Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7QxQWzfpQXTIxdyqfIuwHRbs_9U.roa
File: 7QxQWzfpQXTIxdyqfIuwHRbs_9U.roa (raw, json)
Hash identifier: ZGfi9CRcxMSeTSbW9WrglTSwff1e3LF2V+834VhLYjE=
Subject key identifier: ED:0C:50:5B:37:E9:41:74:C8:C5:DC:AA:7C:8B:B0:1D:16:EC:FF:D5
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE66708D7CD53D18377EBA64B2E2189
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7QxQWzfpQXTIxdyqfIuwHRbs_9U.roa
Signing time: Sun 01 Jan 2023 10:35:17 +0000
ROA not before: Sun 01 Jan 2023 10:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199048
IP address blocks: 62.176.98.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 16 Oct 2023 08:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:67:08:d7:cd:53:d1:83:77:eb:a6:4b:2e:21:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed0c505b37e94174c8c5dcaa7c8bb01d16ecffd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7e:b0:7f:10:9d:62:b2:3b:43:b6:79:de:26:
c8:23:3f:d9:b8:74:fb:00:39:a7:2b:ec:aa:b6:ad:
56:df:22:7b:bf:a6:83:58:4b:c8:b3:23:80:02:c3:
08:15:d0:ca:e5:d5:8b:77:bb:2b:db:2c:de:ca:fd:
09:28:65:be:a7:c4:ef:9d:d3:f2:1f:50:2b:0e:46:
3d:e6:b4:ac:c1:19:e7:01:cb:10:ef:59:17:87:c9:
3f:a1:6c:92:d6:43:6a:8f:40:68:e0:4b:d9:ef:fa:
8b:5a:4a:60:a4:5a:fa:3e:6d:98:21:89:d9:87:b3:
3b:f7:c7:22:30:e7:1b:12:62:b6:57:a2:88:28:80:
c9:f4:3e:09:ec:c8:b2:28:84:1b:08:83:1a:4f:19:
4c:7a:b5:41:6a:07:ab:dd:d4:70:dc:ac:56:87:e6:
a0:e4:7e:14:a1:58:bf:1d:2a:96:70:86:23:2e:6f:
7f:d0:b8:af:0f:84:20:5f:53:01:ec:bd:4f:0d:49:
92:06:77:f8:8d:a5:95:02:3b:da:32:23:a0:9e:7d:
0f:fc:1a:3c:b9:e7:bd:dd:bc:fa:1e:9f:b5:49:f7:
45:f6:de:39:70:61:c0:af:85:12:37:00:e6:b0:e2:
23:24:21:bc:f2:01:a2:28:31:13:ad:ee:e2:6f:6f:
a8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0C:50:5B:37:E9:41:74:C8:C5:DC:AA:7C:8B:B0:1D:16:EC:FF:D5
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/7QxQWzfpQXTIxdyqfIuwHRbs_9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.176.98.0/23
Signature Algorithm: sha256WithRSAEncryption
72:51:f0:af:25:48:46:d3:77:8f:05:26:c2:16:08:0e:32:a2:
97:d1:32:7b:a3:f8:94:b6:d9:90:e8:05:5d:de:7d:de:fe:74:
d0:28:33:3c:3f:3e:c4:10:36:ea:8c:a8:c0:1b:50:35:44:d4:
48:55:1d:bb:56:e5:f3:3a:07:9a:c9:b4:9e:32:05:dd:3b:ba:
4b:ad:03:83:46:2e:b5:50:dd:e0:3b:93:ad:16:1a:a8:df:0a:
35:ac:06:a9:c4:85:c0:db:35:76:ea:42:68:6e:b2:d5:21:c8:
44:6e:a2:5d:83:aa:0f:1e:d6:90:e8:cb:f7:38:41:3c:53:9e:
7c:44:46:33:6a:61:53:b4:70:3f:c5:dc:19:e6:07:16:d3:a3:
3c:c2:b9:57:22:45:a4:bb:9d:cc:40:d8:35:b8:0c:e9:0a:a3:
6b:f8:92:da:f6:35:8f:ba:69:66:20:57:0d:7e:8a:71:82:dc:
b3:b3:1e:43:66:ef:3a:c1:0f:6c:8d:14:54:b4:99:8d:e7:c7:
3b:74:f4:24:19:1b:9d:5a:17:2e:5d:e5:f3:4d:2b:57:25:df:
44:44:29:54:26:27:e6:84:b5:2a:63:02:38:69:9f:db:4a:19:
34:68:1f:f6:aa:24:d8:68:da:7a:b8:9f:28:81:54:74:2a:45:
d3:c5:db:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5mcI181T0YN366ZLLiGJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDBjNTA1YjM3ZTk0MTc0YzhjNWRjYWE3YzhiYjAxZDE2ZWNmZmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjH6wfxCdYrI7Q7Z53ibIIz/ZuHT7
ADmnK+yqtq1W3yJ7v6aDWEvIsyOAAsMIFdDK5dWLd7sr2yzeyv0JKGW+p8TvndPy
H1ArDkY95rSswRnnAcsQ71kXh8k/oWyS1kNqj0Bo4EvZ7/qLWkpgpFr6Pm2YIYnZ
h7M798ciMOcbEmK2V6KIKIDJ9D4J7MiyKIQbCIMaTxlMerVBager3dRw3KxWh+ag
5H4UoVi/HSqWcIYjLm9/0LivD4QgX1MB7L1PDUmSBnf4jaWVAjvaMiOgnn0P/Bo8
uee93bz6Hp+1SfdF9t45cGHAr4USNwDmsOIjJCG88gGiKDETre7ib2+ouwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO0MUFs36UF0yMXcqnyLsB0W7P/VMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvN1F4UVd6ZnBRWFRJeGR5cWZJdXdIUmJzXzlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBPrBiMA0G
CSqGSIb3DQEBCwUAA4IBAQByUfCvJUhG03ePBSbCFggOMqKX0TJ7o/iUttmQ6AVd
3n3e/nTQKDM8Pz7EEDbqjKjAG1A1RNRIVR27VuXzOgeaybSeMgXdO7pLrQODRi61
UN3gO5OtFhqo3wo1rAapxIXA2zV26kJobrLVIchEbqJdg6oPHtaQ6Mv3OEE8U558
REYzamFTtHA/xdwZ5gcW06M8wrlXIkWku53MQNg1uAzpCqNr+JLa9jWPumlmIFcN
fopxgtyzsx5DZu86wQ9sjRRUtJmN58c7dPQkGRudWhcuXeXzTStXJd9ERClUJifm
hLUqYwI4aZ/bShk0aB/2qiTYaNp6uJ8ogVR0KkXTxdtM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org