Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/XcTkWq6WMebVh2pTsN02ED6PcYU.roa
File: XcTkWq6WMebVh2pTsN02ED6PcYU.roa (raw, json)
Hash identifier: Lcl1fyDSuOwwNr284UZwENgjGv5K7WkqPcw29WxknPo=
Subject key identifier: 5D:C4:E4:5A:AE:96:31:E6:D5:87:6A:53:B0:DD:36:10:3E:8F:71:85
Certificate issuer: /CN=a1628e39f471addc75e71a391b82dd925c7f081d
Certificate serial: 01856C2EDAE6CE7DDC8122BBAA68623AAFB9
Authority key identifier: A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/XcTkWq6WMebVh2pTsN02ED6PcYU.roa
Signing time: Sun 01 Jan 2023 07:14:47 +0000
ROA not before: Sun 01 Jan 2023 07:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 193.239.244.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:da:e6:ce:7d:dc:81:22:bb:aa:68:62:3a:af:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1628e39f471addc75e71a391b82dd925c7f081d
Validity
Not Before: Jan 1 07:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dc4e45aae9631e6d5876a53b0dd36103e8f7185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:81:b2:de:00:07:80:49:b9:09:be:a5:3f:14:
a4:c0:23:fe:b2:d6:e0:ff:1f:72:a2:89:76:02:56:
3e:0c:f9:ea:6f:77:61:ba:10:83:1b:53:24:d3:ae:
f8:27:d1:d5:f9:e5:e0:f2:23:09:5a:55:7f:2e:5b:
4b:4f:ac:71:85:06:f3:c8:ed:cd:da:43:dd:57:73:
6c:8f:59:d2:c2:9b:44:8c:ab:64:42:dc:d9:b2:07:
f4:e8:b0:96:3a:bd:a6:c1:9b:52:8d:20:9a:55:fb:
29:cc:83:ac:92:1a:f3:f9:39:1f:3a:3d:3b:0e:40:
c6:33:35:68:de:81:15:e6:3a:5f:c4:ce:9b:18:31:
35:21:68:39:0f:c4:8c:13:c7:13:70:f8:e2:cd:3b:
2e:a2:10:5e:6f:18:cb:ad:53:11:bf:c6:c8:82:93:
5b:52:29:c1:41:ab:87:64:3c:5e:46:a4:f8:9c:2b:
29:35:36:ff:16:d9:d0:9c:eb:b0:4e:04:33:81:43:
1d:1c:79:ea:92:eb:97:30:4a:2c:c0:46:91:be:ad:
53:a0:b0:b2:e0:c6:ce:d7:72:78:52:a5:ff:27:fe:
3c:60:78:96:1b:3b:05:7d:d8:0c:38:4d:94:df:00:
7a:1e:6b:81:bd:2a:eb:c7:02:d2:7b:be:fe:2c:15:
04:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C4:E4:5A:AE:96:31:E6:D5:87:6A:53:B0:DD:36:10:3E:8F:71:85
X509v3 Authority Key Identifier:
keyid:A1:62:8E:39:F4:71:AD:DC:75:E7:1A:39:1B:82:DD:92:5C:7F:08:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWKOOfRxrdx15xo5G4Ldklx_CB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/XcTkWq6WMebVh2pTsN02ED6PcYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/389ed2-1b82-45c9-a70a-025a0e6f05ae/1/oWKOOfRxrdx15xo5G4Ldklx_CB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.244.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:74:17:08:cc:0c:f5:17:31:91:24:ba:52:9f:70:48:74:8f:
ba:51:a1:e8:eb:ba:89:13:61:e6:87:3e:32:43:ee:9e:73:7a:
6d:45:a6:77:e6:03:02:86:9c:23:19:6c:e2:b8:27:2c:c6:ef:
23:c8:de:09:ef:5d:ed:5e:8e:94:2c:e9:05:16:6d:7c:6d:ae:
e9:85:8f:cf:cc:9e:43:e3:c4:38:57:23:db:24:f9:e7:98:33:
84:5b:60:a7:13:b4:05:d5:8e:13:b0:70:2f:db:7e:49:13:a0:
ad:61:87:65:23:7c:67:e1:bf:3d:8a:25:ec:30:4a:9a:73:39:
22:38:3d:da:46:5f:77:f9:3d:d6:0d:7b:99:eb:e8:f0:13:d4:
78:7d:88:eb:51:f0:e4:be:ff:16:27:99:99:84:66:8b:cf:4c:
b0:c8:9a:b6:92:8b:42:2e:06:d7:d3:17:44:37:2f:08:35:c1:
ed:d8:8d:1d:00:1c:cf:77:41:7f:19:c3:40:f3:ff:ef:ce:98:
b5:9c:45:d5:ca:c5:d5:0c:b0:40:a2:d3:8d:31:7d:a1:db:22:
5b:63:ce:22:0a:f5:06:73:e7:01:08:79:e8:3d:e4:50:ee:58:
04:36:56:5a:2d:74:34:f4:ec:58:97:62:6d:9c:46:63:89:8a:
bf:55:a9:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsLtrmzn3cgSK7qmhiOq+5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNjI4ZTM5ZjQ3MWFkZGM3NWU3MWEzOTFiODJkZDkyNWM3
ZjA4MWQwHhcNMjMwMTAxMDcxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGM0ZTQ1YWFlOTYzMWU2ZDU4NzZhNTNiMGRkMzYxMDNlOGY3MTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooGy3gAHgEm5Cb6lPxSkwCP+stbg
/x9yool2AlY+DPnqb3dhuhCDG1Mk0674J9HV+eXg8iMJWlV/LltLT6xxhQbzyO3N
2kPdV3Nsj1nSwptEjKtkQtzZsgf06LCWOr2mwZtSjSCaVfspzIOskhrz+TkfOj07
DkDGMzVo3oEV5jpfxM6bGDE1IWg5D8SME8cTcPjizTsuohBebxjLrVMRv8bIgpNb
UinBQauHZDxeRqT4nCspNTb/FtnQnOuwTgQzgUMdHHnqkuuXMEoswEaRvq1ToLCy
4MbO13J4UqX/J/48YHiWGzsFfdgMOE2U3wB6HmuBvSrrxwLSe77+LBUEPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF3E5FquljHm1YdqU7DdNhA+j3GFMB8GA1UdIwQY
MBaAFKFijjn0ca3cdecaORuC3ZJcfwgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1dLT09mUnhyZHgxNXhvNUc0TGRrbHhfQ0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8zODllZDItMWI4Mi00NWM5LWE3MGEt
MDI1YTBlNmYwNWFlLzEvWGNUa1dxNldNZWJWaDJwVHNOMDJFRDZQY1lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC8zODllZDItMWI4Mi00NWM5LWE3MGEtMDI1YTBlNmYwNWFl
LzEvb1dLT09mUnhyZHgxNXhvNUc0TGRrbHhfQ0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwe/0MA0G
CSqGSIb3DQEBCwUAA4IBAQAudBcIzAz1FzGRJLpSn3BIdI+6UaHo67qJE2Hmhz4y
Q+6ec3ptRaZ35gMChpwjGWziuCcsxu8jyN4J713tXo6ULOkFFm18ba7phY/PzJ5D
48Q4VyPbJPnnmDOEW2CnE7QF1Y4TsHAv235JE6CtYYdlI3xn4b89iiXsMEqaczki
OD3aRl93+T3WDXuZ6+jwE9R4fYjrUfDkvv8WJ5mZhGaLz0ywyJq2kotCLgbX0xdE
Ny8INcHt2I0dABzPd0F/GcNA8//vzpi1nEXVysXVDLBAotONMX2h2yJbY84iCvUG
c+cBCHnoPeRQ7lgENlZaLXQ09OxYl2JtnEZjiYq/Vanh
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:56 2024 by rpki-client on console-ams.rpki-client.org