Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hPJWCkbegK32mrAbxaOibcvb660.roa
File: hPJWCkbegK32mrAbxaOibcvb660.roa (raw, json)
Hash identifier: rUjjiGdHgu+nnRa7wUAiX4pJjkqTUpbEFSIFrEoCRLk=
Subject key identifier: 84:F2:56:0A:46:DE:80:AD:F6:9A:B0:1B:C5:A3:A2:6D:CB:DB:EB:AD
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65E09409C214FB87EA4A8420F4E5F
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hPJWCkbegK32mrAbxaOibcvb660.roa
Signing time: Sun 01 Jan 2023 10:35:14 +0000
ROA not before: Sun 01 Jan 2023 10:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51987
IP address blocks: 62.73.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5e:09:40:9c:21:4f:b8:7e:a4:a8:42:0f:4e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84f2560a46de80adf69ab01bc5a3a26dcbdbebad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ed:3e:33:f9:05:81:48:0a:cf:b5:47:a3:2c:
8b:33:0c:e8:c6:e5:b2:88:48:af:f3:28:23:31:b3:
f4:37:cc:79:c9:ec:d9:4e:bd:43:f3:b6:1f:33:b5:
37:44:1d:8a:fa:a0:96:13:8b:cb:6d:e1:cc:d9:f1:
53:2f:9c:e8:bc:81:9f:43:ee:0e:53:ee:c7:b7:6f:
75:88:d3:4a:42:56:08:8f:b8:6f:5b:7a:99:f0:b3:
35:c9:fa:e6:55:89:db:27:b3:4c:ab:bc:73:df:f4:
84:d7:89:e3:e0:32:67:42:a5:f6:4d:4a:9b:6d:73:
ee:4b:5d:60:03:cb:20:40:f9:bd:0c:d7:ea:a1:5a:
7f:f6:65:0e:a0:df:ec:bf:1a:54:ec:e3:9e:6a:61:
f5:ce:9d:90:c9:42:1b:d4:82:11:bb:5e:f6:69:d1:
37:68:8b:41:84:71:40:64:a2:27:fb:81:20:9e:d3:
91:04:b2:a2:0c:3d:45:cf:cc:e5:de:39:d9:30:12:
64:13:ba:00:ff:c3:58:58:51:a1:fe:c2:4b:d9:9d:
f9:2e:dc:15:59:88:a4:5d:d0:81:19:69:4c:97:70:
b5:bd:f4:65:25:86:a8:92:d9:ad:33:86:b7:e8:bc:
b0:df:a4:29:fe:18:1c:ea:2d:b8:2f:e3:b1:6b:bd:
7b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F2:56:0A:46:DE:80:AD:F6:9A:B0:1B:C5:A3:A2:6D:CB:DB:EB:AD
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hPJWCkbegK32mrAbxaOibcvb660.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.73.95.0/24
Signature Algorithm: sha256WithRSAEncryption
19:14:be:76:36:6e:2d:fd:2d:d4:83:87:0f:1e:57:8c:9a:20:
63:05:e1:aa:2d:cb:5e:04:a7:fa:0c:2f:67:f4:6d:51:26:b3:
89:96:b2:46:23:74:10:38:54:2a:3c:af:d5:83:b2:d5:d4:17:
b8:2f:9b:7c:bf:27:d9:54:45:42:67:ba:f9:3f:19:1a:26:dd:
bc:61:12:11:aa:12:1e:c3:30:b0:cd:18:f1:55:36:17:ea:26:
f7:2d:d0:b3:69:4d:e3:59:78:63:f3:69:ad:25:d6:c9:56:91:
48:b9:25:db:51:05:89:c4:13:c1:77:c9:79:2e:56:89:1f:f0:
c1:08:21:bc:e7:49:b1:4b:7e:c3:e6:52:28:59:41:60:3b:d2:
e2:0c:4c:25:d1:a1:8f:ee:9c:87:52:21:48:0e:cc:59:e3:27:
60:95:4f:08:92:07:8c:26:a0:a5:93:b6:1b:f8:4e:8a:9c:41:
fc:02:d6:7d:95:b4:9f:01:ac:0b:ea:28:65:63:22:7c:67:ec:
a7:a1:5c:63:e6:c0:c6:ed:d4:7e:9a:a5:e7:9b:25:b8:11:6a:
93:4e:3f:d4:ca:76:b2:8e:2b:dd:0a:51:48:3a:f5:4b:2a:f7:
a2:16:e5:8a:ca:11:e0:b9:e6:08:a9:9e:58:7c:ca:78:83:b9:
0c:2b:12:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5l4JQJwhT7h+pKhCD05fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NGYyNTYwYTQ2ZGU4MGFkZjY5YWIwMWJjNWEzYTI2ZGNiZGJlYmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmu0+M/kFgUgKz7VHoyyLMwzoxuWy
iEiv8ygjMbP0N8x5yezZTr1D87YfM7U3RB2K+qCWE4vLbeHM2fFTL5zovIGfQ+4O
U+7Ht291iNNKQlYIj7hvW3qZ8LM1yfrmVYnbJ7NMq7xz3/SE14nj4DJnQqX2TUqb
bXPuS11gA8sgQPm9DNfqoVp/9mUOoN/svxpU7OOeamH1zp2QyUIb1IIRu172adE3
aItBhHFAZKIn+4EgntORBLKiDD1Fz8zl3jnZMBJkE7oA/8NYWFGh/sJL2Z35LtwV
WYikXdCBGWlMl3C1vfRlJYaoktmtM4a36Lyw36Qp/hgc6i24L+Oxa717NwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFITyVgpG3oCt9pqwG8Wjom3L2+utMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvaFBKV0NrYmVnSzMybXJBYnhhT2liY3ZiNjYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPklfMA0G
CSqGSIb3DQEBCwUAA4IBAQAZFL52Nm4t/S3Ug4cPHleMmiBjBeGqLcteBKf6DC9n
9G1RJrOJlrJGI3QQOFQqPK/Vg7LV1Be4L5t8vyfZVEVCZ7r5PxkaJt28YRIRqhIe
wzCwzRjxVTYX6ib3LdCzaU3jWXhj82mtJdbJVpFIuSXbUQWJxBPBd8l5LlaJH/DB
CCG850mxS37D5lIoWUFgO9LiDEwl0aGP7pyHUiFIDsxZ4ydglU8IkgeMJqClk7Yb
+E6KnEH8AtZ9lbSfAawL6ihlYyJ8Z+ynoVxj5sDG7dR+mqXnmyW4EWqTTj/Uynay
jivdClFIOvVLKveiFuWKyhHgueYIqZ5YfMp4g7kMKxJh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org