Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/r5hkFtsCHut1vOoFLwvCw54dokI.roa
File: r5hkFtsCHut1vOoFLwvCw54dokI.roa (raw, json)
Hash identifier: aA2xKZi4XGWKY6YZLOh8CIAJZVi4xXoPxnYmci/3Frc=
Subject key identifier: AF:98:64:16:DB:02:1E:EB:75:BC:EA:05:2F:0B:C2:C3:9E:1D:A2:42
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE4B593F8B71FCF50BED46BDD9588
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/r5hkFtsCHut1vOoFLwvCw54dokI.roa
Signing time: Sun 01 Jan 2023 06:04:56 +0000
ROA not before: Sun 01 Jan 2023 06:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210866
IP address blocks: 77.65.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e4:b5:93:f8:b7:1f:cf:50:be:d4:6b:dd:95:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af986416db021eeb75bcea052f0bc2c39e1da242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:ff:99:01:15:f9:df:0b:9e:97:7d:77:ee:
10:19:ee:5f:8f:18:b5:7c:a5:96:c8:5d:c5:6f:1d:
b1:4d:26:70:d2:42:bb:35:f1:2a:98:9d:5b:4c:62:
94:6b:83:27:77:ea:db:18:fc:f2:ae:f5:3d:01:6a:
7d:ab:4f:ee:fa:59:cb:9d:04:40:98:da:0f:a8:9d:
b9:50:46:be:3b:07:45:c0:d5:84:3a:f5:5b:14:9b:
53:a2:b5:c0:84:b8:27:73:3c:56:ac:c8:60:d9:14:
f2:35:77:1a:56:10:86:50:5e:e6:12:c8:b4:48:83:
07:8d:7a:1c:03:0e:ba:55:e0:69:d1:18:03:0d:75:
8d:c1:2f:d9:79:ad:10:6a:04:b4:e2:a8:5c:37:cc:
0a:fc:a3:a7:49:b6:86:e0:9d:8c:cc:91:7c:b1:39:
be:de:c3:53:76:1e:80:91:ab:7b:42:b0:84:99:77:
fe:dc:13:bc:a2:66:5b:8a:0b:a5:d0:46:9f:d4:08:
2a:8f:42:4c:fd:37:ed:48:30:7f:87:41:2f:5d:50:
19:27:2a:70:8a:50:36:9a:69:9d:8c:cd:65:96:c5:
94:55:77:1b:6c:8f:2f:58:03:54:fd:1e:76:b8:4f:
24:e3:17:55:be:81:29:bf:ce:3a:4e:03:1d:a7:1b:
1f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:98:64:16:DB:02:1E:EB:75:BC:EA:05:2F:0B:C2:C3:9E:1D:A2:42
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/r5hkFtsCHut1vOoFLwvCw54dokI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.65.208.0/24
Signature Algorithm: sha256WithRSAEncryption
84:4f:10:88:c1:b5:ca:d5:c9:36:20:a7:4d:36:4f:1a:5f:b7:
fe:45:5f:c7:5e:1f:f8:de:57:ff:de:19:01:e7:81:86:d0:17:
fa:62:3f:6b:3a:bb:97:ec:f9:5d:7c:cc:49:20:2b:42:f2:16:
3e:8b:97:f4:e3:c9:af:b4:a2:a2:0b:bd:e4:11:17:ee:a3:d6:
cc:03:cb:ac:43:10:1b:93:00:3f:96:76:65:e7:b3:cc:b3:ce:
ad:1e:99:52:14:56:dd:15:82:e4:52:8f:2c:8b:99:3f:53:00:
76:75:85:eb:c4:e2:e3:20:37:95:3e:7e:99:d7:22:25:65:1f:
a3:ae:42:c7:52:f3:4b:11:48:92:71:41:04:57:9d:3b:d4:a3:
4c:51:e1:2c:92:fb:ec:55:6e:cb:ad:70:15:6b:5d:25:12:ba:
ad:b6:75:0b:d0:a9:05:e4:b8:9f:18:8e:d0:51:46:0f:81:92:
ae:b1:2f:13:1d:d2:1d:d3:fa:91:98:e3:a1:61:7f:bb:be:15:
70:88:d2:4e:b4:ca:61:21:9e:38:60:d4:25:fe:62:f9:6f:7c:
ba:74:b2:a2:7d:65:15:19:6e:15:29:6d:90:75:e1:16:d0:61:
05:a2:0b:eb:1b:74:8e:4e:bd:18:6d:97:9e:9e:cc:01:5b:5b:
0f:74:94:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7uS1k/i3H89QvtRr3ZWIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwMTAxMDYwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjk4NjQxNmRiMDIxZWViNzViY2VhMDUyZjBiYzJjMzllMWRhMjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuI3/mQEV+d8Lnpd9d+4QGe5fjxi1
fKWWyF3Fbx2xTSZw0kK7NfEqmJ1bTGKUa4Mnd+rbGPzyrvU9AWp9q0/u+lnLnQRA
mNoPqJ25UEa+OwdFwNWEOvVbFJtTorXAhLgnczxWrMhg2RTyNXcaVhCGUF7mEsi0
SIMHjXocAw66VeBp0RgDDXWNwS/Zea0QagS04qhcN8wK/KOnSbaG4J2MzJF8sTm+
3sNTdh6Akat7QrCEmXf+3BO8omZbigul0Eaf1Agqj0JM/TftSDB/h0EvXVAZJypw
ilA2mmmdjM1llsWUVXcbbI8vWANU/R52uE8k4xdVvoEpv846TgMdpxsf9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK+YZBbbAh7rdbzqBS8LwsOeHaJCMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvcjVoa0Z0c0NIdXQxdk9vRkx3dkN3NTRkb2tJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUHQMA0G
CSqGSIb3DQEBCwUAA4IBAQCETxCIwbXK1ck2IKdNNk8aX7f+RV/HXh/43lf/3hkB
54GG0Bf6Yj9rOruX7PldfMxJICtC8hY+i5f048mvtKKiC73kERfuo9bMA8usQxAb
kwA/lnZl57PMs86tHplSFFbdFYLkUo8si5k/UwB2dYXrxOLjIDeVPn6Z1yIlZR+j
rkLHUvNLEUiScUEEV5071KNMUeEskvvsVW7LrXAVa10lErqttnUL0KkF5LifGI7Q
UUYPgZKusS8THdId0/qRmOOhYX+7vhVwiNJOtMphIZ44YNQl/mL5b3y6dLKifWUV
GW4VKW2QdeEW0GEFogvrG3SOTr0YbZeenswBW1sPdJTF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org