Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/RK528wlDyv9FgB031FaqcLUj5b0.roa
File: RK528wlDyv9FgB031FaqcLUj5b0.roa (raw, json)
Hash identifier: 21Dm3WP+TGBZGIRMnujWq4WwxS5h6m5XcDer/UI2bqQ=
Subject key identifier: 44:AE:76:F3:09:43:CA:FF:45:80:1D:37:D4:56:AA:70:B5:23:E5:BD
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 0186EFEE277815378F2883A54B9BA7AF604E
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/RK528wlDyv9FgB031FaqcLUj5b0.roa
Signing time: Fri 17 Mar 2023 14:16:47 +0000
ROA not before: Fri 17 Mar 2023 14:16:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 194.247.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:ee:27:78:15:37:8f:28:83:a5:4b:9b:a7:af:60:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Mar 17 14:16:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44ae76f30943caff45801d37d456aa70b523e5bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:20:6a:d6:8f:be:5d:1b:77:12:70:3e:36:b8:
dc:35:d5:a8:9e:c1:a8:9a:31:c0:df:6c:a5:09:57:
8f:e8:f8:2a:25:8c:6f:2c:52:79:86:d7:43:81:93:
e0:1c:17:b8:a6:1b:9c:8f:ba:d8:7e:5e:66:28:31:
b4:bb:eb:2d:59:f2:f8:e0:7d:42:95:0d:b5:04:bb:
f2:53:60:cc:69:87:cf:79:1f:01:34:6f:77:46:5e:
cc:c9:aa:21:ba:6d:e6:b6:86:d8:03:02:cb:2b:90:
45:b3:55:49:a5:87:b7:df:c8:e4:67:dc:b3:24:53:
49:1a:d4:57:43:dc:a2:c1:13:46:e9:f7:bf:ab:76:
dd:9a:b1:3d:dc:cb:09:6a:d8:82:cb:89:1a:a7:c3:
92:48:d7:d2:87:6e:ec:95:73:b4:f0:3e:61:65:c9:
12:61:b0:87:1a:b1:fc:39:d9:df:eb:ff:60:fd:43:
18:6b:3e:9a:86:3b:af:47:ff:66:dd:2d:5b:54:e9:
fa:24:a3:15:6c:9e:56:11:91:ce:fd:60:4f:bf:87:
cb:fe:f7:2f:e0:13:68:8e:c1:fc:b1:de:ab:38:d5:
48:b1:a1:df:a6:95:bd:d9:7c:3a:a4:5e:4e:b1:8d:
db:b7:6c:37:c5:7d:3c:91:d5:c7:ba:db:63:f9:87:
7f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AE:76:F3:09:43:CA:FF:45:80:1D:37:D4:56:AA:70:B5:23:E5:BD
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/RK528wlDyv9FgB031FaqcLUj5b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.34.0/24
Signature Algorithm: sha256WithRSAEncryption
90:1e:85:93:e8:c0:e4:15:71:43:6d:cc:34:7e:5d:9f:79:16:
f3:33:88:4f:5b:e6:e1:7f:ff:50:c6:37:80:93:05:ea:dd:de:
5c:28:3b:bf:56:b1:45:ce:55:45:2b:bf:a2:2e:79:5b:fc:d5:
c9:24:c2:6c:f5:fd:e0:8e:06:62:bd:5b:8c:74:da:04:63:29:
67:10:d3:9d:5b:cc:9c:dd:a2:66:94:1c:30:0d:c9:ba:7a:df:
0d:de:d5:b9:32:eb:dd:aa:6c:57:e9:77:8f:e1:34:a0:b4:bf:
16:12:89:bb:ce:01:ad:1c:90:c8:8b:a4:c8:fc:93:1b:82:92:
ab:62:d0:35:8d:a6:d3:e5:68:84:ea:59:e2:b7:d3:a0:7c:cb:
2b:72:4c:87:f9:7e:34:0e:6c:d0:2b:a8:72:dd:f4:e3:41:16:
d6:3e:19:6a:92:5a:08:2a:21:74:10:c7:f9:55:ac:5d:d4:d9:
56:f7:84:b7:a7:05:95:ab:23:03:ef:5d:c4:63:af:e5:13:32:
b3:83:6e:5e:86:8a:ca:7e:11:37:c6:66:57:59:a9:49:26:8e:
1a:10:f0:28:f8:2b:d4:0a:93:b2:8a:ba:cb:2c:7b:6c:d7:89:
b5:e1:42:2e:ad:34:8a:ed:d6:ea:15:a9:98:dd:92:13:92:d2:
2a:7c:47:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbv7id4FTePKIOlS5unr2BOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl
MmE2MDMwHhcNMjMwMzE3MTQxNjQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGFlNzZmMzA5NDNjYWZmNDU4MDFkMzdkNDU2YWE3MGI1MjNlNWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliBq1o++XRt3EnA+NrjcNdWonsGo
mjHA32ylCVeP6PgqJYxvLFJ5htdDgZPgHBe4phucj7rYfl5mKDG0u+stWfL44H1C
lQ21BLvyU2DMaYfPeR8BNG93Rl7Myaohum3mtobYAwLLK5BFs1VJpYe338jkZ9yz
JFNJGtRXQ9yiwRNG6fe/q3bdmrE93MsJatiCy4kap8OSSNfSh27slXO08D5hZckS
YbCHGrH8Odnf6/9g/UMYaz6ahjuvR/9m3S1bVOn6JKMVbJ5WEZHO/WBPv4fL/vcv
4BNojsH8sd6rONVIsaHfppW92Xw6pF5OsY3bt2w3xX08kdXHuttj+Yd/UQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFESudvMJQ8r/RYAdN9RWqnC1I+W9MB8GA1UdIwQY
MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt
MjRmMjBmOTY3NWVjLzEvUks1Mjh3bER5djlGZ0IwMzFGYXFjTFVqNWIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj
LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwvciMA0G
CSqGSIb3DQEBCwUAA4IBAQCQHoWT6MDkFXFDbcw0fl2feRbzM4hPW+bhf/9QxjeA
kwXq3d5cKDu/VrFFzlVFK7+iLnlb/NXJJMJs9f3gjgZivVuMdNoEYylnENOdW8yc
3aJmlBwwDcm6et8N3tW5MuvdqmxX6XeP4TSgtL8WEom7zgGtHJDIi6TI/JMbgpKr
YtA1jabT5WiE6lnit9OgfMsrckyH+X40DmzQK6hy3fTjQRbWPhlqkloIKiF0EMf5
Vaxd1NlW94S3pwWVqyMD713EY6/lEzKzg25ehorKfhE3xmZXWalJJo4aEPAo+CvU
CpOyirrLLHts14m14UIurTSK7dbqFamY3ZITktIqfEe+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:18 2024 by rpki-client on console-fra.rpki-client.org