Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/taB_V84-lPi9KxuRBC3GZgPH2tQ.roa
File: taB_V84-lPi9KxuRBC3GZgPH2tQ.roa (raw, json)
Hash identifier: y8yBMe/6cjbAjPwHhps1FeimosF7eP4iAxu3yIJ/Zyc=
Subject key identifier: B5:A0:7F:57:CE:3E:94:F8:BD:2B:1B:91:04:2D:C6:66:03:C7:DA:D4
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018AAE2E14FCD2F889F39DAB8C0D4967E686
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/taB_V84-lPi9KxuRBC3GZgPH2tQ.roa
Signing time: Tue 19 Sep 2023 16:02:50 +0000
ROA not before: Tue 19 Sep 2023 16:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.72.116.0/22 maxlen: 24
89.185.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 20 Sep 2023 06:08:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ae:2e:14:fc:d2:f8:89:f3:9d:ab:8c:0d:49:67:e6:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 19 16:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5a07f57ce3e94f8bd2b1b91042dc66603c7dad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:64:6b:a3:1e:94:f6:6b:53:d6:de:7c:4b:8b:
77:ad:ba:1e:b4:8c:cd:5e:c8:74:84:d0:92:5e:c2:
b1:67:b9:aa:09:5f:54:cb:38:66:47:92:68:36:cb:
2f:30:47:e6:45:d1:70:10:b1:b7:e0:7c:2a:00:a8:
94:1c:5e:c0:32:d9:d7:4d:2e:8d:2f:7d:0a:41:43:
b7:4c:ab:3a:b3:6e:f1:65:18:27:38:5a:b5:9e:c2:
33:e9:8e:1f:1b:f3:20:5f:47:3e:73:41:37:8c:95:
2a:18:55:08:37:63:59:0c:a6:8c:a6:d8:2d:2a:88:
ea:79:c6:cc:27:d8:7f:f8:59:db:f6:e6:da:2b:23:
43:66:50:8a:29:a8:8b:36:d4:85:be:c5:5e:ed:42:
ba:0a:e4:5c:a9:09:63:2a:83:a5:7a:46:e2:0a:21:
9d:ea:be:fa:4f:f4:9c:e6:00:03:34:71:28:8d:28:
2b:cf:d7:dc:0a:6a:6e:c8:0e:7d:4c:71:23:d4:17:
a1:ab:38:e8:9b:46:95:fe:15:76:d5:bf:5d:bb:19:
3f:0b:9d:a2:22:55:07:74:52:bd:dd:d5:67:85:36:
ee:3f:ce:11:61:69:c9:d4:6f:b8:3a:b3:75:6a:62:
ff:7a:31:2a:2a:5a:4a:34:b2:97:c8:d3:e0:3d:05:
2d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A0:7F:57:CE:3E:94:F8:BD:2B:1B:91:04:2D:C6:66:03:C7:DA:D4
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/taB_V84-lPi9KxuRBC3GZgPH2tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.0.0/22
109.72.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:fa:8a:45:4a:ce:a5:c5:d7:8d:07:16:df:71:68:2a:fe:4f:
0c:81:9f:13:f1:cd:09:a8:7d:45:dc:19:74:28:58:f8:05:1a:
33:14:51:a2:bf:18:c7:c7:30:03:b1:cd:f0:80:f8:bb:f1:16:
84:bf:8c:ce:76:a1:d4:08:79:92:57:3b:45:6a:ef:df:49:1a:
8a:45:c8:1e:11:b7:38:8d:d4:b9:50:c1:24:9d:b3:13:3a:0e:
2f:cd:5b:c1:f9:e9:e6:27:eb:8e:6c:da:f3:55:9c:d4:8b:75:
53:cc:b7:e4:9f:29:e6:af:84:8b:d4:32:0a:a7:98:30:92:c7:
3e:d0:54:63:35:75:df:51:83:da:1b:02:3a:55:1f:65:e5:ee:
af:f1:b7:f9:44:f7:94:b9:de:67:b5:8d:b3:e6:03:83:9d:8c:
74:fc:b3:ce:2f:f5:b3:d6:99:0c:71:f8:25:85:73:f6:92:c2:
1a:05:01:89:61:94:c3:a2:eb:8e:45:e8:63:09:5b:76:7f:ba:
6c:2d:aa:51:d0:75:7c:7d:34:be:77:90:98:ae:70:4e:41:e7:
f0:fc:88:14:94:6c:df:6a:72:f2:14:18:66:2d:0f:84:88:80:
23:28:79:c7:6d:f1:df:8c:11:05:47:df:43:3d:e9:ac:3c:54:
b2:af:de:f2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYquLhT80viJ852rjA1JZ+aGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwOTE5MTYwMjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWEwN2Y1N2NlM2U5NGY4YmQyYjFiOTEwNDJkYzY2NjAzYzdkYWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2Rrox6U9mtT1t58S4t3rboetIzN
Xsh0hNCSXsKxZ7mqCV9UyzhmR5JoNssvMEfmRdFwELG34HwqAKiUHF7AMtnXTS6N
L30KQUO3TKs6s27xZRgnOFq1nsIz6Y4fG/MgX0c+c0E3jJUqGFUIN2NZDKaMptgt
KojqecbMJ9h/+Fnb9ubaKyNDZlCKKaiLNtSFvsVe7UK6CuRcqQljKoOlekbiCiGd
6r76T/Sc5gADNHEojSgrz9fcCmpuyA59THEj1Behqzjom0aV/hV21b9duxk/C52i
IlUHdFK93dVnhTbuP84RYWnJ1G+4OrN1amL/ejEqKlpKNLKXyNPgPQUtPwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLWgf1fOPpT4vSsbkQQtxmYDx9rUMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvdGFCX1Y4NC1sUGk5S3h1UkJDM0daZ1BIMnRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCWbkAAwQC
bUh0MA0GCSqGSIb3DQEBCwUAA4IBAQA6+opFSs6lxdeNBxbfcWgq/k8MgZ8T8c0J
qH1F3Bl0KFj4BRozFFGivxjHxzADsc3wgPi78RaEv4zOdqHUCHmSVztFau/fSRqK
RcgeEbc4jdS5UMEknbMTOg4vzVvB+enmJ+uObNrzVZzUi3VTzLfknynmr4SL1DIK
p5gwksc+0FRjNXXfUYPaGwI6VR9l5e6v8bf5RPeUud5ntY2z5gODnYx0/LPOL/Wz
1pkMcfglhXP2ksIaBQGJYZTDouuORehjCVt2f7psLapR0HV8fTS+d5CYrnBOQefw
/IgUlGzfanLyFBhmLQ+EiIAjKHnHbfHfjBEFR99DPemsPFSyr97y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org