Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/0RlBXZqoGxOY3oqkisBFyTURndQ.roa
File: 0RlBXZqoGxOY3oqkisBFyTURndQ.roa (raw, json)
Hash identifier: fHcKQf2Cqq2s1x/oyI4ffNQ5rQXqofMk9+ukOjuDhTY=
Subject key identifier: D1:19:41:5D:9A:A8:1B:13:98:DE:8A:A4:8A:C0:45:C9:35:11:9D:D4
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01872F0D21646DE0CBFE49E86C79ABFB1A99
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/0RlBXZqoGxOY3oqkisBFyTURndQ.roa
Signing time: Wed 29 Mar 2023 20:26:42 +0000
ROA not before: Wed 29 Mar 2023 20:26:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209728
IP address blocks: 217.78.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 08:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2f:0d:21:64:6d:e0:cb:fe:49:e8:6c:79:ab:fb:1a:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Mar 29 20:26:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d119415d9aa81b1398de8aa48ac045c935119dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f3:f0:25:0d:2f:44:a0:ff:01:87:85:3b:bb:
f3:6c:da:96:04:90:3d:0a:83:11:72:56:d4:b0:29:
1a:94:74:86:cb:16:ce:03:f1:80:db:b8:f4:e6:c3:
4e:d6:23:e5:b6:15:f4:1f:ad:63:11:c1:2e:d7:ab:
ee:b0:19:97:94:81:54:77:6d:e5:f6:d6:8c:65:d0:
27:65:29:f7:62:19:6b:5f:0b:65:ad:ff:d3:6d:b6:
08:cb:4f:a5:d0:66:73:67:2d:45:b2:31:37:c7:6b:
2c:a8:98:cc:f9:e5:8a:03:a1:e3:f8:6b:34:00:98:
45:25:18:86:c4:d3:f3:3b:ee:97:33:3e:fa:86:32:
12:70:24:78:c7:c1:11:60:53:fe:70:a3:e0:94:8a:
43:6c:0a:91:37:00:a8:56:da:d5:21:0a:16:d8:e5:
73:09:20:6a:4f:80:71:8e:00:76:8c:34:26:fc:f7:
f3:48:80:8e:66:c6:05:79:c2:cf:3c:dd:2b:26:fe:
63:83:1c:2a:3e:b5:ad:aa:a1:83:99:74:0c:ad:c4:
f2:1d:63:e5:a1:cd:b9:82:9f:3f:a7:42:61:b1:b6:
f2:4d:19:56:76:c3:c0:21:ce:47:29:6f:12:1f:ca:
80:17:73:41:68:96:01:f5:c8:7a:36:88:7c:f5:93:
42:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:19:41:5D:9A:A8:1B:13:98:DE:8A:A4:8A:C0:45:C9:35:11:9D:D4
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/0RlBXZqoGxOY3oqkisBFyTURndQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.78.233.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:da:27:d9:51:47:52:42:2b:ce:54:13:a9:f5:32:25:56:e3:
84:18:58:78:47:1b:04:ef:36:58:1d:4d:d9:8e:f9:92:01:69:
bc:fe:bb:2e:95:d5:d2:a9:12:06:d4:c8:6b:20:c3:70:0a:eb:
ed:93:6c:08:56:86:94:d9:29:14:29:28:de:46:ad:04:34:ab:
3d:b5:e4:0e:2a:3e:6d:76:9a:16:9a:65:0a:20:ea:90:8e:49:
0a:96:33:0b:12:4a:33:07:b6:39:5b:ce:08:cd:dd:f6:d3:63:
04:4e:4c:23:22:de:2b:93:89:be:d5:7d:6a:7d:0a:f9:ef:90:
72:90:e5:81:34:03:2a:68:4a:4b:9a:5e:70:01:1f:f1:3a:06:
ac:10:8f:0c:f6:0d:c3:40:dd:2f:20:b4:25:95:33:f4:d8:7d:
af:81:50:2d:39:0a:00:c2:c2:86:a6:0d:7f:07:2d:e1:b7:99:
24:25:2b:d2:3e:1b:f6:c1:46:a8:a4:90:69:d1:29:97:61:d0:
28:c3:96:0f:50:17:f5:97:42:36:63:37:0c:3a:25:0f:fa:e2:
b9:b4:b6:85:46:ca:48:f5:6e:0e:93:3d:92:35:32:c2:7b:88:
25:24:9f:05:30:a1:8d:ed:03:b1:2c:ab:19:86:bc:94:85:ee:
cd:d6:69:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcvDSFkbeDL/knobHmr+xqZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwMzI5MjAyNjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTE5NDE1ZDlhYTgxYjEzOThkZThhYTQ4YWMwNDVjOTM1MTE5ZGQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfPwJQ0vRKD/AYeFO7vzbNqWBJA9
CoMRclbUsCkalHSGyxbOA/GA27j05sNO1iPlthX0H61jEcEu16vusBmXlIFUd23l
9taMZdAnZSn3YhlrXwtlrf/TbbYIy0+l0GZzZy1FsjE3x2ssqJjM+eWKA6Hj+Gs0
AJhFJRiGxNPzO+6XMz76hjIScCR4x8ERYFP+cKPglIpDbAqRNwCoVtrVIQoW2OVz
CSBqT4BxjgB2jDQm/PfzSICOZsYFecLPPN0rJv5jgxwqPrWtqqGDmXQMrcTyHWPl
oc25gp8/p0JhsbbyTRlWdsPAIc5HKW8SH8qAF3NBaJYB9ch6Noh89ZNCkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNEZQV2aqBsTmN6KpIrARck1EZ3UMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvMFJsQlhacW9HeE9ZM29xa2lzQkZ5VFVSbmRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2U7pMA0G
CSqGSIb3DQEBCwUAA4IBAQAf2ifZUUdSQivOVBOp9TIlVuOEGFh4RxsE7zZYHU3Z
jvmSAWm8/rsuldXSqRIG1MhrIMNwCuvtk2wIVoaU2SkUKSjeRq0ENKs9teQOKj5t
dpoWmmUKIOqQjkkKljMLEkozB7Y5W84Izd3202METkwjIt4rk4m+1X1qfQr575By
kOWBNAMqaEpLml5wAR/xOgasEI8M9g3DQN0vILQllTP02H2vgVAtOQoAwsKGpg1/
By3ht5kkJSvSPhv2wUaopJBp0SmXYdAow5YPUBf1l0I2YzcMOiUP+uK5tLaFRspI
9W4Okz2SNTLCe4glJJ8FMKGN7QOxLKsZhryUhe7N1mlz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org