:d9:4e:4e:38:76:66:d3:5a:1d:fd:25:3c:63:fa:93:46:dc:
01:86:dc:2c:4e:cf:11:27:5e:a2:c6:74:71:31:89:c2:03:84:
f3:d3:7d:27:53:24:f5:1f:a2:d1:8d:3a:0f:06:77:79:76:13:
8b:10:22:e4:9b:b2:39:5f:b6:16:42:f1:d8:40:2e:86:99:d6:
f2:9b:a9:8c:ef:01:7c:e9:1f:f2:fb:ba:4d:03:03:b6:85:b2:
fb:9e:73:e3:8f:ed:f4:69:28:80:00:f2:eb:3e:fd:b0:91:8d:
1a:0e:03:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgth7K742aY1kF1ky/7vCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMTc2OGUyNmZmNGY5YTJhOGE1NmRhNGRjYjdlMWVjMGMy
ZTRhOTMwHhcNMjMwMTAyMDMyNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2VmZGZmMjc5N2EwY2M2ZjBkMzRiMGMwMGViZjRmYjQ5YmUzZTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiQpZ/xI4JkO2CaL04asibVqEdmw2
/YJBR4Vls4/Mj+tE4ag1lArM7K7dZAetj++rkF4UIaW027EA0WsSd731DekWbrN8
6B2mULBYhtEI/MbcpOtl2X3VIXmyc0/cex9BOZ1NAE3AP9rHiR9aK8Xq4fda8B+9
Of6t+3938J9D7FxLmRvjR9ymRT4miv0hIt3wT0NcykaLL1LN6D1IL964WKvmb0gm
Xcwb2gq7V6kDZMkM3DaB0yGOK+WiPHrvfju1Q5VeRU+LxtfuDdwSgQdSOkusO+IF
qQzOOM9PahK4GzGxica708LVuZSECLjny6vqaZhmUAnscX7nJ3wu6QQR/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEzv3/J5egzG8NNLDADr9PtJvj4ZMB8GA1UdIwQY
MBaAFF8XaOJv9PmiqKVtpNy34ewMLkqTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHhkbzRtXzAtYUtvcFcyazNMZmg3QXd1U3BNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9lNWU1M2EtZGZlOC00ZTk5LTg1YTgt
MWUwMzY3YzA3ZDQ2LzEvVE9fZjhubDZETWJ3MDBzTUFPdjAtMG0tUGhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9lNWU1M2EtZGZlOC00ZTk5LTg1YTgtMWUwMzY3YzA3ZDQ2
LzEvWHhkbzRtXzAtYUtvcFcyazNMZmg3QXd1U3BNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwe/MMA0G
CSqGSIb3DQEBCwUAA4IBAQACYEWMKtt38S4ewJruRavKAUUadUGQHQSl2UVMi2oc
Rj/j89zUdzIzkjngT7SKLl52FzHr6SPyOnCT85qc3U7JS0rn09i2ep+LdhlmPp9r
9PhmU7Au8skJaClRhmRZT3b8dFNlVAuz60oxoC1e/HbyuHrCyesGFlk8jTv/imej
BKBrSfvXcyDqwmSg5nERjz4w2U5OOHZm01od/SU8Y/qTRtwBhtwsTs8RJ16ixnRx
MYnCA4Tz030nUyT1H6LRjToPBnd5dhOLECLkm7I5X7YWQvHYQC6Gmdbym6mM7wF8
6R/y+7pNAwO2hbL7nnPjj+30aSiAAPLrPv2wkY0aDgPt
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:59 2024 by rpki-client on console-ams.rpki-client.org