Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dig7blMt31KAl3RGI-l6C0tmvio.roa
File: dig7blMt31KAl3RGI-l6C0tmvio.roa (raw, json)
Hash identifier: 0JX2KNkrTZT7poRsjYqDIuHiM3c1T9M3wU2min4fvHs=
Subject key identifier: 76:28:3B:6E:53:2D:DF:52:80:97:74:46:23:E9:7A:0B:4B:66:BE:2A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B98619E06183CA02377C477CFA91E7188
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dig7blMt31KAl3RGI-l6C0tmvio.roa
Signing time: Sat 04 Nov 2023 03:30:16 +0000
ROA not before: Sat 04 Nov 2023 03:30:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 62.76.230.0/24 maxlen: 24
212.192.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:98:61:9e:06:18:3c:a0:23:77:c4:77:cf:a9:1e:71:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 4 03:30:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76283b6e532ddf528097744623e97a0b4b66be2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:90:e5:51:3d:36:de:37:a0:08:98:d1:03:2c:
50:0f:21:3b:c8:21:6f:05:da:3d:75:b5:02:4f:15:
41:5a:21:05:1c:65:8e:06:19:b8:43:27:0e:a8:f5:
2e:8a:88:a2:e6:7f:e3:70:11:8f:92:ab:3a:fb:01:
28:e0:f4:88:dc:0e:22:d4:85:41:ae:f8:77:68:05:
14:db:53:11:7d:18:3c:fd:3c:f3:de:a0:98:a1:16:
32:82:57:f2:82:f5:12:13:2a:66:d0:4b:d2:66:d9:
1a:8b:2b:7d:57:17:fd:ae:ad:c9:49:f7:66:a3:c5:
28:84:24:62:32:64:0e:53:b7:d7:90:15:0f:ff:2f:
67:df:19:f9:76:01:8c:23:74:c4:e4:06:06:7f:85:
c4:a9:ac:98:e7:0f:3c:46:57:73:e6:3e:eb:32:0d:
9c:be:b2:18:32:d4:d1:e5:f4:ad:e5:5a:72:6d:49:
cc:34:c4:8d:9f:ca:96:86:be:5e:95:2c:9c:9f:98:
70:3a:37:3b:54:c9:6e:c4:71:cc:0a:cc:23:6e:f7:
e6:64:95:c1:b0:6a:4b:25:c9:ec:c8:c6:28:06:a9:
48:76:24:68:f6:1b:aa:5f:0f:d6:29:a0:20:69:2f:
4c:e7:50:7b:32:55:f2:2c:11:23:bb:d6:b0:55:48:
91:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:28:3B:6E:53:2D:DF:52:80:97:74:46:23:E9:7A:0B:4B:66:BE:2A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dig7blMt31KAl3RGI-l6C0tmvio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.230.0/24
212.192.5.0/24
Signature Algorithm: sha256WithRSAEncryption
04:71:f6:0d:df:77:41:66:bf:fc:47:34:42:be:f6:41:65:da:
c2:08:84:29:49:0f:95:7c:7b:b1:70:7c:bc:c3:4d:8d:b6:eb:
70:14:75:97:41:a6:71:54:d5:80:71:9d:fe:ba:6c:04:b3:15:
f8:6e:02:0d:37:4f:be:66:55:2a:80:f8:54:04:a9:0e:75:56:
db:d3:f5:bf:0b:d0:84:05:98:b1:54:f6:b3:12:27:61:0f:6c:
1a:7e:c2:76:c5:cd:ec:7e:66:46:09:7d:0b:9d:28:5a:44:63:
ca:bf:a0:92:76:c0:34:62:d4:df:17:c3:33:ac:1d:0b:7b:13:
94:d0:59:df:d3:c5:13:a0:31:fb:18:23:ea:1d:3e:8c:73:13:
7a:10:6f:7d:d6:80:91:e8:0e:55:e7:30:27:28:bd:62:b2:8f:
f9:89:f4:f6:03:9e:56:3c:b0:e3:a4:12:b2:90:7b:fd:cc:6b:
86:c3:75:68:ac:25:ac:89:f1:75:4f:02:99:d8:71:82:34:b3:
a0:59:ea:08:2b:53:f3:e6:d3:e5:e3:fa:13:45:5c:c0:9b:92:
ec:21:ce:83:46:c7:4d:97:48:7c:77:4a:86:bc:4f:13:e8:0b:
a9:41:2d:7b:0f:28:8d:24:2e:b0:05:f2:f0:70:a0:05:78:19:
08:8d:1e:11
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYuYYZ4GGDygI3fEd8+pHnGIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMxMTA0MDMzMDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjI4M2I2ZTUzMmRkZjUyODA5Nzc0NDYyM2U5N2EwYjRiNjZiZTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZDlUT023jegCJjRAyxQDyE7yCFv
Bdo9dbUCTxVBWiEFHGWOBhm4QycOqPUuioii5n/jcBGPkqs6+wEo4PSI3A4i1IVB
rvh3aAUU21MRfRg8/Tzz3qCYoRYyglfygvUSEypm0EvSZtkaiyt9Vxf9rq3JSfdm
o8UohCRiMmQOU7fXkBUP/y9n3xn5dgGMI3TE5AYGf4XEqayY5w88Rldz5j7rMg2c
vrIYMtTR5fSt5VpybUnMNMSNn8qWhr5elSycn5hwOjc7VMluxHHMCswjbvfmZJXB
sGpLJcnsyMYoBqlIdiRo9huqXw/WKaAgaS9M51B7MlXyLBEju9awVUiRTQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHYoO25TLd9SgJd0RiPpegtLZr4qMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvZGlnN2JsTXQzMUtBbDNSR0ktbDZDMHRtdmlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPkzmAwQA
1MAFMA0GCSqGSIb3DQEBCwUAA4IBAQAEcfYN33dBZr/8RzRCvvZBZdrCCIQpSQ+V
fHuxcHy8w02NtutwFHWXQaZxVNWAcZ3+umwEsxX4bgINN0++ZlUqgPhUBKkOdVbb
0/W/C9CEBZixVPazEidhD2wafsJ2xc3sfmZGCX0LnShaRGPKv6CSdsA0YtTfF8Mz
rB0LexOU0Fnf08UToDH7GCPqHT6McxN6EG991oCR6A5V5zAnKL1iso/5ifT2A55W
PLDjpBKykHv9zGuGw3VorCWsifF1TwKZ2HGCNLOgWeoIK1Pz5tPl4/oTRVzAm5Ls
Ic6DRsdNl0h8d0qGvE8T6AupQS17DyiNJC6wBfLwcKAFeBkIjR4R
-----END CERTIFICATE-----
Generated at Tue Nov 7 17:33:48 2023 by rpki-client on console-ams.rpki-client.org