Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/x0T_Cbai40xd7wl9SE0dajA-0sQ.roa
File: x0T_Cbai40xd7wl9SE0dajA-0sQ.roa (raw, json)
Hash identifier: 5GQszBZQMcynE1nP5i+q85YAHUfMscHsKPDKT3Uz9DE=
Subject key identifier: C7:44:FF:09:B6:A2:E3:4C:5D:EF:09:7D:48:4D:1D:6A:30:3E:D2:C4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0189F26D0758F2FB4AB4671404026B54C86A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/x0T_Cbai40xd7wl9SE0dajA-0sQ.roa
Signing time: Mon 14 Aug 2023 05:02:58 +0000
ROA not before: Mon 14 Aug 2023 05:02:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200623
IP address blocks: 82.115.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 14:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f2:6d:07:58:f2:fb:4a:b4:67:14:04:02:6b:54:c8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 14 05:02:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c744ff09b6a2e34c5def097d484d1d6a303ed2c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a4:ec:fa:64:87:bd:da:1f:fd:33:07:00:0f:
ec:19:44:85:7e:91:b0:57:e5:ff:c0:1d:74:17:13:
56:b6:d2:20:9b:d2:09:70:5a:50:c1:eb:9e:85:f7:
fe:25:9e:59:ed:5a:14:68:99:8e:79:96:64:85:c4:
de:83:0f:9e:12:3c:c0:72:a0:07:cf:42:88:85:28:
f3:0a:ea:00:9e:70:e0:55:ee:ad:42:ff:04:84:9e:
ae:c1:c3:ab:c1:3d:3c:ac:31:c2:e2:5f:69:de:73:
02:c7:64:56:2b:72:0a:a4:4f:f7:92:91:33:be:9a:
5c:ba:72:64:5b:81:d1:96:9a:d6:6f:4e:38:21:47:
14:4e:70:50:0d:b8:c2:5b:fc:d9:f4:9b:17:57:03:
a0:34:df:64:ed:bb:f8:eb:43:0e:57:54:24:72:bd:
67:dc:a0:a2:12:f6:82:ed:d6:01:e2:91:85:dd:d2:
3f:f9:0c:78:ad:63:63:c1:0a:8f:e2:21:04:45:26:
78:40:30:ee:ec:9a:ed:b8:f4:da:5a:5e:c3:64:77:
aa:6f:14:e4:7f:d8:80:8f:6d:70:a9:c2:f4:0f:3a:
97:44:40:30:7f:ff:86:cb:f7:42:c1:dd:14:6e:e0:
83:65:54:ac:b8:83:bd:cf:19:5e:0b:a3:ee:70:30:
2d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:44:FF:09:B6:A2:E3:4C:5D:EF:09:7D:48:4D:1D:6A:30:3E:D2:C4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/x0T_Cbai40xd7wl9SE0dajA-0sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.209.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ce:71:ac:80:5d:e1:a8:6e:dc:b9:19:02:1f:7e:7c:61:a9:
22:f1:2d:15:aa:3f:e0:6a:1c:2f:c8:eb:c4:ee:09:81:2b:e4:
05:40:05:21:e4:bb:ad:2f:a2:a5:2f:b4:3f:24:23:ea:01:40:
96:fc:12:11:17:5c:8c:a3:e8:e8:74:47:d1:69:b2:bd:b5:27:
a0:50:a0:f4:6c:8f:63:40:4a:b1:44:80:18:06:7b:f9:5b:85:
a6:c7:81:f8:e2:4f:47:e9:8d:26:f8:97:bd:0f:ca:4c:23:ed:
39:af:b6:6a:74:f2:e0:eb:0d:6a:37:55:18:ec:98:f5:8b:97:
85:61:9b:8c:40:5b:55:bc:5a:be:4f:89:8b:9c:36:1f:59:9a:
9b:4c:ba:9a:f1:e2:af:f0:e2:09:2d:88:ca:07:ce:69:dc:72:
16:b6:45:ef:0c:59:be:13:fb:86:3c:39:30:36:5f:af:5b:8a:
5b:f2:1f:bc:8a:b2:84:bd:a6:da:ef:44:b8:a7:34:c9:68:70:
bf:dc:70:53:6a:a1:94:e2:a1:39:42:16:1b:c0:5f:19:be:cf:
fb:23:51:79:0d:7a:ec:4f:f9:1c:a4:b3:6d:55:18:47:d1:63:
d8:fd:1c:66:9e:15:d3:5f:db:60:44:48:3c:8f:38:4c:b3:91:
6f:7c:95:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnybQdY8vtKtGcUBAJrVMhqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwODE0MDUwMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzQ0ZmYwOWI2YTJlMzRjNWRlZjA5N2Q0ODRkMWQ2YTMwM2VkMmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaTs+mSHvdof/TMHAA/sGUSFfpGw
V+X/wB10FxNWttIgm9IJcFpQweuehff+JZ5Z7VoUaJmOeZZkhcTegw+eEjzAcqAH
z0KIhSjzCuoAnnDgVe6tQv8EhJ6uwcOrwT08rDHC4l9p3nMCx2RWK3IKpE/3kpEz
vppcunJkW4HRlprWb044IUcUTnBQDbjCW/zZ9JsXVwOgNN9k7bv460MOV1Qkcr1n
3KCiEvaC7dYB4pGF3dI/+Qx4rWNjwQqP4iEERSZ4QDDu7JrtuPTaWl7DZHeqbxTk
f9iAj21wqcL0DzqXREAwf/+Gy/dCwd0UbuCDZVSsuIO9zxleC6PucDAtXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMdE/wm2ouNMXe8JfUhNHWowPtLEMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEveDBUX0NiYWk0MHhkN3dsOVNFMGRhakEtMHNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUnPRMA0G
CSqGSIb3DQEBCwUAA4IBAQCJznGsgF3hqG7cuRkCH358Yaki8S0Vqj/gahwvyOvE
7gmBK+QFQAUh5LutL6KlL7Q/JCPqAUCW/BIRF1yMo+jodEfRabK9tSegUKD0bI9j
QEqxRIAYBnv5W4Wmx4H44k9H6Y0m+Je9D8pMI+05r7ZqdPLg6w1qN1UY7Jj1i5eF
YZuMQFtVvFq+T4mLnDYfWZqbTLqa8eKv8OIJLYjKB85p3HIWtkXvDFm+E/uGPDkw
Nl+vW4pb8h+8irKEvaba70S4pzTJaHC/3HBTaqGU4qE5QhYbwF8Zvs/7I1F5DXrs
T/kcpLNtVRhH0WPY/RxmnhXTX9tgREg8jzhMs5FvfJXh
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:46 2024 by rpki-client on console-ams.rpki-client.org