Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/Hd7-gY_PskRh6kM08jL8824Nr54.roa
File: Hd7-gY_PskRh6kM08jL8824Nr54.roa (raw, json)
Hash identifier: vIIuKLEr/Vj/pSsSlSWUkRFz/1uq3ljgzI+cFjod2zA=
Subject key identifier: 1D:DE:FE:81:8F:CF:B2:44:61:EA:43:34:F2:32:FC:F3:6E:0D:AF:9E
Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4
Certificate serial: 0185C2356EA0B5BCA5B911D1CBE21707F753
Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/Hd7-gY_PskRh6kM08jL8824Nr54.roa
Signing time: Wed 18 Jan 2023 00:09:19 +0000
ROA not before: Wed 18 Jan 2023 00:09:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9050
IP address blocks: 89.39.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c2:35:6e:a0:b5:bc:a5:b9:11:d1:cb:e2:17:07:f7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4
Validity
Not Before: Jan 18 00:09:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ddefe818fcfb24461ea4334f232fcf36e0daf9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8f:7d:de:6a:ca:9f:43:df:97:ff:8f:0e:1f:
fd:1d:ec:68:38:0d:7b:e9:d2:d4:96:38:be:20:c2:
c1:91:82:30:57:4d:4b:c1:7d:aa:8a:52:43:4e:68:
75:c1:65:b5:91:ef:61:1a:78:53:c1:13:bc:42:67:
d6:68:b6:b6:32:fc:fb:d7:1a:f6:43:44:dc:b1:12:
dd:9a:b3:47:e5:cb:ec:02:d2:79:af:64:0d:b5:67:
ab:d7:5a:23:6c:37:72:b4:e7:f0:ba:a3:9b:f3:8d:
dd:70:f8:36:26:de:e7:c2:fc:14:df:c9:34:74:ff:
06:ca:8a:bc:d9:7f:2d:f9:85:42:ba:00:e1:77:b8:
8a:5e:ca:ef:39:a3:48:1b:54:30:b7:6e:ee:a9:fe:
9a:ce:8b:f3:36:a2:f5:f3:42:e5:f1:dd:1d:56:65:
71:6f:cc:ce:e2:e4:55:e2:96:d4:ed:16:85:dc:8e:
ef:a0:ae:bc:08:7d:0d:05:5e:50:1e:c2:44:c7:7e:
b8:c3:14:f3:98:f9:5a:08:6b:2b:2f:96:38:48:c3:
d9:b1:c3:5d:db:dc:80:54:53:07:f6:b7:26:39:99:
9c:ce:87:e4:de:39:f6:5d:71:28:61:c3:7b:1b:87:
e2:27:e5:e9:a5:f2:b9:ad:2d:8b:f0:ee:4c:bc:ff:
b4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:DE:FE:81:8F:CF:B2:44:61:EA:43:34:F2:32:FC:F3:6E:0D:AF:9E
X509v3 Authority Key Identifier:
keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/Hd7-gY_PskRh6kM08jL8824Nr54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.39.67.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1e:38:69:dd:e4:17:44:75:3e:e8:16:cc:3e:b1:c0:3e:23:
d2:cb:ec:96:3a:2b:20:3f:1c:3d:9e:5a:bf:f0:d9:27:14:cd:
70:64:f2:39:e5:b7:a8:e7:dd:80:e6:e4:82:83:68:fa:55:c6:
c7:c4:ac:fd:f8:7e:71:ff:e0:c7:3b:1b:47:28:f0:9a:e6:57:
bd:60:b5:44:b3:9f:1a:bb:fb:6f:66:04:a9:a1:be:11:52:51:
be:bc:5b:8c:ba:c7:ce:8c:81:38:2c:40:1b:66:f2:52:a4:4e:
0e:f0:0d:25:df:09:4f:2b:7e:75:14:a8:c9:16:cc:e0:2e:ee:
f0:75:fe:3b:00:75:5f:cc:a3:7b:ba:66:10:a5:91:17:3a:60:
bb:8f:6b:50:60:a3:cb:d6:5b:4e:56:4b:97:01:c5:19:3b:d6:
b6:ae:8b:ca:0d:e1:2a:fa:19:74:9a:76:c4:96:8a:79:8e:72:
dd:73:55:30:e6:1e:b8:39:17:6e:06:f2:ef:3d:83:95:e2:09:
9d:a7:fe:33:ef:96:e3:40:d0:fc:58:cc:a9:d3:c7:eb:0c:1a:
63:23:b9:62:42:e9:04:3f:00:38:c2:36:ea:04:c9:92:5a:8a:
4e:89:db:86:8c:d8:81:17:f0:e7:38:1f:a3:bc:43:48:6f:71:
b6:dc:89:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXCNW6gtbyluRHRy+IXB/dTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MWExNGNlOWQyNTIzOWI5MmZlNWFiY2U1MzI1MTUwNDRj
MWFiYTQwHhcNMjMwMTE4MDAwOTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGRlZmU4MThmY2ZiMjQ0NjFlYTQzMzRmMjMyZmNmMzZlMGRhZjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4993mrKn0Pfl/+PDh/9HexoOA17
6dLUlji+IMLBkYIwV01LwX2qilJDTmh1wWW1ke9hGnhTwRO8QmfWaLa2Mvz71xr2
Q0TcsRLdmrNH5cvsAtJ5r2QNtWer11ojbDdytOfwuqOb843dcPg2Jt7nwvwU38k0
dP8Gyoq82X8t+YVCugDhd7iKXsrvOaNIG1Qwt27uqf6azovzNqL180Ll8d0dVmVx
b8zO4uRV4pbU7RaF3I7voK68CH0NBV5QHsJEx364wxTzmPlaCGsrL5Y4SMPZscNd
29yAVFMH9rcmOZmczofk3jn2XXEoYcN7G4fiJ+XppfK5rS2L8O5MvP+0BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB3e/oGPz7JEYepDNPIy/PNuDa+eMB8GA1UdIwQY
MBaAFDUaFM6dJSObkv5avOUyUVBEwaukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEt
Mjk1Mzg5NGIxZjZkLzEvSGQ3LWdZX1Bza1JoNmtNMDhqTDg4MjROcjU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEtMjk1Mzg5NGIxZjZk
LzEvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSdDMA0G
CSqGSIb3DQEBCwUAA4IBAQCMHjhp3eQXRHU+6BbMPrHAPiPSy+yWOisgPxw9nlq/
8NknFM1wZPI55beo592A5uSCg2j6VcbHxKz9+H5x/+DHOxtHKPCa5le9YLVEs58a
u/tvZgSpob4RUlG+vFuMusfOjIE4LEAbZvJSpE4O8A0l3wlPK351FKjJFszgLu7w
df47AHVfzKN7umYQpZEXOmC7j2tQYKPL1ltOVkuXAcUZO9a2rovKDeEq+hl0mnbE
lop5jnLdc1Uw5h64ORduBvLvPYOV4gmdp/4z75bjQND8WMyp08frDBpjI7liQukE
PwA4wjbqBMmSWopOiduGjNiBF/DnOB+jvENIb3G23Im/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:27 2024 by rpki-client on console-fra.rpki-client.org