Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/lPpp3xSusqDX8k4zAMzLfnXnLE0.roa
File: lPpp3xSusqDX8k4zAMzLfnXnLE0.roa (raw, json)
Hash identifier: vcRoP5aH85LKJlu+ILal+yn3uNDrIUGDkiXOLqJzBUU=
Subject key identifier: 94:FA:69:DF:14:AE:B2:A0:D7:F2:4E:33:00:CC:CB:7E:75:E7:2C:4D
Certificate issuer: /CN=7a8746a76cda8369009d28941ef156239c6a63a1
Certificate serial: 01856F94ABF642BBA7ECE957E49EE6A3A0C8
Authority key identifier: 7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/lPpp3xSusqDX8k4zAMzLfnXnLE0.roa
Signing time: Sun 01 Jan 2023 23:04:52 +0000
ROA not before: Sun 01 Jan 2023 23:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8426
IP address blocks: 217.161.12.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:ab:f6:42:bb:a7:ec:e9:57:e4:9e:e6:a3:a0:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a8746a76cda8369009d28941ef156239c6a63a1
Validity
Not Before: Jan 1 23:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94fa69df14aeb2a0d7f24e3300cccb7e75e72c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:45:0e:c1:59:f1:8f:85:5e:3d:4c:4b:ff:1e:
46:be:17:72:97:f0:ae:47:b9:7b:86:78:a9:69:1d:
56:54:76:7f:9c:13:72:5b:2f:82:82:28:57:c3:45:
81:2d:20:c9:50:56:c6:4b:89:9a:38:88:5d:21:4e:
a9:10:66:20:92:70:b1:b1:cb:e9:82:2f:36:64:f7:
a7:3c:9b:67:b7:53:42:51:e9:5d:56:3f:0d:1e:6d:
21:38:c2:e7:6f:b4:8d:b0:6c:6a:e2:63:43:06:fd:
d9:15:df:de:46:f6:18:2d:6d:cd:53:63:3c:21:ba:
f3:3a:9f:f8:b4:df:f8:64:6f:57:ec:9b:ea:ce:d3:
e9:18:19:f0:a2:1a:0f:60:52:8f:ea:19:ab:d3:12:
80:32:2a:4a:3e:d6:aa:a1:45:83:9c:ce:ec:8b:56:
30:a5:2c:73:76:21:71:fd:5b:58:2f:65:45:36:82:
7b:ab:8a:ec:30:5b:83:8a:e6:2a:17:40:7b:a8:6b:
1c:2b:3f:ad:60:f0:85:05:df:36:ed:49:fb:a3:63:
32:f3:30:7c:fa:a4:c7:66:56:95:34:07:f6:f3:91:
55:57:92:2b:e9:31:68:8b:26:df:6b:87:e6:90:7f:
a6:a3:38:77:c3:27:c1:f8:d5:e8:25:72:1f:19:bf:
eb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FA:69:DF:14:AE:B2:A0:D7:F2:4E:33:00:CC:CB:7E:75:E7:2C:4D
X509v3 Authority Key Identifier:
keyid:7A:87:46:A7:6C:DA:83:69:00:9D:28:94:1E:F1:56:23:9C:6A:63:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eodGp2zag2kAnSiUHvFWI5xqY6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/lPpp3xSusqDX8k4zAMzLfnXnLE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/913e12-f5ed-46f4-982c-52dedddee393/1/eodGp2zag2kAnSiUHvFWI5xqY6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.161.12.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:85:d7:ef:ef:56:0a:3e:93:c3:4b:2e:9f:4c:8d:8d:4a:62:
cd:0e:f7:4a:63:8e:43:7a:f3:4a:29:1d:83:01:da:1c:50:7f:
2a:1a:3a:6c:c9:f7:6d:79:a6:74:53:a6:6a:01:af:78:83:8b:
13:e1:fb:bd:56:f8:16:c3:08:96:12:cf:b8:14:e5:a2:65:ef:
6c:eb:6e:3c:5a:d1:52:e8:26:f8:2b:ef:cc:15:dc:f5:ba:56:
01:2e:25:4b:01:f5:6f:21:87:88:5e:b4:bc:e2:57:db:0b:fe:
58:6f:06:54:fe:95:95:77:46:54:55:2a:b7:d9:c4:da:1c:83:
a6:a5:35:20:e3:eb:39:46:08:22:0a:db:d3:b4:23:9c:4e:aa:
53:8a:c0:a0:6f:d8:72:77:fc:9b:ea:4d:46:0b:57:b5:0a:ae:
81:3d:fc:da:39:66:ea:44:75:a0:1f:ee:90:da:c3:a3:58:7f:
82:c9:78:79:de:49:d2:16:aa:e4:0a:e6:ad:df:5d:d5:45:6c:
60:f5:5e:26:d3:cf:7b:87:ed:e8:39:c3:7d:ed:81:e9:88:c7:
67:e2:7c:84:de:db:90:a7:bf:3c:bd:95:6e:2f:e5:7f:7a:cd:
ba:c5:45:6b:23:39:9c:84:f2:8c:c8:4c:83:53:3b:b3:ff:b7:
6b:77:7b:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvlKv2Qrun7OlX5J7mo6DIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhODc0NmE3NmNkYTgzNjkwMDlkMjg5NDFlZjE1NjIzOWM2
YTYzYTEwHhcNMjMwMTAxMjMwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGZhNjlkZjE0YWViMmEwZDdmMjRlMzMwMGNjY2I3ZTc1ZTcyYzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEUOwVnxj4VePUxL/x5Gvhdyl/Cu
R7l7hnipaR1WVHZ/nBNyWy+CgihXw0WBLSDJUFbGS4maOIhdIU6pEGYgknCxscvp
gi82ZPenPJtnt1NCUeldVj8NHm0hOMLnb7SNsGxq4mNDBv3ZFd/eRvYYLW3NU2M8
IbrzOp/4tN/4ZG9X7JvqztPpGBnwohoPYFKP6hmr0xKAMipKPtaqoUWDnM7si1Yw
pSxzdiFx/VtYL2VFNoJ7q4rsMFuDiuYqF0B7qGscKz+tYPCFBd827Un7o2My8zB8
+qTHZlaVNAf285FVV5Ir6TFoiybfa4fmkH+mozh3wyfB+NXoJXIfGb/rMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJT6ad8UrrKg1/JOMwDMy3515yxNMB8GA1UdIwQY
MBaAFHqHRqds2oNpAJ0olB7xViOcamOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZW9kR3AyemFnMmtBblNpVUh2RldJNXhxWTZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi85MTNlMTItZjVlZC00NmY0LTk4MmMt
NTJkZWRkZGVlMzkzLzEvbFBwcDN4U3VzcURYOGs0ekFNekxmblhuTEUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi85MTNlMTItZjVlZC00NmY0LTk4MmMtNTJkZWRkZGVlMzkz
LzEvZW9kR3AyemFnMmtBblNpVUh2RldJNXhxWTZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB2aEMMA0G
CSqGSIb3DQEBCwUAA4IBAQCqhdfv71YKPpPDSy6fTI2NSmLNDvdKY45DevNKKR2D
AdocUH8qGjpsyfdteaZ0U6ZqAa94g4sT4fu9VvgWwwiWEs+4FOWiZe9s6248WtFS
6Cb4K+/MFdz1ulYBLiVLAfVvIYeIXrS84lfbC/5YbwZU/pWVd0ZUVSq32cTaHIOm
pTUg4+s5RggiCtvTtCOcTqpTisCgb9hyd/yb6k1GC1e1Cq6BPfzaOWbqRHWgH+6Q
2sOjWH+CyXh53knSFqrkCuat313VRWxg9V4m0897h+3oOcN97YHpiMdn4nyE3tuQ
p788vZVuL+V/es26xUVrIzmchPKMyEyDUzuz/7drd3uh
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:53 2024 by rpki-client on console-fra.rpki-client.org