Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/dAHcUmcqhAwbE3D9ev4dDDFT1tU.roa
File: dAHcUmcqhAwbE3D9ev4dDDFT1tU.roa (raw, json)
Hash identifier: AuRgPBW0VPmqDL7NS9akUEg/47/s4W/qtHdHiEiOL04=
Subject key identifier: 74:01:DC:52:67:2A:84:0C:1B:13:70:FD:7A:FE:1D:0C:31:53:D6:D5
Certificate issuer: /CN=81bb78be41e48337997c8fe91d8e2f24f7b49eaf
Certificate serial: 018A03E131F42FE949457172D4252ED996DF
Authority key identifier: 81:BB:78:BE:41:E4:83:37:99:7C:8F:E9:1D:8E:2F:24:F7:B4:9E:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbt4vkHkgzeZfI_pHY4vJPe0nq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/dAHcUmcqhAwbE3D9ev4dDDFT1tU.roa
Signing time: Thu 17 Aug 2023 14:23:24 +0000
ROA not before: Thu 17 Aug 2023 14:23:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44431
IP address blocks: 92.43.224.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Aug 2023 11:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:03:e1:31:f4:2f:e9:49:45:71:72:d4:25:2e:d9:96:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81bb78be41e48337997c8fe91d8e2f24f7b49eaf
Validity
Not Before: Aug 17 14:23:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7401dc52672a840c1b1370fd7afe1d0c3153d6d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:49:a0:30:c7:00:69:09:49:52:15:40:cd:
c3:09:a3:8a:10:09:ee:f4:c4:d1:20:7a:f1:5f:85:
ef:57:4c:ef:4d:a9:e1:81:c3:b5:ca:4a:77:da:67:
dd:f1:a6:f7:81:d1:17:4c:31:6c:c7:c4:24:f2:45:
a8:36:ae:0a:e4:ef:5f:43:ff:2d:d9:c0:b5:5a:c8:
f1:04:60:20:5e:cd:bc:f1:4f:20:4d:3b:3a:66:e4:
5c:37:96:aa:40:2d:ea:6a:52:f1:28:dc:54:61:49:
5b:59:9b:e0:8f:43:fd:15:b0:ec:91:ba:03:82:99:
d7:96:e4:3e:d3:e6:53:11:10:49:04:64:a1:9f:51:
1c:db:ac:d2:4f:5d:17:2a:28:36:e3:d4:67:71:62:
27:33:8a:15:71:4d:a5:63:29:90:12:fc:77:a8:3e:
cc:85:03:a1:4a:4b:75:2b:f3:a5:e1:8e:69:5c:29:
5e:87:36:2b:92:34:83:61:00:5d:17:1b:85:cc:f1:
5c:f5:38:90:41:4c:05:46:52:a0:10:e7:3f:5a:0c:
38:74:13:7f:8d:78:fb:2b:a2:16:f8:c3:74:fb:fc:
10:bc:30:e3:fe:da:b3:d4:a1:b2:90:24:d8:25:24:
28:ae:f9:ac:0a:cc:3b:27:06:39:5b:25:5c:9e:ea:
c3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:01:DC:52:67:2A:84:0C:1B:13:70:FD:7A:FE:1D:0C:31:53:D6:D5
X509v3 Authority Key Identifier:
keyid:81:BB:78:BE:41:E4:83:37:99:7C:8F:E9:1D:8E:2F:24:F7:B4:9E:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbt4vkHkgzeZfI_pHY4vJPe0nq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/dAHcUmcqhAwbE3D9ev4dDDFT1tU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/gbt4vkHkgzeZfI_pHY4vJPe0nq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.224.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:84:5c:f9:e0:f2:66:63:7c:3d:6b:ad:dd:a6:05:45:87:02:
a5:7d:4d:d2:3c:e1:41:80:f8:1e:f1:81:d8:7f:b3:09:ab:0a:
a8:45:ab:b3:3b:65:33:47:3e:0a:d3:cc:06:37:65:58:0e:00:
b6:35:32:ab:02:ed:71:86:83:bd:66:f1:a1:25:45:a2:49:0c:
2f:5b:36:7f:5a:fe:1b:e8:dc:d6:66:87:2d:2f:26:e2:9d:02:
8a:f2:1f:9e:70:f8:25:e9:47:52:17:96:1d:41:89:ef:1c:cc:
ae:35:e6:fc:27:8b:da:d7:75:cb:d1:4d:95:ad:83:88:ab:6f:
5d:b9:ae:0b:de:69:df:97:3e:64:ea:c2:18:b5:3a:14:2d:49:
c4:40:61:eb:99:d1:7d:c1:7f:58:3e:94:1b:44:e7:06:e9:e0:
8b:db:b1:3d:71:09:e3:72:4a:0b:a1:84:1a:1e:cf:e5:09:58:
7b:a1:bd:4e:67:8e:61:35:4b:86:31:5a:f5:bb:6f:b4:a0:db:
93:70:ff:c9:e3:c8:32:5c:c7:8e:5a:67:dd:ee:c7:2a:88:0a:
79:f6:8c:16:c5:62:d2:f0:4f:b8:67:0e:5e:c5:85:53:08:b3:
95:ac:22:b1:6b:85:b2:19:6b:db:ed:23:b2:c3:52:77:c9:b6:
f7:3c:73:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoD4TH0L+lJRXFy1CUu2ZbfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYmI3OGJlNDFlNDgzMzc5OTdjOGZlOTFkOGUyZjI0Zjdi
NDllYWYwHhcNMjMwODE3MTQyMzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDAxZGM1MjY3MmE4NDBjMWIxMzcwZmQ3YWZlMWQwYzMxNTNkNmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4RJoDDHAGkJSVIVQM3DCaOKEAnu
9MTRIHrxX4XvV0zvTanhgcO1ykp32mfd8ab3gdEXTDFsx8Qk8kWoNq4K5O9fQ/8t
2cC1WsjxBGAgXs288U8gTTs6ZuRcN5aqQC3qalLxKNxUYUlbWZvgj0P9FbDskboD
gpnXluQ+0+ZTERBJBGShn1Ec26zST10XKig249RncWInM4oVcU2lYymQEvx3qD7M
hQOhSkt1K/Ol4Y5pXClehzYrkjSDYQBdFxuFzPFc9TiQQUwFRlKgEOc/Wgw4dBN/
jXj7K6IW+MN0+/wQvDDj/tqz1KGykCTYJSQorvmsCsw7JwY5WyVcnurDjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHQB3FJnKoQMGxNw/Xr+HQwxU9bVMB8GA1UdIwQY
MBaAFIG7eL5B5IM3mXyP6R2OLyT3tJ6vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2J0NHZrSGtnemVaZklfcEhZNHZKUGUwbnE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC85ZGI0ZDMtZjc4ZC00NDMwLTg3YzAt
NmNiZDU4MWQzMTdjLzEvZEFIY1VtY3FoQXdiRTNEOWV2NGREREZUMXRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC85ZGI0ZDMtZjc4ZC00NDMwLTg3YzAtNmNiZDU4MWQzMTdj
LzEvZ2J0NHZrSGtnemVaZklfcEhZNHZKUGUwbnE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXCvgMA0G
CSqGSIb3DQEBCwUAA4IBAQChhFz54PJmY3w9a63dpgVFhwKlfU3SPOFBgPge8YHY
f7MJqwqoRauzO2UzRz4K08wGN2VYDgC2NTKrAu1xhoO9ZvGhJUWiSQwvWzZ/Wv4b
6NzWZoctLybinQKK8h+ecPgl6UdSF5YdQYnvHMyuNeb8J4va13XL0U2VrYOIq29d
ua4L3mnflz5k6sIYtToULUnEQGHrmdF9wX9YPpQbROcG6eCL27E9cQnjckoLoYQa
Hs/lCVh7ob1OZ45hNUuGMVr1u2+0oNuTcP/J48gyXMeOWmfd7scqiAp59owWxWLS
8E+4Zw5exYVTCLOVrCKxa4WyGWvb7SOyw1J3ybb3PHOH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:47 2024 by rpki-client on console-fra.rpki-client.org