Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/gH5Q0PvuFm_smnfiDh1X6tSRC3g.roa
File: gH5Q0PvuFm_smnfiDh1X6tSRC3g.roa (raw, json)
Hash identifier: pn9I+I9XcFwazBU/Z1gQIokAl0Q1I9Ly9gsVQE0kuR8=
Subject key identifier: 80:7E:50:D0:FB:EE:16:6F:EC:9A:77:E2:0E:1D:57:EA:D4:91:0B:78
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 018B1D502D867457F9E8DCF70C8E92EF9FA6
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/gH5Q0PvuFm_smnfiDh1X6tSRC3g.roa
Signing time: Wed 11 Oct 2023 05:57:55 +0000
ROA not before: Wed 11 Oct 2023 05:57:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21155
IP address blocks: 87.239.8.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:50:2d:86:74:57:f9:e8:dc:f7:0c:8e:92:ef:9f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Oct 11 05:57:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=807e50d0fbee166fec9a77e20e1d57ead4910b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b4:60:2d:cb:36:a7:f9:47:07:30:57:96:a9:
0e:ac:38:81:32:5a:3d:b4:ef:7c:66:d4:c8:ea:ad:
ba:0d:2e:bb:17:4d:82:82:93:f6:fe:a8:8e:6f:48:
f6:a3:b6:ea:24:db:29:67:d6:78:36:9e:1c:66:0a:
05:13:bb:6f:90:98:10:fe:0e:70:cb:fb:4c:5c:d6:
e4:eb:18:c5:a5:da:38:46:13:7a:29:d4:2e:fa:94:
6f:51:52:f9:4c:07:51:5b:ee:a9:14:ac:4b:b5:15:
75:bf:2f:78:bc:a8:40:aa:8e:80:61:fc:17:4a:3d:
47:01:41:51:43:69:d0:54:ab:a3:e8:d2:3f:09:4e:
7b:51:77:61:ed:13:0e:bd:6e:37:07:40:2e:0c:74:
f5:be:d8:e0:45:17:3a:9c:a3:6f:b8:57:80:c7:6e:
10:b1:8b:cf:ad:d5:38:51:13:6c:0a:3b:2a:a7:91:
4e:cb:b0:cc:2c:16:eb:7d:49:99:37:3e:b6:44:8e:
5e:5a:fc:84:1c:5e:ab:53:33:ae:50:16:ae:e2:3c:
7a:87:d4:dd:30:b7:ae:e8:6d:66:83:24:6c:72:40:
b9:3f:cb:ee:19:6c:77:7e:91:4c:c2:ff:ab:69:77:
04:fd:91:1a:75:ee:ad:1a:d3:c1:24:06:8f:51:2b:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:50:D0:FB:EE:16:6F:EC:9A:77:E2:0E:1D:57:EA:D4:91:0B:78
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/gH5Q0PvuFm_smnfiDh1X6tSRC3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.8.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:86:12:ba:5d:1c:5e:5f:65:8b:f5:1a:0a:8c:c6:6e:29:02:
6a:4a:a3:ef:04:ad:96:b0:c0:14:da:50:d9:e2:38:42:69:b0:
38:90:3a:bd:07:d5:20:8a:b9:64:ef:f5:62:9d:36:79:0c:4e:
d9:7c:47:34:7d:24:3c:97:dd:02:16:1f:d5:88:15:ac:09:8c:
a7:74:d8:63:83:94:8a:c5:57:76:24:2a:4e:9a:91:07:96:27:
13:f9:95:38:87:15:6e:5c:4e:b0:99:43:b7:7b:be:ce:45:d3:
ee:d0:9f:e0:dd:d5:02:90:e7:f1:ce:47:47:c5:d9:8a:ea:94:
0d:91:79:84:b3:c7:e5:51:35:d8:fd:f6:e6:b9:fa:d4:e7:3d:
91:ef:56:da:41:ab:cb:6a:95:61:e5:26:0f:dc:24:ae:89:0e:
b2:50:52:b0:a7:ac:68:75:88:9a:48:b4:d2:34:d0:f4:d5:cb:
de:53:f2:d8:fd:1a:46:00:31:37:25:8e:9f:ce:09:40:6d:7e:
eb:2e:7e:45:e3:fc:d7:3e:5c:cb:86:63:2d:ad:07:a9:a5:9f:
b6:36:69:d6:05:4d:0d:ef:38:88:68:80:b1:6e:00:90:fd:e2:
e4:8c:77:91:f7:22:82:e9:d2:2b:b4:88:16:af:cd:f7:ee:87:
85:d4:2d:76
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYsdUC2GdFf56Nz3DI6S75+mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2
Mzc4YTgwHhcNMjMxMDExMDU1NzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDdlNTBkMGZiZWUxNjZmZWM5YTc3ZTIwZTFkNTdlYWQ0OTEwYjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg7RgLcs2p/lHBzBXlqkOrDiBMlo9
tO98ZtTI6q26DS67F02CgpP2/qiOb0j2o7bqJNspZ9Z4Np4cZgoFE7tvkJgQ/g5w
y/tMXNbk6xjFpdo4RhN6KdQu+pRvUVL5TAdRW+6pFKxLtRV1vy94vKhAqo6AYfwX
Sj1HAUFRQ2nQVKuj6NI/CU57UXdh7RMOvW43B0AuDHT1vtjgRRc6nKNvuFeAx24Q
sYvPrdU4URNsCjsqp5FOy7DMLBbrfUmZNz62RI5eWvyEHF6rUzOuUBau4jx6h9Td
MLeu6G1mgyRsckC5P8vuGWx3fpFMwv+raXcE/ZEade6tGtPBJAaPUSv+NQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIB+UND77hZv7Jp34g4dV+rUkQt4MB8GA1UdIwQY
MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy
LTJhMWNjZTdkMmM2NS8xL2dINVEwUHZ1Rm1fc21uZmlEaDFYNnRTUkMzZy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgyLTJhMWNjZTdkMmM2
NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANX7wgw
DQYJKoZIhvcNAQELBQADggEBAJ2GErpdHF5fZYv1GgqMxm4pAmpKo+8ErZawwBTa
UNniOEJpsDiQOr0H1SCKuWTv9WKdNnkMTtl8RzR9JDyX3QIWH9WIFawJjKd02GOD
lIrFV3YkKk6akQeWJxP5lTiHFW5cTrCZQ7d7vs5F0+7Qn+Dd1QKQ5/HOR0fF2Yrq
lA2ReYSzx+VRNdj99ua5+tTnPZHvVtpBq8tqlWHlJg/cJK6JDrJQUrCnrGh1iJpI
tNI00PTVy95T8tj9GkYAMTcljp/OCUBtfusufkXj/Nc+XMuGYy2tB6mln7Y2adYF
TQ3vOIhogLFuAJD94uSMd5H3IoLp0iu0iBavzffuh4XULXY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org