Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/j7_T3Gcw35gK2JXdb7iycKdWut8.roa
File: j7_T3Gcw35gK2JXdb7iycKdWut8.roa (raw, json)
Hash identifier: 6AZ2UHDhrtNx0CxDnkN5MlDa6D3mhn80J4DAJEgx6kk=
Subject key identifier: 8F:BF:D3:DC:67:30:DF:98:0A:D8:95:DD:6F:B8:B2:70:A7:56:BA:DF
Certificate issuer: /CN=86d542323c0e3051c9c7bb8ed1d1e8acfd3db834
Certificate serial: 01856FF959B2864A49454C0554CD37355288
Authority key identifier: 86:D5:42:32:3C:0E:30:51:C9:C7:BB:8E:D1:D1:E8:AC:FD:3D:B8:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htVCMjwOMFHJx7uO0dHorP09uDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/j7_T3Gcw35gK2JXdb7iycKdWut8.roa
Signing time: Mon 02 Jan 2023 00:54:50 +0000
ROA not before: Mon 02 Jan 2023 00:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16175
IP address blocks: 80.89.32.0/19 maxlen: 19
2a00:e08::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 26 Jan 2023 11:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:59:b2:86:4a:49:45:4c:05:54:cd:37:35:52:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d542323c0e3051c9c7bb8ed1d1e8acfd3db834
Validity
Not Before: Jan 2 00:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fbfd3dc6730df980ad895dd6fb8b270a756badf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:81:e7:68:71:5d:ee:dc:7c:d7:79:90:60:de:
76:de:30:93:d0:41:2f:50:a3:22:ed:74:0a:4f:b8:
24:ed:ea:14:47:33:6e:38:72:d8:50:14:43:b3:f5:
21:3d:be:12:9d:ed:ca:66:0a:d5:88:a6:d3:5e:67:
f3:0e:84:af:48:ac:eb:0e:24:dd:41:8e:9b:3e:4a:
47:29:02:69:86:9c:af:40:bb:7c:55:16:d7:9e:cb:
3e:01:d9:1e:24:56:81:51:56:65:06:3a:16:75:5b:
95:6c:65:31:d7:20:94:cc:ea:52:e3:35:c1:ce:f4:
80:bc:bc:f3:df:f6:ff:62:b9:45:24:02:5e:63:65:
30:a4:4f:41:f5:fc:4f:6c:a3:1c:d7:d2:31:ba:65:
b0:57:33:4b:0b:7f:9d:c5:32:38:50:22:5e:34:7a:
d6:84:14:91:55:36:ca:bd:66:a9:f8:cb:b3:a3:2e:
0f:af:a5:67:16:28:7e:0c:9a:19:00:d7:0a:d1:97:
1d:c3:cf:a9:95:1b:e9:0f:25:9a:7b:13:d1:40:37:
f8:95:7f:18:b2:af:54:ec:44:40:f0:9d:31:36:ee:
ea:a1:be:c8:65:29:83:f4:0d:22:e8:6c:21:53:ae:
d6:a3:64:b2:33:8f:86:ba:6a:6f:ea:d5:45:51:ae:
5c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BF:D3:DC:67:30:DF:98:0A:D8:95:DD:6F:B8:B2:70:A7:56:BA:DF
X509v3 Authority Key Identifier:
keyid:86:D5:42:32:3C:0E:30:51:C9:C7:BB:8E:D1:D1:E8:AC:FD:3D:B8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htVCMjwOMFHJx7uO0dHorP09uDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/j7_T3Gcw35gK2JXdb7iycKdWut8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a7c7c1-fc42-43a3-9ad8-70dad51e73fb/1/htVCMjwOMFHJx7uO0dHorP09uDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.32.0/19
IPv6:
2a00:e08::/32
Signature Algorithm: sha256WithRSAEncryption
51:40:ce:11:0c:94:4f:fd:45:79:e5:0c:05:75:3d:34:95:a4:
00:9f:e0:9c:9e:c4:09:1e:69:ff:d7:fa:5e:ec:79:43:8f:52:
3f:22:4f:e8:8b:94:bf:e2:a2:28:79:84:cc:e8:4f:6c:28:22:
e0:11:36:81:b0:91:8f:a3:ca:ad:b2:ef:00:96:ce:b3:11:8d:
f2:2b:a6:ca:c6:05:b7:a4:9e:e6:08:75:34:40:7f:fa:a6:63:
9b:58:2e:2c:fd:ea:fe:08:78:5f:f5:b4:35:31:f4:df:0d:0f:
a6:df:e4:60:05:c6:12:db:8d:75:26:28:41:33:34:54:5b:dc:
e6:2b:f6:3c:37:ca:cb:7b:b2:2b:7a:4b:0d:6c:17:d3:45:e7:
30:cb:93:8d:45:cf:9f:19:a7:29:82:73:83:15:1c:ad:d6:5c:
6e:9d:f5:11:15:b0:a7:57:f8:b6:b5:a0:70:5c:e0:a5:4d:64:
e0:a7:49:8f:6f:82:07:06:bd:fe:57:56:57:89:c7:1c:61:a6:
d8:b7:c7:81:ce:7c:a0:b9:13:b2:00:76:f9:95:4e:75:70:8b:
db:63:d5:42:43:a6:77:ca:a8:f4:61:89:a0:b0:64:6f:d6:4a:
a1:8d:83:e3:aa:ec:2f:d0:64:d8:c6:9d:33:7b:41:d4:07:ef:
0e:cb:d6:5b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVv+VmyhkpJRUwFVM03NVKIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDU0MjMyM2MwZTMwNTFjOWM3YmI4ZWQxZDFlOGFjZmQz
ZGI4MzQwHhcNMjMwMTAyMDA1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZmJmZDNkYzY3MzBkZjk4MGFkODk1ZGQ2ZmI4YjI3MGE3NTZiYWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4HnaHFd7tx813mQYN523jCT0EEv
UKMi7XQKT7gk7eoURzNuOHLYUBRDs/UhPb4Sne3KZgrViKbTXmfzDoSvSKzrDiTd
QY6bPkpHKQJphpyvQLt8VRbXnss+AdkeJFaBUVZlBjoWdVuVbGUx1yCUzOpS4zXB
zvSAvLzz3/b/YrlFJAJeY2UwpE9B9fxPbKMc19IxumWwVzNLC3+dxTI4UCJeNHrW
hBSRVTbKvWap+Muzoy4Pr6VnFih+DJoZANcK0Zcdw8+plRvpDyWaexPRQDf4lX8Y
sq9U7ERA8J0xNu7qob7IZSmD9A0i6GwhU67Wo2SyM4+Gumpv6tVFUa5cxwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFI+/09xnMN+YCtiV3W+4snCnVrrfMB8GA1UdIwQY
MBaAFIbVQjI8DjBRyce7jtHR6Kz9Pbg0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRWQ01qd09NRkhKeDd1TzBkSG9yUDA5dURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hN2M3YzEtZmM0Mi00M2EzLTlhZDgt
NzBkYWQ1MWU3M2ZiLzEvajdfVDNHY3czNWdLMkpYZGI3aXljS2RXdXQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hN2M3YzEtZmM0Mi00M2EzLTlhZDgtNzBkYWQ1MWU3M2Zi
LzEvaHRWQ01qd09NRkhKeDd1TzBkSG9yUDA5dURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFUFkgMA0E
AgACMAcDBQAqAA4IMA0GCSqGSIb3DQEBCwUAA4IBAQBRQM4RDJRP/UV55QwFdT00
laQAn+CcnsQJHmn/1/pe7HlDj1I/Ik/oi5S/4qIoeYTM6E9sKCLgETaBsJGPo8qt
su8Als6zEY3yK6bKxgW3pJ7mCHU0QH/6pmObWC4s/er+CHhf9bQ1MfTfDQ+m3+Rg
BcYS2411JihBMzRUW9zmK/Y8N8rLe7IreksNbBfTRecwy5ONRc+fGacpgnODFRyt
1lxunfURFbCnV/i2taBwXOClTWTgp0mPb4IHBr3+V1ZXicccYabYt8eBznyguROy
AHb5lU51cIvbY9VCQ6Z3yqj0YYmgsGRv1kqhjYPjquwv0GTYxp0ze0HUB+8Oy9Zb
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:09 2024 by rpki-client on console-fra.rpki-client.org