Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/GfynEmNQpqcGF-JwbKQpEI7N9g8.roa
File: GfynEmNQpqcGF-JwbKQpEI7N9g8.roa (raw, json)
Hash identifier: BOoOh1JOC2gB3DXGOZOhA5p99eCdjWHMKjhKtNkSwFk=
Subject key identifier: 19:FC:A7:12:63:50:A6:A7:06:17:E2:70:6C:A4:29:10:8E:CD:F6:0F
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0188A0F0BEA588307541D829AD326D9F0528
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/GfynEmNQpqcGF-JwbKQpEI7N9g8.roa
Signing time: Fri 09 Jun 2023 16:15:11 +0000
ROA not before: Fri 09 Jun 2023 16:15:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.43.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:f0:be:a5:88:30:75:41:d8:29:ad:32:6d:9f:05:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jun 9 16:15:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19fca7126350a6a70617e2706ca429108ecdf60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:35:cd:cb:fe:45:cb:6b:52:5a:97:d5:ab:b4:
95:5f:e1:b3:1b:2a:1b:12:f1:2d:e9:f2:38:ba:0d:
da:4e:d1:9b:ed:8f:19:31:b6:64:5f:aa:af:11:ac:
b0:65:9f:37:18:16:fd:f8:fd:84:bb:f9:ee:62:cb:
aa:a6:ac:08:4f:d7:b2:fa:08:d7:27:70:fd:8a:fb:
dc:82:56:95:47:b0:bc:b4:19:44:19:8c:43:12:21:
ea:ef:34:65:d9:17:b3:f6:a4:96:bf:23:0f:c0:83:
3e:d2:cd:24:6c:14:6c:d3:b6:fc:5e:92:53:11:30:
c9:77:2b:08:2c:88:14:97:d5:93:c9:cb:36:36:4a:
9d:ce:8f:f8:d9:0f:67:07:00:94:36:ed:5f:59:db:
09:53:d2:9a:c3:71:4e:cf:f6:0b:74:6d:03:be:80:
04:9d:64:16:d2:99:87:69:c8:24:42:81:7f:a3:95:
4b:e2:bc:68:0d:fe:bf:9e:ec:81:09:ca:8c:43:88:
3f:2f:82:12:6d:2d:09:a5:dc:50:4e:be:1c:f8:95:
ec:8e:ab:84:10:0d:65:73:8e:9c:4b:0f:95:8a:e3:
78:e1:3f:ba:9a:dc:03:f1:7b:e2:c4:1b:f7:f7:ec:
97:88:0c:65:17:97:11:c8:f0:0b:6e:03:70:76:3c:
1d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:FC:A7:12:63:50:A6:A7:06:17:E2:70:6C:A4:29:10:8E:CD:F6:0F
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/GfynEmNQpqcGF-JwbKQpEI7N9g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.138.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:46:c4:64:fc:3e:1f:ce:6b:69:41:74:3b:15:4c:5e:a2:e8:
f2:96:58:e7:82:d3:0c:a7:a2:c0:7a:1d:ec:33:1b:ed:e4:33:
c3:8d:86:cd:95:65:40:e1:04:69:d5:fa:db:ae:3b:fb:1a:b0:
f8:43:5f:b3:94:ef:2f:e3:23:7d:e0:54:18:ab:4a:8b:29:d0:
5b:ec:36:ed:4b:00:ed:01:ab:17:00:42:ba:52:3d:1c:4f:78:
06:6a:02:af:9e:17:47:44:86:25:29:89:36:28:e5:a0:4d:de:
47:25:6f:aa:13:7f:a2:36:9b:fa:70:c4:25:08:45:2e:81:2c:
78:c6:9c:6d:a0:9f:bd:ff:b5:e9:cd:e8:66:1f:b9:23:8a:b4:
b5:18:c7:5d:35:fe:e8:81:b6:13:97:68:b1:37:04:82:41:68:
1a:cd:5b:3c:e7:dc:0c:23:93:e0:5c:bf:67:01:71:99:d5:47:
3c:44:fd:b6:da:c0:e7:22:5d:6c:24:77:bd:3a:1e:82:20:41:
41:8a:08:2a:f9:61:c7:b2:1e:68:4c:f3:82:28:78:f9:84:23:
ba:ee:55:c4:dd:31:6b:65:ff:58:ea:ad:d5:95:28:80:d6:23:
53:01:59:c2:96:32:84:76:bf:e1:04:d7:e5:6f:8e:2f:7e:a2:
20:72:8c:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYig8L6liDB1QdgprTJtnwUoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZmM4ODdjOTc3MzkzNTc1ZGU2MjU3ZTc1ZmE5OWNkZTIw
MzdjNmMwHhcNMjMwNjA5MTYxNTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWZjYTcxMjYzNTBhNmE3MDYxN2UyNzA2Y2E0MjkxMDhlY2RmNjBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjDXNy/5Fy2tSWpfVq7SVX+GzGyob
EvEt6fI4ug3aTtGb7Y8ZMbZkX6qvEaywZZ83GBb9+P2Eu/nuYsuqpqwIT9ey+gjX
J3D9ivvcglaVR7C8tBlEGYxDEiHq7zRl2Rez9qSWvyMPwIM+0s0kbBRs07b8XpJT
ETDJdysILIgUl9WTycs2Nkqdzo/42Q9nBwCUNu1fWdsJU9Kaw3FOz/YLdG0DvoAE
nWQW0pmHacgkQoF/o5VL4rxoDf6/nuyBCcqMQ4g/L4ISbS0JpdxQTr4c+JXsjquE
EA1lc46cSw+ViuN44T+6mtwD8XvixBv39+yXiAxlF5cRyPALbgNwdjwdyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBn8pxJjUKanBhficGykKRCOzfYPMB8GA1UdIwQY
MBaAFET8iHyXc5NXXeYlfnX6mc3iA3xsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlB5SWZKZHprMWRkNWlWLWRmcVp6ZUlEZkd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mMDdjNjYtNDczZC00MzVhLWI2OTMt
YzM2OWMxZDRjMzM3LzEvR2Z5bkVtTlFwcWNHRi1Kd2JLUXBFSTdOOWc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9mMDdjNjYtNDczZC00MzVhLWI2OTMtYzM2OWMxZDRjMzM3
LzEvUlB5SWZKZHprMWRkNWlWLWRmcVp6ZUlEZkd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSuKMA0G
CSqGSIb3DQEBCwUAA4IBAQAsRsRk/D4fzmtpQXQ7FUxeoujylljngtMMp6LAeh3s
Mxvt5DPDjYbNlWVA4QRp1frbrjv7GrD4Q1+zlO8v4yN94FQYq0qLKdBb7DbtSwDt
AasXAEK6Uj0cT3gGagKvnhdHRIYlKYk2KOWgTd5HJW+qE3+iNpv6cMQlCEUugSx4
xpxtoJ+9/7XpzehmH7kjirS1GMddNf7ogbYTl2ixNwSCQWgazVs859wMI5PgXL9n
AXGZ1Uc8RP222sDnIl1sJHe9Oh6CIEFBiggq+WHHsh5oTPOCKHj5hCO67lXE3TFr
Zf9Y6q3VlSiA1iNTAVnCljKEdr/hBNflb44vfqIgcow5
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:39 2023 by rpki-client on console-fra.rpki-client.org