Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d3QRkhNz0ZUoybPv6pnZcXEmExU.roa
File: d3QRkhNz0ZUoybPv6pnZcXEmExU.roa (raw, json)
Hash identifier: QJiAziYXJOEhuLJfFEZHUvPYBcZL2HCH+4Hh8yChaFg=
Subject key identifier: 77:74:11:92:13:73:D1:95:28:C9:B3:EF:EA:99:D9:71:71:26:13:15
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC943E2E2D667671BA9E6DC6FC822FE65
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d3QRkhNz0ZUoybPv6pnZcXEmExU.roa
Signing time: Tue 02 Jan 2024 08:21:58 +0000
ROA not before: Tue 02 Jan 2024 08:21:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51082
IP address blocks: 87.121.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 00:08:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:43:e2:e2:d6:67:67:1b:a9:e6:dc:6f:c8:22:fe:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 08:21:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=777411921373d19528c9b3efea99d97171261315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:88:0c:d2:29:81:40:48:48:0d:a2:c0:90:24:
27:9e:fe:78:9a:7e:f9:18:7d:59:9f:49:ae:e1:1a:
e2:63:5a:30:6e:11:29:7e:97:93:37:bf:c6:17:56:
77:99:8f:ec:cc:7f:76:cf:b1:4c:d7:7f:eb:84:2f:
19:ca:b4:c0:96:90:49:f4:15:6c:0e:14:06:02:f5:
17:21:91:e9:2f:89:68:a5:de:bc:6f:e4:00:65:86:
e3:b0:fe:7d:72:bc:cc:85:5e:1c:ab:6c:7a:23:c5:
db:f0:10:50:5a:b2:03:46:20:7d:8d:ca:33:20:dd:
f3:ce:c4:cc:89:31:c9:dd:f6:05:77:17:b4:b8:64:
67:e2:76:c2:14:24:91:4c:d1:d5:4c:e8:59:18:13:
b3:6d:a6:ab:58:b4:b0:34:7c:b6:5c:ea:c3:31:e8:
25:f2:4a:83:b1:e2:08:8f:0f:18:ce:23:d0:b1:16:
83:ba:15:3d:31:43:c8:49:8d:ab:5f:08:c0:e3:6d:
91:d7:2b:c7:b3:1f:e6:b7:ab:3a:f2:ed:ae:ce:1b:
ac:16:e5:e0:d3:1b:4d:5a:91:64:a6:33:f6:fc:93:
d6:c6:ff:79:32:6b:52:3d:79:1d:a6:34:fb:33:e7:
4a:47:ab:7f:c7:7d:5e:27:4b:b1:68:2b:e5:f3:c2:
83:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:74:11:92:13:73:D1:95:28:C9:B3:EF:EA:99:D9:71:71:26:13:15
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d3QRkhNz0ZUoybPv6pnZcXEmExU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.147.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:8c:90:fe:dd:32:8c:e4:df:46:45:95:2a:46:f0:90:c6:08:
74:f4:b2:00:26:68:6c:56:c8:ca:93:4b:c8:1a:87:f9:2c:7f:
46:a6:9f:19:22:3e:31:76:a5:68:28:59:c9:6e:32:e6:ed:17:
79:16:d9:a0:28:94:3d:8b:5e:b0:14:68:85:ca:87:01:57:ea:
1e:ad:a2:d4:0b:16:63:1c:2b:51:7a:98:e1:61:93:bb:f5:54:
9e:b4:7f:85:02:53:34:c5:c5:fe:10:42:96:7f:53:f7:86:da:
1d:fd:83:dd:9e:f9:75:08:ea:f6:81:63:94:a3:eb:b0:e0:1e:
83:8c:8d:b7:2e:4d:fa:97:12:c2:e5:fd:af:3b:4d:de:12:01:
98:77:df:32:c9:df:13:e1:25:5a:34:d0:ba:1a:b4:79:a0:60:
e4:ec:77:15:c6:79:a5:14:7d:f8:fd:4d:59:8a:8d:59:5f:4d:
83:44:d2:a5:10:bb:51:2c:34:dc:58:18:45:bd:9d:4d:57:75:
ec:37:c2:f8:e4:6f:11:c2:02:33:8b:cb:5e:06:97:ca:43:83:
12:a9:10:d9:c6:9e:03:1c:6a:3d:ae:4d:62:2d:0d:49:09:1d:
52:32:04:37:e7:d7:ae:f0:7c:4d:6c:35:47:09:f4:29:ab:d9:
b6:b2:b4:e6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJQ+Li1mdnG6nm3G/IIv5lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwMTAyMDgyMTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Nzc0MTE5MjEzNzNkMTk1MjhjOWIzZWZlYTk5ZDk3MTcxMjYxMzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYgM0imBQEhIDaLAkCQnnv54mn75
GH1Zn0mu4RriY1owbhEpfpeTN7/GF1Z3mY/szH92z7FM13/rhC8ZyrTAlpBJ9BVs
DhQGAvUXIZHpL4lopd68b+QAZYbjsP59crzMhV4cq2x6I8Xb8BBQWrIDRiB9jcoz
IN3zzsTMiTHJ3fYFdxe0uGRn4nbCFCSRTNHVTOhZGBOzbaarWLSwNHy2XOrDMegl
8kqDseIIjw8YziPQsRaDuhU9MUPISY2rXwjA422R1yvHsx/mt6s68u2uzhusFuXg
0xtNWpFkpjP2/JPWxv95MmtSPXkdpjT7M+dKR6t/x31eJ0uxaCvl88KDJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHd0EZITc9GVKMmz7+qZ2XFxJhMVMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvZDNRUmtoTnowWlVveWJQdjZwblpjWEVtRXhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV3mTMA0G
CSqGSIb3DQEBCwUAA4IBAQAsjJD+3TKM5N9GRZUqRvCQxgh09LIAJmhsVsjKk0vI
Gof5LH9Gpp8ZIj4xdqVoKFnJbjLm7Rd5FtmgKJQ9i16wFGiFyocBV+oeraLUCxZj
HCtRepjhYZO79VSetH+FAlM0xcX+EEKWf1P3htod/YPdnvl1COr2gWOUo+uw4B6D
jI23Lk36lxLC5f2vO03eEgGYd98yyd8T4SVaNNC6GrR5oGDk7HcVxnmlFH34/U1Z
io1ZX02DRNKlELtRLDTcWBhFvZ1NV3XsN8L45G8RwgIzi8teBpfKQ4MSqRDZxp4D
HGo9rk1iLQ1JCR1SMgQ359eu8HxNbDVHCfQpq9m2srTm
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:38 2024 by rpki-client on console-ams.rpki-client.org