Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/DZew1AZDKBwvfQHqibgkClMJBio.roa
File: DZew1AZDKBwvfQHqibgkClMJBio.roa (raw, json)
Hash identifier: E4XWgbQm3+83Y5U8IsEtcugylzSJEx0BRMM/yzg+hjU=
Subject key identifier: 0D:97:B0:D4:06:43:28:1C:2F:7D:01:EA:89:B8:24:0A:53:09:06:2A
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0189D6A9C810936528E75A900C3FF700954D
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/DZew1AZDKBwvfQHqibgkClMJBio.roa
Signing time: Tue 08 Aug 2023 19:39:58 +0000
ROA not before: Tue 08 Aug 2023 19:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201634
IP address blocks: 89.44.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 08:57:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d6:a9:c8:10:93:65:28:e7:5a:90:0c:3f:f7:00:95:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Aug 8 19:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d97b0d40643281c2f7d01ea89b8240a5309062a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:0c:1c:e7:6b:0d:c0:81:b4:b1:7a:97:5b:de:
a6:82:d3:65:a6:ac:77:1a:01:47:db:f7:dd:77:b1:
04:d4:fa:21:62:0a:c2:86:2e:cd:c3:b2:87:39:fa:
3c:ba:88:d8:2f:6f:bd:11:cf:3e:90:26:a3:18:62:
9a:67:cd:58:22:39:af:fa:ef:30:f9:5b:5b:5b:18:
d2:c0:cf:d7:25:79:19:8f:0f:9f:98:80:dc:5d:d0:
59:aa:f1:6e:44:fe:b4:19:e9:69:a7:64:e2:09:fa:
0e:86:b3:8a:11:72:40:57:20:f7:b9:26:d3:be:44:
f1:bb:73:cf:4d:1f:d7:7e:32:e3:7a:47:cf:1d:dd:
b6:6d:3d:76:6d:3e:44:97:b7:4e:0a:47:1c:4c:36:
d2:54:59:49:1c:96:d4:b6:54:04:5e:bf:0e:c9:a3:
67:72:65:5a:63:7c:74:db:cd:99:40:62:00:87:9e:
27:c9:66:49:dc:f1:51:6f:69:32:5f:5d:6a:f1:1a:
a3:fd:58:64:a8:3c:84:34:c6:0e:98:b7:6f:34:72:
36:5b:1e:23:6e:2d:9c:cd:82:f8:4c:c0:24:ec:75:
98:a1:58:3c:e3:3f:cd:87:76:c8:e8:26:cb:e1:23:
04:1f:a0:25:e6:ba:9d:7f:4d:aa:c8:5f:93:25:db:
c0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:97:B0:D4:06:43:28:1C:2F:7D:01:EA:89:B8:24:0A:53:09:06:2A
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/DZew1AZDKBwvfQHqibgkClMJBio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.241.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:30:ac:25:a7:5a:9c:dc:3f:91:89:ea:d6:ff:5f:23:4e:7d:
00:99:4d:c7:85:f8:1b:df:fc:96:28:f5:7d:42:ea:c8:74:08:
88:04:53:d6:94:16:c0:c0:d4:1e:b3:a7:bf:67:6c:19:f7:21:
01:c3:11:56:ce:c3:42:68:60:97:93:60:a2:7c:54:0b:36:76:
5d:6d:90:de:52:80:da:6b:e0:9d:8c:d0:94:9b:4b:ea:90:30:
cf:7e:fa:c1:3a:a7:d0:98:b4:63:4b:97:96:9f:41:92:3f:ad:
24:39:99:08:99:4a:ad:ab:13:25:a0:4a:59:d2:b6:e4:b9:2c:
93:78:c1:15:ca:8b:17:3b:27:87:1f:fd:cf:5b:58:9d:89:db:
d5:19:8e:8c:8f:ce:79:de:2c:43:e1:e5:7d:98:f1:c1:ce:ef:
2d:78:4e:d4:87:ee:84:fa:06:66:f0:c0:3b:9a:ad:e4:b9:c5:
aa:a3:86:c2:2e:69:c8:c5:bf:d9:00:9a:a7:af:26:1d:65:41:
f0:f0:b9:4d:8b:e8:95:49:f2:4b:f6:55:a8:1c:df:a8:81:4b:
c8:38:81:01:80:e6:5b:b1:1b:3f:f6:bc:9f:2e:9f:9a:19:dc:
ab:d9:42:e4:70:ed:f3:72:59:45:68:80:a4:8a:4f:dd:6a:84:
56:cd:8a:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnWqcgQk2Uo51qQDD/3AJVNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZGIzOGIzNDNkYTJkMTE5MzA5ZWRhYTE5YzdhNzg4NzAz
MjdlYmUwHhcNMjMwODA4MTkzOTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDk3YjBkNDA2NDMyODFjMmY3ZDAxZWE4OWI4MjQwYTUzMDkwNjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Qwc52sNwIG0sXqXW96mgtNlpqx3
GgFH2/fdd7EE1PohYgrChi7Nw7KHOfo8uojYL2+9Ec8+kCajGGKaZ81YIjmv+u8w
+VtbWxjSwM/XJXkZjw+fmIDcXdBZqvFuRP60Gelpp2TiCfoOhrOKEXJAVyD3uSbT
vkTxu3PPTR/XfjLjekfPHd22bT12bT5El7dOCkccTDbSVFlJHJbUtlQEXr8OyaNn
cmVaY3x0282ZQGIAh54nyWZJ3PFRb2kyX11q8Rqj/VhkqDyENMYOmLdvNHI2Wx4j
bi2czYL4TMAk7HWYoVg84z/Nh3bI6CbL4SMEH6Al5rqdf02qyF+TJdvAxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA2XsNQGQygcL30B6om4JApTCQYqMB8GA1UdIwQY
MBaAFG3bOLND2i0RkwntqhnHp4hwMn6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQt
M2RmYTUxMGQ2YjE2LzEvRFpldzFBWkRLQnd2ZlFIcWliZ2tDbE1KQmlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9jOTYxYTAtNGY1My00MjJhLWI3ZGQtM2RmYTUxMGQ2YjE2
LzEvYmRzNHMwUGFMUkdUQ2UycUdjZW5pSEF5ZnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSzxMA0G
CSqGSIb3DQEBCwUAA4IBAQCNMKwlp1qc3D+RierW/18jTn0AmU3Hhfgb3/yWKPV9
QurIdAiIBFPWlBbAwNQes6e/Z2wZ9yEBwxFWzsNCaGCXk2CifFQLNnZdbZDeUoDa
a+CdjNCUm0vqkDDPfvrBOqfQmLRjS5eWn0GSP60kOZkImUqtqxMloEpZ0rbkuSyT
eMEVyosXOyeHH/3PW1ididvVGY6Mj8553ixD4eV9mPHBzu8teE7Uh+6E+gZm8MA7
mq3kucWqo4bCLmnIxb/ZAJqnryYdZUHw8LlNi+iVSfJL9lWoHN+ogUvIOIEBgOZb
sRs/9ryfLp+aGdyr2ULkcO3zcllFaICkik/daoRWzYra
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org