Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0ijYWeXJpBV6DDv0hss5vYjdRBo.roa
File: 0ijYWeXJpBV6DDv0hss5vYjdRBo.roa (raw, json)
Hash identifier: E9QeCBKAKCbv3kz3xGLyKZDJ8/U3kUlatK8u60Ug3rQ=
Subject key identifier: D2:28:D8:59:E5:C9:A4:15:7A:0C:3B:F4:86:CB:39:BD:88:DD:44:1A
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE64DFB5FA4992E3AF06C20F66D4325
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0ijYWeXJpBV6DDv0hss5vYjdRBo.roa
Signing time: Sun 01 Jan 2023 10:35:10 +0000
ROA not before: Sun 01 Jan 2023 10:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24693
IP address blocks: 213.16.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:4d:fb:5f:a4:99:2e:3a:f0:6c:20:f6:6d:43:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d228d859e5c9a4157a0c3bf486cb39bd88dd441a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f6:bd:7d:16:38:6e:ff:a8:03:14:b2:55:01:
09:a9:7f:4a:86:13:c6:66:85:e3:96:ff:a1:31:a3:
47:9b:7d:46:25:7f:cb:64:ea:bd:4d:28:fa:5d:8e:
16:b4:dc:1c:39:b4:9e:ac:32:50:e2:17:d9:aa:b4:
6c:ef:17:63:99:87:74:78:88:5d:11:91:4e:b0:cf:
7c:4d:0d:92:ba:f0:43:18:27:97:16:63:f9:62:77:
46:fc:2f:b9:15:01:12:ed:4d:30:93:ec:0c:62:b7:
a0:2b:db:38:b6:3d:9b:c2:67:e9:51:7c:87:7b:a7:
ce:98:d7:ae:99:95:b0:f8:4e:ae:82:8b:b5:ed:5f:
c9:88:8d:5f:2b:a5:2a:80:aa:d2:19:24:cc:32:a8:
de:40:8e:95:0d:ce:1c:05:27:50:1c:bf:de:44:5f:
e3:dd:d6:20:28:a4:c4:b6:10:78:d5:83:90:11:f9:
0b:00:b2:0c:9f:b0:5b:e0:41:01:40:f6:8c:2f:f8:
22:02:c6:f2:3f:20:cd:8e:15:88:e2:61:c9:5f:a8:
b3:8f:12:8d:16:70:fe:4c:e0:ce:50:b1:57:2d:81:
c6:ca:77:ac:4a:e4:eb:61:6a:4d:42:a3:de:2d:0c:
99:3c:d8:b9:f4:60:97:34:b5:4e:8a:f6:7c:a0:87:
e4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:28:D8:59:E5:C9:A4:15:7A:0C:3B:F4:86:CB:39:BD:88:DD:44:1A
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/0ijYWeXJpBV6DDv0hss5vYjdRBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.16.36.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a2:b0:60:7e:ce:43:ab:49:39:5d:70:e2:3d:f8:21:c5:0e:
94:0c:9c:59:48:49:2d:9b:d4:3f:1e:d7:52:81:25:8e:65:66:
56:eb:99:79:e9:03:21:f1:6d:ca:92:56:ab:ea:73:be:83:ce:
62:3f:ea:3e:22:94:14:61:e9:d6:c8:8f:d5:ef:ca:e0:e6:3c:
8d:40:9a:e7:6c:75:aa:86:ce:06:61:73:b1:7e:2e:dc:e9:ba:
a2:79:ad:20:19:e4:38:60:96:0f:a2:4b:f0:47:d3:5f:38:3a:
9a:2e:b0:0c:2d:b5:88:3d:ea:c6:db:4b:7a:a9:9f:ba:53:80:
aa:2f:98:6c:41:5d:46:a3:49:b8:10:e0:4f:3d:04:b8:c6:90:
20:51:d9:3a:40:f3:12:8f:8d:f8:42:dd:12:bc:1c:42:10:5b:
63:4a:32:ef:32:d5:65:01:ad:9c:86:92:c1:cb:7a:ab:b0:9c:
12:91:c8:f7:25:66:90:ad:60:73:78:27:80:96:ff:ab:e0:87:
79:9e:fd:f9:29:e5:9b:8c:b3:45:ac:ca:61:1d:9a:8a:35:be:
85:86:ae:80:6d:9f:79:a7:bc:fe:27:fb:f6:25:36:e2:5f:d2:
a9:0b:18:c6:c2:85:46:22:98:38:61:73:29:9a:0d:a8:41:a9:
25:9b:58:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5k37X6SZLjrwbCD2bUMlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjI4ZDg1OWU1YzlhNDE1N2EwYzNiZjQ4NmNiMzliZDg4ZGQ0NDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/a9fRY4bv+oAxSyVQEJqX9KhhPG
ZoXjlv+hMaNHm31GJX/LZOq9TSj6XY4WtNwcObSerDJQ4hfZqrRs7xdjmYd0eIhd
EZFOsM98TQ2SuvBDGCeXFmP5YndG/C+5FQES7U0wk+wMYregK9s4tj2bwmfpUXyH
e6fOmNeumZWw+E6ugou17V/JiI1fK6UqgKrSGSTMMqjeQI6VDc4cBSdQHL/eRF/j
3dYgKKTEthB41YOQEfkLALIMn7Bb4EEBQPaML/giAsbyPyDNjhWI4mHJX6izjxKN
FnD+TODOULFXLYHGynesSuTrYWpNQqPeLQyZPNi59GCXNLVOivZ8oIfkmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNIo2FnlyaQVegw79IbLOb2I3UQaMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvMGlqWVdlWEpwQlY2RER2MGhzczV2WWpkUkJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1RAkMA0G
CSqGSIb3DQEBCwUAA4IBAQAhorBgfs5Dq0k5XXDiPfghxQ6UDJxZSEktm9Q/HtdS
gSWOZWZW65l56QMh8W3Kklar6nO+g85iP+o+IpQUYenWyI/V78rg5jyNQJrnbHWq
hs4GYXOxfi7c6bqiea0gGeQ4YJYPokvwR9NfODqaLrAMLbWIPerG20t6qZ+6U4Cq
L5hsQV1Go0m4EOBPPQS4xpAgUdk6QPMSj434Qt0SvBxCEFtjSjLvMtVlAa2chpLB
y3qrsJwSkcj3JWaQrWBzeCeAlv+r4Id5nv35KeWbjLNFrMphHZqKNb6Fhq6AbZ95
p7z+J/v2JTbiX9KpCxjGwoVGIpg4YXMpmg2oQaklm1je
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org