Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/tJwwt7BA0cpp2WfSZtiv2bBgVWs.roa
File: tJwwt7BA0cpp2WfSZtiv2bBgVWs.roa (raw, json)
Hash identifier: tmd+ItNmMWAMIIB+uoQiJqDklBWaRde3hrRA4P7NNVY=
Subject key identifier: B4:9C:30:B7:B0:40:D1:CA:69:D9:67:D2:66:D8:AF:D9:B0:60:55:6B
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01891696EE53CEB38EE49F9B411482104DA1
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/tJwwt7BA0cpp2WfSZtiv2bBgVWs.roa
Signing time: Sun 02 Jul 2023 12:32:17 +0000
ROA not before: Sun 02 Jul 2023 12:32:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31732
IP address blocks: 188.209.155.0/24 maxlen: 24
82.115.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 09:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:16:96:ee:53:ce:b3:8e:e4:9f:9b:41:14:82:10:4d:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jul 2 12:32:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b49c30b7b040d1ca69d967d266d8afd9b060556b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a1:a3:11:a8:e8:bb:4d:5c:a2:33:ac:e2:13:
28:1e:cc:ee:c2:88:6b:89:c5:8d:6a:ea:81:32:1e:
76:cb:44:75:85:4d:e7:e0:14:54:49:a2:65:c8:54:
ae:79:d8:9a:66:8c:86:6b:0c:00:b5:02:37:8e:2e:
66:9b:5f:a4:05:0f:2f:71:98:a5:93:cf:a5:e9:5f:
ca:e8:d9:49:12:d4:5e:da:e1:e4:3d:e0:92:70:ab:
ca:fe:7e:71:8a:cf:a6:cd:16:f0:d8:86:5b:ca:5a:
f5:5d:a9:f5:db:9a:e3:c0:d0:05:8f:54:66:24:74:
65:04:25:1d:7b:3f:60:7d:a2:85:21:4f:4d:25:2e:
f3:7c:e3:db:f4:b0:86:a0:a8:2c:dc:1e:ba:a0:d4:
df:0b:91:31:6c:6b:fa:97:f5:42:f7:cd:79:1f:5a:
dd:f4:fa:37:30:5e:a4:c6:29:1c:cb:e5:f5:3e:c2:
bc:a4:e3:63:87:7f:47:8a:4a:b7:4d:b7:26:42:cc:
02:0a:06:8b:e7:ce:2f:ad:95:49:26:c7:59:be:3a:
35:2b:72:0d:b6:2e:79:24:b1:ca:0b:f8:49:e0:d1:
ea:d7:9f:7f:1f:b9:8d:b1:2f:94:b9:58:0c:45:c8:
c3:ba:67:33:47:62:4d:c8:6d:94:5c:53:de:fa:9c:
12:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9C:30:B7:B0:40:D1:CA:69:D9:67:D2:66:D8:AF:D9:B0:60:55:6B
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/tJwwt7BA0cpp2WfSZtiv2bBgVWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.8.0/22
188.209.155.0/24
Signature Algorithm: sha256WithRSAEncryption
12:c0:d3:38:ee:34:ff:36:66:88:9f:32:53:9e:2b:2e:55:8a:
0e:df:b5:75:8f:79:b4:2c:fd:84:a7:fe:c2:60:bb:d1:2f:72:
73:f1:11:62:8f:6c:ec:13:90:a0:eb:46:7f:49:9d:e0:ef:dc:
b2:eb:45:c1:a4:7e:69:35:e2:af:93:93:3f:9b:74:22:39:84:
71:2d:9b:2a:01:5c:8d:d8:7f:f0:a8:f5:20:a2:9b:65:ba:a5:
21:a0:a0:55:a8:fb:9d:b3:e3:27:8a:96:87:41:32:09:76:34:
07:54:c6:7c:52:1d:21:6f:3c:03:6c:69:e6:43:eb:64:b9:83:
6a:2d:75:19:2a:6a:11:b7:db:60:06:0f:9c:9a:75:4b:4b:6e:
8a:eb:6e:35:79:ae:4d:69:60:d6:05:eb:73:f5:c6:e4:da:a3:
58:c7:05:11:2e:fd:c3:08:2e:ee:cd:89:d0:68:4d:fa:fb:2a:
dc:4b:44:e7:e8:e3:a7:2d:eb:03:6c:75:50:0d:42:b4:fe:97:
ec:41:0f:2b:03:c7:f5:ce:b1:9b:ec:2a:0f:74:be:72:fe:6f:
e9:28:6a:b2:83:80:a2:9e:cf:a1:2f:e1:27:c6:c6:2c:94:5c:
24:41:9f:5f:39:56:95:e5:d7:e0:42:a8:54:89:03:36:69:45:
a6:8c:63:32
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYkWlu5TzrOO5J+bQRSCEE2hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjMwNzAyMTIzMjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDljMzBiN2IwNDBkMWNhNjlkOTY3ZDI2NmQ4YWZkOWIwNjA1NTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaGjEajou01cojOs4hMoHszuwohr
icWNauqBMh52y0R1hU3n4BRUSaJlyFSuediaZoyGawwAtQI3ji5mm1+kBQ8vcZil
k8+l6V/K6NlJEtRe2uHkPeCScKvK/n5xis+mzRbw2IZbylr1Xan125rjwNAFj1Rm
JHRlBCUdez9gfaKFIU9NJS7zfOPb9LCGoKgs3B66oNTfC5ExbGv6l/VC9815H1rd
9Po3MF6kxikcy+X1PsK8pONjh39Hikq3TbcmQswCCgaL584vrZVJJsdZvjo1K3IN
ti55JLHKC/hJ4NHq159/H7mNsS+UuVgMRcjDumczR2JNyG2UXFPe+pwSqQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLScMLewQNHKadln0mbYr9mwYFVrMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvdEp3d3Q3QkEwY3BwMldmU1p0aXYyYkJnVldzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCUnMIAwQA
vNGbMA0GCSqGSIb3DQEBCwUAA4IBAQASwNM47jT/NmaInzJTnisuVYoO37V1j3m0
LP2Ep/7CYLvRL3Jz8RFij2zsE5Cg60Z/SZ3g79yy60XBpH5pNeKvk5M/m3QiOYRx
LZsqAVyN2H/wqPUgoptluqUhoKBVqPuds+MnipaHQTIJdjQHVMZ8Uh0hbzwDbGnm
Q+tkuYNqLXUZKmoRt9tgBg+cmnVLS26K6241ea5NaWDWBetz9cbk2qNYxwURLv3D
CC7uzYnQaE36+yrcS0Tn6OOnLesDbHVQDUK0/pfsQQ8rA8f1zrGb7CoPdL5y/m/p
KGqyg4Cins+hL+EnxsYslFwkQZ9fOVaV5dfgQqhUiQM2aUWmjGMy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org