Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pOiYOEeaDqzEXYrdKcbx3pXim9I.roa
File: pOiYOEeaDqzEXYrdKcbx3pXim9I.roa (raw, json)
Hash identifier: 7OcidP6Gh3fSigkWXU0QnLJiCfWPsHxm970tMdGceGQ=
Subject key identifier: A4:E8:98:38:47:9A:0E:AC:C4:5D:8A:DD:29:C6:F1:DE:95:E2:9B:D2
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018682E7315DE04D462F525D3DB1EDB67AFA
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pOiYOEeaDqzEXYrdKcbx3pXim9I.roa
Signing time: Fri 24 Feb 2023 10:10:34 +0000
ROA not before: Fri 24 Feb 2023 10:10:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400536
IP address blocks: 194.87.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:e7:31:5d:e0:4d:46:2f:52:5d:3d:b1:ed:b6:7a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 24 10:10:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4e89838479a0eacc45d8add29c6f1de95e29bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:82:f9:4b:f0:77:33:20:e3:41:34:8e:d5:18:
a5:d1:75:ec:83:96:49:40:fd:ea:28:79:31:c4:63:
34:38:56:b2:c4:c4:ab:c0:bb:46:c1:80:ef:15:34:
10:9a:94:6d:30:51:b4:d7:46:03:eb:f4:1a:11:d4:
b1:74:70:a2:a1:b5:69:c5:70:ba:93:78:7e:5b:00:
1a:17:fe:40:a9:8c:c1:23:ef:7b:f4:de:a4:b6:45:
84:66:47:52:ff:67:ec:ac:c3:c9:9c:8a:f2:d8:a8:
18:f1:50:ac:a1:6b:d9:44:9b:2e:05:cf:c3:57:86:
82:53:f4:13:c0:19:f4:79:13:12:e4:aa:70:95:37:
93:a2:1f:e1:9b:11:ba:7a:67:41:15:ae:2f:18:11:
9a:30:27:9f:55:dc:31:1e:86:51:5e:6d:8b:f2:c4:
f6:5a:92:41:47:60:82:3a:c5:de:6f:e7:1a:94:ae:
69:6d:30:0d:40:dd:cb:2c:5f:89:83:53:d6:86:c8:
4c:eb:6b:c3:e0:0d:ed:68:5e:6f:e1:7c:da:d3:e8:
e4:15:11:3b:8c:15:45:0c:e2:af:4f:e2:2e:ad:7e:
be:45:cc:6a:53:1f:19:d8:f3:14:27:fa:f4:69:c1:
b1:ca:fb:06:05:2b:1b:22:0d:bf:57:fb:d9:22:97:
1a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E8:98:38:47:9A:0E:AC:C4:5D:8A:DD:29:C6:F1:DE:95:E2:9B:D2
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pOiYOEeaDqzEXYrdKcbx3pXim9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.123.0/24
Signature Algorithm: sha256WithRSAEncryption
33:3f:5b:9d:0e:d4:6e:bb:b1:15:81:93:80:43:6e:8f:17:d6:
58:05:94:e8:c3:ed:0f:92:f5:a1:07:fe:e9:f4:c4:c6:06:a5:
ed:55:b6:c1:6c:40:51:16:5d:61:67:66:e3:56:d0:6e:58:97:
0c:cf:b6:f9:0e:df:cb:8c:79:be:53:42:ac:6f:e7:b9:9f:c1:
ea:a0:85:92:f0:26:a6:13:4a:6e:86:c6:50:21:ad:0b:65:e0:
3e:e2:ec:ba:4f:bc:45:d8:6d:32:8e:86:e2:e2:fd:e8:4b:c7:
14:54:ea:7c:2e:42:69:d1:48:d7:14:d0:97:4a:2d:24:60:51:
19:be:cc:37:c4:39:b3:63:20:ba:29:70:c4:4d:21:71:10:cd:
ac:21:1d:43:57:c1:4c:02:e0:35:dd:34:4f:af:a2:01:01:47:
b2:2a:49:a3:b6:0e:fd:58:2f:6d:75:f5:39:c6:a4:2d:20:51:
15:6f:32:30:ea:5a:61:cd:56:39:a2:f2:fe:97:a0:b8:3b:dc:
16:be:40:32:bb:a6:28:dc:90:7d:28:e5:4e:88:06:71:4e:ea:
14:92:28:88:1f:02:89:9a:3c:37:1e:9f:7b:22:ef:bf:3a:27:
0b:e9:82:7e:a5:0d:33:8b:08:37:2d:de:4c:2e:99:66:27:7a:
b3:8a:8b:2f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaC5zFd4E1GL1JdPbHttnr6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMjI0MTAxMDM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGU4OTgzODQ3OWEwZWFjYzQ1ZDhhZGQyOWM2ZjFkZTk1ZTI5YmQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYL5S/B3MyDjQTSO1Ril0XXsg5ZJ
QP3qKHkxxGM0OFayxMSrwLtGwYDvFTQQmpRtMFG010YD6/QaEdSxdHCiobVpxXC6
k3h+WwAaF/5AqYzBI+979N6ktkWEZkdS/2fsrMPJnIry2KgY8VCsoWvZRJsuBc/D
V4aCU/QTwBn0eRMS5KpwlTeToh/hmxG6emdBFa4vGBGaMCefVdwxHoZRXm2L8sT2
WpJBR2CCOsXeb+calK5pbTANQN3LLF+Jg1PWhshM62vD4A3taF5v4Xza0+jkFRE7
jBVFDOKvT+IurX6+RcxqUx8Z2PMUJ/r0acGxyvsGBSsbIg2/V/vZIpcacwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKTomDhHmg6sxF2K3SnG8d6V4pvSMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvcE9pWU9FZWFEcXpFWFlyZEtjYngzcFhpbTlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwld7MA0G
CSqGSIb3DQEBCwUAA4IBAQAzP1udDtRuu7EVgZOAQ26PF9ZYBZTow+0PkvWhB/7p
9MTGBqXtVbbBbEBRFl1hZ2bjVtBuWJcMz7b5Dt/LjHm+U0Ksb+e5n8HqoIWS8Cam
E0puhsZQIa0LZeA+4uy6T7xF2G0yjobi4v3oS8cUVOp8LkJp0UjXFNCXSi0kYFEZ
vsw3xDmzYyC6KXDETSFxEM2sIR1DV8FMAuA13TRPr6IBAUeyKkmjtg79WC9tdfU5
xqQtIFEVbzIw6lphzVY5ovL+l6C4O9wWvkAyu6Yo3JB9KOVOiAZxTuoUkiiIHwKJ
mjw3Hp97Iu+/OicL6YJ+pQ0ziwg3Ld5MLplmJ3qziosv
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:11 2023 by rpki-client on console-fra.rpki-client.org