Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/d7ym_EeS3c5BDoD0znPJK7dWkXY.roa
File: d7ym_EeS3c5BDoD0znPJK7dWkXY.roa (raw, json)
Hash identifier: dr6rhaOPePRviVzIRTNNi4L/xBG3UVRes4iMQpHLH5c=
Subject key identifier: 77:BC:A6:FC:47:92:DD:CE:41:0E:80:F4:CE:73:C9:2B:B7:56:91:76
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01875257BF3E51A947FE7B08030D4891EE36
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/d7ym_EeS3c5BDoD0znPJK7dWkXY.roa
Signing time: Wed 05 Apr 2023 16:54:54 +0000
ROA not before: Wed 05 Apr 2023 16:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210352
IP address blocks: 194.87.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:57:bf:3e:51:a9:47:fe:7b:08:03:0d:48:91:ee:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 5 16:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77bca6fc4792ddce410e80f4ce73c92bb7569176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:9d:79:61:31:be:f3:a2:50:d0:2a:6d:72:
43:9a:7f:34:38:54:67:aa:ed:da:6b:b6:c9:25:22:
d6:16:ea:88:4c:d7:8d:65:2b:ab:e3:24:b1:da:f2:
79:c1:64:2a:18:e2:e0:41:1f:02:ca:b5:2d:9e:ea:
b2:ce:e6:56:58:5e:ef:b6:50:39:b0:c8:23:5e:d7:
ce:05:87:ea:fe:7d:0e:c8:5d:fb:b6:b5:e2:68:7b:
41:ec:d9:d1:f9:f9:ab:09:0e:91:41:e8:2d:d1:19:
08:46:d4:13:2e:f9:a6:72:2f:55:20:6d:d3:45:f2:
3c:27:f3:d3:76:4c:22:a1:ea:84:9d:f3:f3:27:e9:
1c:00:08:8a:87:bc:da:cf:41:c0:a5:16:f8:d8:bd:
74:12:e1:dd:a3:5d:b5:8f:f7:04:12:2a:0d:15:85:
ac:91:75:62:db:20:7e:f5:f5:58:eb:ae:a4:3b:39:
98:41:d4:5e:b6:78:98:11:94:d1:99:25:ee:c6:80:
bf:79:98:6a:3f:02:60:cc:ee:05:c3:40:c8:a4:05:
3a:e7:f5:ce:51:1f:af:4e:e1:03:a7:6d:d4:67:55:
7d:b7:e2:36:09:49:c9:78:fa:d3:70:c6:36:ab:2c:
cf:20:32:c4:5d:99:dc:df:46:a2:8a:fd:fd:16:72:
c1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BC:A6:FC:47:92:DD:CE:41:0E:80:F4:CE:73:C9:2B:B7:56:91:76
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/d7ym_EeS3c5BDoD0znPJK7dWkXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.71.0/24
Signature Algorithm: sha256WithRSAEncryption
13:98:81:13:84:f7:b4:f8:49:2e:b3:20:86:45:6f:e4:25:65:
fc:4c:63:41:f3:ac:69:f2:ad:e3:03:0b:e9:07:f3:64:ef:8d:
20:62:7a:c2:81:15:e1:68:eb:1a:2f:9e:ad:87:63:ce:b1:c6:
cc:d2:a8:8a:48:d1:e7:70:48:ad:7a:c1:20:ec:e0:7d:6e:48:
59:e9:5a:6f:ec:b9:96:6f:21:b8:0e:d9:5c:34:eb:6b:46:57:
45:2d:e5:4a:ac:19:9f:dd:7a:e0:79:d1:e3:ff:4e:c7:8e:ce:
b7:ec:c4:58:d0:2a:8a:ee:02:9a:db:b4:22:07:2e:dc:22:bd:
f6:ad:7e:aa:c7:74:3f:7e:af:d7:89:f0:53:ba:9b:a7:22:a1:
9d:9e:95:cf:2a:43:f2:61:d3:65:c7:2c:ff:a5:57:00:49:2f:
65:99:e9:2c:af:68:04:1e:47:87:9e:91:02:c9:06:cc:74:9b:
e2:d9:1b:9d:3b:bf:04:b9:a2:fc:3d:ad:2a:7d:52:0a:f3:40:
28:8a:3e:1c:98:70:fe:48:8e:13:93:60:09:4a:f0:e5:df:69:
9b:a9:be:7b:d8:d4:8a:80:13:d2:49:0b:e8:aa:1e:3d:14:5a:
e9:b4:de:10:fe:17:63:c3:6d:74:fa:cf:1b:34:77:a2:bd:92:
45:ab:2b:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdSV78+UalH/nsIAw1Ike42MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNDA1MTY1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2JjYTZmYzQ3OTJkZGNlNDEwZTgwZjRjZTczYzkyYmI3NTY5MTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm8CdeWExvvOiUNAqbXJDmn80OFRn
qu3aa7bJJSLWFuqITNeNZSur4ySx2vJ5wWQqGOLgQR8CyrUtnuqyzuZWWF7vtlA5
sMgjXtfOBYfq/n0OyF37trXiaHtB7NnR+fmrCQ6RQegt0RkIRtQTLvmmci9VIG3T
RfI8J/PTdkwioeqEnfPzJ+kcAAiKh7zaz0HApRb42L10EuHdo121j/cEEioNFYWs
kXVi2yB+9fVY666kOzmYQdRetniYEZTRmSXuxoC/eZhqPwJgzO4Fw0DIpAU65/XO
UR+vTuEDp23UZ1V9t+I2CUnJePrTcMY2qyzPIDLEXZnc30aiiv39FnLB4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHe8pvxHkt3OQQ6A9M5zySu3VpF2MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvZDd5bV9FZVMzYzVCRG9EMHpuUEpLN2RXa1hZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwldHMA0G
CSqGSIb3DQEBCwUAA4IBAQATmIEThPe0+EkusyCGRW/kJWX8TGNB86xp8q3jAwvp
B/Nk740gYnrCgRXhaOsaL56th2POscbM0qiKSNHncEitesEg7OB9bkhZ6Vpv7LmW
byG4DtlcNOtrRldFLeVKrBmf3XrgedHj/07Hjs637MRY0CqK7gKa27QiBy7cIr32
rX6qx3Q/fq/XifBTupunIqGdnpXPKkPyYdNlxyz/pVcASS9lmeksr2gEHkeHnpEC
yQbMdJvi2RudO78EuaL8Pa0qfVIK80Aoij4cmHD+SI4Tk2AJSvDl32mbqb572NSK
gBPSSQvoqh49FFrptN4Q/hdjw210+s8bNHeivZJFqysr
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org