Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/CHNZiyq8LdI4_XAmnDy8o5NVuLw.roa
File: CHNZiyq8LdI4_XAmnDy8o5NVuLw.roa (raw, json)
Hash identifier: fCcH/o3qvrqAMpMUwrfAgCeoS898AnGFmCr8qtarzU4=
Subject key identifier: 08:73:59:8B:2A:BC:2D:D2:38:FD:70:26:9C:3C:BC:A3:93:55:B8:BC
Certificate issuer: /CN=91c10bfde5813ab47c38c5c1904ec26b32c2a095
Certificate serial: 01870C2B7EDBBBF550F5DA80BF89C302EBD1
Authority key identifier: 91:C1:0B:FD:E5:81:3A:B4:7C:38:C5:C1:90:4E:C2:6B:32:C2:A0:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/CHNZiyq8LdI4_XAmnDy8o5NVuLw.roa
Signing time: Thu 23 Mar 2023 01:53:09 +0000
ROA not before: Thu 23 Mar 2023 01:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21073
IP address blocks: 80.85.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 28 Jun 2023 22:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0c:2b:7e:db:bb:f5:50:f5:da:80:bf:89:c3:02:eb:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c10bfde5813ab47c38c5c1904ec26b32c2a095
Validity
Not Before: Mar 23 01:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0873598b2abc2dd238fd70269c3cbca39355b8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:64:32:27:23:ea:9a:a8:76:9b:7d:bf:b4:ed:
59:46:9a:75:5d:b0:b9:d5:27:f7:d5:38:23:11:f8:
73:cc:10:35:f3:d2:a0:5c:c5:0e:99:ee:11:22:5c:
ef:8a:f2:bd:2d:69:dd:30:fb:46:51:3a:e9:b1:a9:
75:95:68:74:60:13:e8:2e:18:d5:3d:2a:0a:4a:9a:
6b:b1:18:ef:03:c7:0c:7a:25:bd:40:ae:23:c2:b0:
90:f2:6c:58:09:a7:48:4a:17:12:2f:78:86:fc:d2:
2b:bb:b2:ae:ff:9c:13:fc:6a:59:ee:d8:9a:01:ec:
08:e6:c3:c1:6b:4c:6d:f1:cf:f9:9c:8f:f8:9f:6f:
d5:ec:eb:23:dc:9a:3f:79:cc:c4:38:4c:dc:0f:9b:
f5:72:cb:ee:50:5b:3d:9a:c1:f4:90:b2:0d:29:25:
fe:50:40:fa:ee:ae:27:ee:5f:8c:b9:ff:ce:80:65:
03:0c:7f:b7:8c:4d:23:4b:26:b3:84:b9:01:0b:bb:
58:90:83:24:54:51:8e:21:1c:d6:6f:39:8d:1f:fa:
48:21:e2:d1:d2:c1:29:65:cc:06:30:f5:fa:d3:4f:
69:8e:c4:ba:88:e2:7a:cd:6d:c9:ac:e9:9d:ac:3b:
15:8c:10:b5:c7:fb:d5:e9:35:2a:36:c7:d7:e7:7e:
d3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:73:59:8B:2A:BC:2D:D2:38:FD:70:26:9C:3C:BC:A3:93:55:B8:BC
X509v3 Authority Key Identifier:
keyid:91:C1:0B:FD:E5:81:3A:B4:7C:38:C5:C1:90:4E:C2:6B:32:C2:A0:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcEL_eWBOrR8OMXBkE7CazLCoJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/CHNZiyq8LdI4_XAmnDy8o5NVuLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/3feb15-6834-43e2-b6e7-04d74f368698/1/kcEL_eWBOrR8OMXBkE7CazLCoJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.32.0/20
Signature Algorithm: sha256WithRSAEncryption
14:3f:51:18:e2:ec:12:e3:9e:50:3f:6d:d1:64:8e:f8:f3:07:
e0:a1:e9:e3:75:e1:bf:24:6c:d3:f7:75:c6:57:d5:cc:40:5a:
07:9d:c9:b0:19:b0:bc:b5:55:3d:12:89:a0:e7:c2:64:9d:d7:
d8:62:6d:a0:63:ef:87:dc:5c:22:a3:1e:f7:51:21:22:b6:fe:
66:43:e0:3f:6a:9b:18:fd:cc:36:e7:86:5d:fa:32:fb:3c:6a:
e8:1b:7c:71:3f:cf:aa:37:6c:56:d6:d2:88:a1:2d:81:74:a7:
48:b7:72:6a:e1:53:22:a1:be:7f:24:25:24:5b:ce:c3:f7:16:
43:b0:e4:93:ea:52:c7:5b:0f:f2:c8:c2:1e:28:56:ba:35:d2:
cc:d4:98:57:0c:98:84:eb:c9:55:04:c3:84:de:c8:91:d0:15:
c7:69:95:12:0f:7d:d7:aa:b9:27:73:26:76:c6:f7:dc:88:99:
64:bb:be:51:4e:01:49:f7:c4:25:97:5d:24:ea:0c:f5:d1:1b:
47:db:2f:b9:e6:51:bc:05:d7:b5:35:36:98:0d:e5:e3:3e:f2:
d0:da:a2:b4:a1:06:22:8d:59:06:ed:d2:f5:a7:56:5e:f7:84:
ac:ff:c7:9e:7f:78:fb:25:68:35:40:ee:dd:ef:21:c5:36:41:
8d:42:88:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcMK37bu/VQ9dqAv4nDAuvRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYzEwYmZkZTU4MTNhYjQ3YzM4YzVjMTkwNGVjMjZiMzJj
MmEwOTUwHhcNMjMwMzIzMDE1MzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODczNTk4YjJhYmMyZGQyMzhmZDcwMjY5YzNjYmNhMzkzNTViOGJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWQyJyPqmqh2m32/tO1ZRpp1XbC5
1Sf31TgjEfhzzBA189KgXMUOme4RIlzvivK9LWndMPtGUTrpsal1lWh0YBPoLhjV
PSoKSpprsRjvA8cMeiW9QK4jwrCQ8mxYCadIShcSL3iG/NIru7Ku/5wT/GpZ7tia
AewI5sPBa0xt8c/5nI/4n2/V7Osj3Jo/eczEOEzcD5v1csvuUFs9msH0kLINKSX+
UED67q4n7l+Muf/OgGUDDH+3jE0jSyazhLkBC7tYkIMkVFGOIRzWbzmNH/pIIeLR
0sEpZcwGMPX6009pjsS6iOJ6zW3JrOmdrDsVjBC1x/vV6TUqNsfX537TDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAhzWYsqvC3SOP1wJpw8vKOTVbi8MB8GA1UdIwQY
MBaAFJHBC/3lgTq0fDjFwZBOwmsywqCVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2NFTF9lV0JPclI4T01YQmtFN0NhekxDb0pVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zZmViMTUtNjgzNC00M2UyLWI2ZTct
MDRkNzRmMzY4Njk4LzEvQ0hOWml5cThMZEk0X1hBbW5EeThvNU5WdUx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8zZmViMTUtNjgzNC00M2UyLWI2ZTctMDRkNzRmMzY4Njk4
LzEva2NFTF9lV0JPclI4T01YQmtFN0NhekxDb0pVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUFUgMA0G
CSqGSIb3DQEBCwUAA4IBAQAUP1EY4uwS455QP23RZI748wfgoenjdeG/JGzT93XG
V9XMQFoHncmwGbC8tVU9Eomg58JkndfYYm2gY++H3Fwiox73USEitv5mQ+A/apsY
/cw254Zd+jL7PGroG3xxP8+qN2xW1tKIoS2BdKdIt3Jq4VMiob5/JCUkW87D9xZD
sOST6lLHWw/yyMIeKFa6NdLM1JhXDJiE68lVBMOE3siR0BXHaZUSD33XqrkncyZ2
xvfciJlku75RTgFJ98Qll10k6gz10RtH2y+55lG8Bde1NTaYDeXjPvLQ2qK0oQYi
jVkG7dL1p1Ze94Ss/8eef3j7JWg1QO7d7yHFNkGNQoiQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:48 2024 by rpki-client on console-fra.rpki-client.org