Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/19715a-631f-4149-89ca-f951642d61c8/1/tjgGPg3Nlq_u_b7WYf4fGVHXX3k.roa
File: tjgGPg3Nlq_u_b7WYf4fGVHXX3k.roa (raw, json)
Hash identifier: RKZStqSbPjG/J9mRJwwaoPhfI/MgMTAXs53rO8fIQsg=
Subject key identifier: B6:38:06:3E:0D:CD:96:AF:EE:FD:BE:D6:61:FE:1F:19:51:D7:5F:79
Certificate issuer: /CN=eeb9ba19b9eccc4aee0f81115af2439a7979f31b
Certificate serial: 01856E8B0D9A9146EBA702DA72577F70F073
Authority key identifier: EE:B9:BA:19:B9:EC:CC:4A:EE:0F:81:11:5A:F2:43:9A:79:79:F3:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rm6GbnszEruD4ERWvJDmnl58xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/19715a-631f-4149-89ca-f951642d61c8/1/tjgGPg3Nlq_u_b7WYf4fGVHXX3k.roa
Signing time: Sun 01 Jan 2023 18:14:44 +0000
ROA not before: Sun 01 Jan 2023 18:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57878
IP address blocks: 185.207.212.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:0d:9a:91:46:eb:a7:02:da:72:57:7f:70:f0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eeb9ba19b9eccc4aee0f81115af2439a7979f31b
Validity
Not Before: Jan 1 18:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b638063e0dcd96afeefdbed661fe1f1951d75f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:60:93:61:96:f5:5f:ea:81:8f:c9:fb:9b:d4:
70:08:c9:1a:af:c5:81:b8:89:97:b5:fb:17:34:cf:
d4:ff:f7:e4:08:f4:f7:6f:93:bf:6e:07:52:3d:25:
13:06:d4:b9:e4:fd:ad:59:4a:ed:5c:45:f2:c7:64:
01:6d:c2:b9:15:f5:d1:f1:b7:a1:b5:d8:cb:df:5b:
92:d1:6e:4f:4b:ad:9c:28:92:bf:c2:4a:a0:eb:3a:
e6:79:6e:0a:0b:8f:a1:62:b3:64:b6:7e:ad:b0:7c:
c1:a4:64:18:70:40:ed:25:68:c0:ef:26:36:33:82:
28:ed:b4:bc:09:3d:5f:0f:4f:6d:18:ff:ac:ec:f4:
1f:3b:c6:99:eb:9d:d8:30:5f:03:30:da:da:8a:e7:
33:fc:02:10:cd:4e:d1:b1:f7:ab:08:82:7b:19:4d:
9b:14:ea:2a:9e:6f:24:96:78:a2:1f:a6:85:db:db:
34:83:47:4c:d3:9a:86:5f:7b:f2:bb:f0:ab:c8:a3:
90:cb:29:b0:87:a9:56:a1:3a:d4:07:d0:3a:8f:20:
8c:ab:ac:c9:39:f4:a7:f3:14:16:54:26:b0:5b:02:
d5:49:f9:bf:8c:f5:20:e6:3a:6c:c6:0e:ac:c1:20:
4b:67:15:32:dd:17:78:63:48:42:e1:a5:98:14:0b:
d1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:38:06:3E:0D:CD:96:AF:EE:FD:BE:D6:61:FE:1F:19:51:D7:5F:79
X509v3 Authority Key Identifier:
keyid:EE:B9:BA:19:B9:EC:CC:4A:EE:0F:81:11:5A:F2:43:9A:79:79:F3:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rm6GbnszEruD4ERWvJDmnl58xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/19715a-631f-4149-89ca-f951642d61c8/1/tjgGPg3Nlq_u_b7WYf4fGVHXX3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/19715a-631f-4149-89ca-f951642d61c8/1/7rm6GbnszEruD4ERWvJDmnl58xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.212.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e0:7f:fb:cd:b8:a5:c2:57:ea:56:87:bf:43:18:a0:91:3e:
9d:df:70:8e:0b:17:32:71:83:22:b2:62:f1:09:fa:1b:46:6b:
8f:bf:2c:56:24:43:6b:03:fd:23:c9:13:1a:5c:d3:69:94:5d:
7e:09:34:c5:8a:38:a7:a4:2f:20:b2:9c:72:fb:e0:25:70:95:
76:bf:c7:3b:03:af:be:47:cf:3c:97:ac:f7:de:88:8b:d7:18:
f3:66:77:a0:24:c0:eb:e5:17:03:a3:6f:f3:4c:a4:00:4d:00:
81:10:69:93:82:0d:0f:1e:5a:ba:2e:7e:c1:a1:20:6c:01:ed:
3f:70:7c:38:6d:d4:4f:f3:9b:d6:d1:04:2e:b2:13:7f:d3:0d:
4d:b4:70:61:f4:71:4d:0a:86:26:2a:05:d1:ee:f2:14:79:c6:
42:11:b9:1e:cb:a1:c9:cb:05:84:dc:d2:cc:8e:c6:b1:bc:99:
d1:d1:4e:27:6c:ec:bc:bc:8d:7d:5a:0c:7d:7a:55:37:e3:0d:
da:c4:08:4a:92:29:9e:fc:ba:20:2f:2e:28:2d:66:80:96:fa:
0b:8a:54:09:0f:4f:38:b1:ab:ae:50:6e:8f:66:a9:3e:d8:55:
f1:ab:e4:d2:0b:78:01:24:ae:cc:3d:79:5a:14:38:84:f9:f8:
3a:a8:54:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuiw2akUbrpwLacld/cPBzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYjliYTE5YjllY2NjNGFlZTBmODExMTVhZjI0MzlhNzk3
OWYzMWIwHhcNMjMwMTAxMTgxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjM4MDYzZTBkY2Q5NmFmZWVmZGJlZDY2MWZlMWYxOTUxZDc1Zjc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2CTYZb1X+qBj8n7m9RwCMkar8WB
uImXtfsXNM/U//fkCPT3b5O/bgdSPSUTBtS55P2tWUrtXEXyx2QBbcK5FfXR8beh
tdjL31uS0W5PS62cKJK/wkqg6zrmeW4KC4+hYrNktn6tsHzBpGQYcEDtJWjA7yY2
M4Io7bS8CT1fD09tGP+s7PQfO8aZ653YMF8DMNraiucz/AIQzU7RsferCIJ7GU2b
FOoqnm8klniiH6aF29s0g0dM05qGX3vyu/CryKOQyymwh6lWoTrUB9A6jyCMq6zJ
OfSn8xQWVCawWwLVSfm/jPUg5jpsxg6swSBLZxUy3Rd4Y0hC4aWYFAvRzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLY4Bj4NzZav7v2+1mH+HxlR1195MB8GA1UdIwQY
MBaAFO65uhm57MxK7g+BEVryQ5p5efMbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3JtNkdibnN6RXJ1RDRFUld2SkRtbmw1OHhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xOTcxNWEtNjMxZi00MTQ5LTg5Y2Et
Zjk1MTY0MmQ2MWM4LzEvdGpnR1BnM05scV91X2I3V1lmNGZHVkhYWDNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8xOTcxNWEtNjMxZi00MTQ5LTg5Y2EtZjk1MTY0MmQ2MWM4
LzEvN3JtNkdibnN6RXJ1RDRFUld2SkRtbmw1OHhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc/UMA0G
CSqGSIb3DQEBCwUAA4IBAQAt4H/7zbilwlfqVoe/QxigkT6d33COCxcycYMismLx
CfobRmuPvyxWJENrA/0jyRMaXNNplF1+CTTFijinpC8gspxy++AlcJV2v8c7A6++
R888l6z33oiL1xjzZnegJMDr5RcDo2/zTKQATQCBEGmTgg0PHlq6Ln7BoSBsAe0/
cHw4bdRP85vW0QQushN/0w1NtHBh9HFNCoYmKgXR7vIUecZCEbkey6HJywWE3NLM
jsaxvJnR0U4nbOy8vI19Wgx9elU34w3axAhKkime/LogLy4oLWaAlvoLilQJD084
sauuUG6PZqk+2FXxq+TSC3gBJK7MPXlaFDiE+fg6qFTZ
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:12 2024 by rpki-client on console-fra.rpki-client.org