Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/84d026-17e4-4787-a439-473d74a5e20f/1/CQumkQPsfLv5lvxde0vD-_IrQg0.roa
File: CQumkQPsfLv5lvxde0vD-_IrQg0.roa (raw, json)
Hash identifier: g/WNG25+kncEsUuQsVTeHB9K6VgLakBStCU3R3teybA=
Subject key identifier: 09:0B:A6:91:03:EC:7C:BB:F9:96:FC:5D:7B:4B:C3:FB:F2:2B:42:0D
Certificate issuer: /CN=ae83f7879c2c74a11652b5e08af64aac90800b04
Certificate serial: 01856F9DF5081B6A0B39B3C4BEBCB48BED95
Authority key identifier: AE:83:F7:87:9C:2C:74:A1:16:52:B5:E0:8A:F6:4A:AC:90:80:0B:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/roP3h5wsdKEWUrXgivZKrJCACwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/84d026-17e4-4787-a439-473d74a5e20f/1/CQumkQPsfLv5lvxde0vD-_IrQg0.roa
Signing time: Sun 01 Jan 2023 23:15:00 +0000
ROA not before: Sun 01 Jan 2023 23:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 786
IP address blocks: 136.206.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:f5:08:1b:6a:0b:39:b3:c4:be:bc:b4:8b:ed:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae83f7879c2c74a11652b5e08af64aac90800b04
Validity
Not Before: Jan 1 23:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=090ba69103ec7cbbf996fc5d7b4bc3fbf22b420d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:30:c8:76:57:19:7a:ef:04:b2:f2:23:e2:fe:
2b:64:ff:ee:59:a6:08:87:e2:fb:d0:0d:b5:23:09:
c4:05:16:fe:23:bd:cc:95:17:58:db:bc:34:25:f2:
c2:46:73:96:8c:ce:c8:83:e3:ea:61:a8:7d:7f:6b:
23:52:9f:c8:8c:a5:3c:0f:d8:15:0d:5d:fb:a2:90:
9c:6e:8d:3c:9d:d4:75:91:81:60:82:09:17:63:2c:
40:fa:84:47:0d:34:47:1f:9a:a8:02:64:5c:a4:92:
83:80:3c:cc:b6:3a:5d:1c:bd:5a:f4:66:9d:75:38:
3c:ff:52:e3:34:9c:3f:cc:9c:80:07:ad:dc:08:98:
e2:84:4a:a3:5a:de:d5:35:a9:79:b0:2d:ad:42:b3:
47:f8:c8:be:0d:c1:8c:a4:77:ff:02:a1:7b:ea:d9:
a4:a9:18:69:e9:42:3e:bc:06:8c:be:0f:ea:89:aa:
a0:ea:cf:ab:0e:a8:67:ee:9c:73:60:b0:62:99:6d:
4a:e3:e7:07:01:f2:ff:9c:b8:31:8b:c5:89:ad:43:
af:7c:b0:85:6c:f2:98:45:9e:cb:13:f9:28:06:9d:
08:3d:72:21:a6:79:d8:6d:fc:fe:cc:08:29:6a:cf:
0c:d7:40:e0:61:71:34:6d:3a:e8:c5:d9:1c:5f:2a:
45:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:0B:A6:91:03:EC:7C:BB:F9:96:FC:5D:7B:4B:C3:FB:F2:2B:42:0D
X509v3 Authority Key Identifier:
keyid:AE:83:F7:87:9C:2C:74:A1:16:52:B5:E0:8A:F6:4A:AC:90:80:0B:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/roP3h5wsdKEWUrXgivZKrJCACwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/84d026-17e4-4787-a439-473d74a5e20f/1/CQumkQPsfLv5lvxde0vD-_IrQg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/84d026-17e4-4787-a439-473d74a5e20f/1/roP3h5wsdKEWUrXgivZKrJCACwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.206.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:de:a3:86:f1:86:84:b2:99:83:88:e9:61:87:09:ec:74:df:
fa:f8:25:61:77:38:13:15:e2:68:65:1d:25:45:5f:ed:00:4a:
85:5b:98:48:ef:46:b0:70:3c:a3:32:a3:a5:75:a3:35:0f:bd:
ac:91:3a:f0:ca:0a:a6:54:3d:45:c2:a9:2e:8c:61:07:37:79:
25:40:e9:7a:50:18:24:90:e3:22:6d:a7:d4:bd:30:11:7e:4f:
dc:c7:48:e3:91:63:6d:fd:65:10:9e:e3:4a:c3:5f:b8:fe:33:
7a:3e:3c:08:b4:99:d8:67:34:50:4c:3b:fc:d9:0f:ab:1e:5d:
68:29:2d:3e:18:c8:dc:b1:73:c3:b2:33:1f:7b:28:14:ef:90:
78:50:aa:d3:70:7f:4a:e7:5e:9c:e5:bc:13:5c:68:f1:3f:d8:
00:b4:b1:c9:1a:f0:0a:38:ae:53:25:d3:ee:7e:d7:9b:9b:5c:
b1:52:e5:68:b5:d0:28:40:81:9a:7f:ce:42:45:28:57:a5:50:
4c:b7:ad:be:ae:2d:18:74:9f:ac:58:79:7e:5d:99:d1:5e:5e:
88:9e:d0:4f:31:1a:16:38:49:2c:c2:c9:47:1a:33:d8:e0:25:
83:bf:2e:9e:2c:d7:cc:06:c2:b7:d3:48:23:f1:3a:35:5b:bd:
cd:8c:a7:d9
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVvnfUIG2oLObPEvry0i+2VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlODNmNzg3OWMyYzc0YTExNjUyYjVlMDhhZjY0YWFjOTA4
MDBiMDQwHhcNMjMwMTAxMjMxNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTBiYTY5MTAzZWM3Y2JiZjk5NmZjNWQ3YjRiYzNmYmYyMmI0MjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDDIdlcZeu8EsvIj4v4rZP/uWaYI
h+L70A21IwnEBRb+I73MlRdY27w0JfLCRnOWjM7Ig+PqYah9f2sjUp/IjKU8D9gV
DV37opCcbo08ndR1kYFgggkXYyxA+oRHDTRHH5qoAmRcpJKDgDzMtjpdHL1a9Gad
dTg8/1LjNJw/zJyAB63cCJjihEqjWt7VNal5sC2tQrNH+Mi+DcGMpHf/AqF76tmk
qRhp6UI+vAaMvg/qiaqg6s+rDqhn7pxzYLBimW1K4+cHAfL/nLgxi8WJrUOvfLCF
bPKYRZ7LE/koBp0IPXIhpnnYbfz+zAgpas8M10DgYXE0bTroxdkcXypFYwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFAkLppED7Hy7+Zb8XXtLw/vyK0INMB8GA1UdIwQY
MBaAFK6D94ecLHShFlK14Ir2SqyQgAsEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm9QM2g1d3NkS0VXVXJYZ2l2WktySkNBQ3dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84NGQwMjYtMTdlNC00Nzg3LWE0Mzkt
NDczZDc0YTVlMjBmLzEvQ1F1bWtRUHNmTHY1bHZ4ZGUwdkQtX0lyUWcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC84NGQwMjYtMTdlNC00Nzg3LWE0MzktNDczZDc0YTVlMjBm
LzEvcm9QM2g1d3NkS0VXVXJYZ2l2WktySkNBQ3dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAiM4wDQYJ
KoZIhvcNAQELBQADggEBAHreo4bxhoSymYOI6WGHCex03/r4JWF3OBMV4mhlHSVF
X+0ASoVbmEjvRrBwPKMyo6V1ozUPvayROvDKCqZUPUXCqS6MYQc3eSVA6XpQGCSQ
4yJtp9S9MBF+T9zHSOORY239ZRCe40rDX7j+M3o+PAi0mdhnNFBMO/zZD6seXWgp
LT4YyNyxc8OyMx97KBTvkHhQqtNwf0rnXpzlvBNcaPE/2AC0scka8Ao4rlMl0+5+
15ubXLFS5Wi10ChAgZp/zkJFKFelUEy3rb6uLRh0n6xYeX5dmdFeXoie0E8xGhY4
SSzCyUcaM9jgJYO/Lp4s18wGwrfTSCPxOjVbvc2Mp9k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:53 2024 by rpki-client on console-fra.rpki-client.org