Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/esBbOTzwqpjauntEDkbuiZwBht8.roa
File: esBbOTzwqpjauntEDkbuiZwBht8.roa (raw, json)
Hash identifier: m5SUWEZSDDl9VZs/8JWJwsfBWLzDcylv3Ag9EfqKWj0=
Subject key identifier: 7A:C0:5B:39:3C:F0:AA:98:DA:BA:7B:44:0E:46:EE:89:9C:01:86:DF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0188C2A8257CE5515D2918DA5FB048CA5E85
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/esBbOTzwqpjauntEDkbuiZwBht8.roa
Signing time: Fri 16 Jun 2023 05:22:59 +0000
ROA not before: Fri 16 Jun 2023 05:22:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49217
IP address blocks: 178.215.224.0/24 maxlen: 24
87.121.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 06:52:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c2:a8:25:7c:e5:51:5d:29:18:da:5f:b0:48:ca:5e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 16 05:22:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ac05b393cf0aa98daba7b440e46ee899c0186df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:6a:50:e5:d7:1f:b9:75:b2:42:39:14:ef:
82:c8:d1:2b:e7:ae:5e:48:b2:01:89:f9:28:56:62:
4c:72:7d:8c:bf:13:c5:47:9d:3a:f9:13:68:6c:63:
ef:9a:14:2a:f0:f3:f6:4c:1a:31:16:87:95:ef:61:
c3:15:89:e9:39:02:a0:ff:cb:b2:bd:46:ec:ac:4d:
35:43:c9:60:00:30:4d:d6:9d:2a:09:42:00:77:dc:
e0:28:16:b6:56:67:c4:06:76:83:c1:ec:e4:29:85:
87:d0:5b:4f:44:0a:53:9d:80:c9:eb:6f:07:14:ad:
ba:ed:34:e3:a9:86:c2:68:eb:cc:11:00:b5:48:e0:
91:d9:41:2c:b6:6f:79:65:f9:dd:ce:0a:9c:66:d2:
fe:1e:09:c6:86:05:a1:dd:0c:5d:04:db:43:d6:65:
1c:6c:b8:dd:ed:d9:53:13:6c:20:21:2f:ff:b1:00:
3b:c1:c4:63:9f:dd:90:01:b3:1f:e0:8d:4d:74:6a:
20:bc:46:bc:4c:72:1a:d2:d0:85:ef:66:2f:3e:d8:
9c:cd:95:0f:bc:4b:1f:e5:0d:60:b7:e2:64:78:48:
28:1d:0d:f7:34:f8:73:ac:44:ac:c6:53:f3:84:06:
c5:74:62:92:d6:a6:49:13:4e:ef:dd:07:b7:a0:b2:
a4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C0:5B:39:3C:F0:AA:98:DA:BA:7B:44:0E:46:EE:89:9C:01:86:DF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/esBbOTzwqpjauntEDkbuiZwBht8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.105.0/24
178.215.224.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d2:db:9e:48:ba:9e:db:42:89:c6:64:72:51:3b:f9:a1:14:
c7:64:41:f4:c0:d0:d7:b2:ad:0f:11:6f:ff:20:15:77:ab:9f:
94:a8:b8:44:e2:7a:1e:44:d9:52:1f:28:f6:83:98:c6:4c:fc:
17:7d:e6:a2:e7:d4:5d:4c:41:00:ef:43:9c:ef:3e:05:8a:b5:
45:83:cf:92:b9:ee:5d:98:93:25:5c:f3:d5:ce:e8:6a:2f:a3:
f6:92:b8:e3:d1:d7:c4:ab:13:ef:e9:99:25:f9:af:b3:26:3e:
1d:ea:f5:6a:1d:dd:d3:9b:38:c4:45:a1:3f:e7:dd:6d:3e:f5:
db:74:c6:cd:61:37:47:52:c6:92:46:1b:2c:66:0a:23:6c:73:
d5:39:b9:47:19:48:b1:82:2c:7b:25:6b:6a:6f:c7:0b:80:8b:
73:bf:d1:cd:05:e1:22:43:2c:4f:b7:10:ca:46:f3:96:7e:ba:
64:e9:ad:5f:13:82:58:22:c6:30:90:a4:a1:9e:85:74:a6:0e:
0f:f7:ad:3c:15:52:63:dc:32:8d:39:26:7d:0b:2b:d6:96:de:
77:db:78:fa:58:bb:38:34:ad:b1:bb:d9:d2:3f:df:59:b3:22:
47:4c:77:f4:8b:64:9e:b2:10:13:4c:ec:49:0c:c6:53:cf:1f:
44:8f:5c:5f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYjCqCV85VFdKRjaX7BIyl6FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwNjE2MDUyMjU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWMwNWIzOTNjZjBhYTk4ZGFiYTdiNDQwZTQ2ZWU4OTljMDE4NmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaZqUOXXH7l1skI5FO+CyNEr565e
SLIBifkoVmJMcn2MvxPFR506+RNobGPvmhQq8PP2TBoxFoeV72HDFYnpOQKg/8uy
vUbsrE01Q8lgADBN1p0qCUIAd9zgKBa2VmfEBnaDwezkKYWH0FtPRApTnYDJ628H
FK267TTjqYbCaOvMEQC1SOCR2UEstm95ZfndzgqcZtL+HgnGhgWh3QxdBNtD1mUc
bLjd7dlTE2wgIS//sQA7wcRjn92QAbMf4I1NdGogvEa8THIa0tCF72YvPticzZUP
vEsf5Q1gt+JkeEgoHQ33NPhzrESsxlPzhAbFdGKS1qZJE07v3Qe3oLKkwQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHrAWzk88KqY2rp7RA5G7omcAYbfMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvZXNCYk9UendxcGphdW50RURrYnVpWndCaHQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV3lpAwQA
stfgMA0GCSqGSIb3DQEBCwUAA4IBAQCm0tueSLqe20KJxmRyUTv5oRTHZEH0wNDX
sq0PEW//IBV3q5+UqLhE4noeRNlSHyj2g5jGTPwXfeai59RdTEEA70Oc7z4FirVF
g8+Sue5dmJMlXPPVzuhqL6P2krjj0dfEqxPv6Zkl+a+zJj4d6vVqHd3TmzjERaE/
591tPvXbdMbNYTdHUsaSRhssZgojbHPVOblHGUixgix7JWtqb8cLgItzv9HNBeEi
QyxPtxDKRvOWfrpk6a1fE4JYIsYwkKShnoV0pg4P9608FVJj3DKNOSZ9CyvWlt53
23j6WLs4NK2xu9nSP99ZsyJHTHf0i2SeshATTOxJDMZTzx9Ej1xf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:15 2024 by rpki-client on console-fra.rpki-client.org