Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/380400-dc2e-494a-891a-2f2300b6e3d9/1/DnvnmmhYCc09niXbXGIoFhXXgOE.roa
File: DnvnmmhYCc09niXbXGIoFhXXgOE.roa (raw, json)
Hash identifier: NckSp0tSQluyhxL/c2cLGvAtcEVTlKg9eJFWKCBK5co=
Subject key identifier: 0E:7B:E7:9A:68:58:09:CD:3D:9E:25:DB:5C:62:28:16:15:D7:80:E1
Certificate issuer: /CN=7e2eda6952b03e8ba45997be615d7abee1784f83
Certificate serial: 018570CBDF8799AF39B39680FB32B31097AF
Authority key identifier: 7E:2E:DA:69:52:B0:3E:8B:A4:59:97:BE:61:5D:7A:BE:E1:78:4F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi7aaVKwPoukWZe-YV16vuF4T4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/380400-dc2e-494a-891a-2f2300b6e3d9/1/DnvnmmhYCc09niXbXGIoFhXXgOE.roa
Signing time: Mon 02 Jan 2023 04:44:47 +0000
ROA not before: Mon 02 Jan 2023 04:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31172
IP address blocks: 87.239.100.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:df:87:99:af:39:b3:96:80:fb:32:b3:10:97:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2eda6952b03e8ba45997be615d7abee1784f83
Validity
Not Before: Jan 2 04:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e7be79a685809cd3d9e25db5c62281615d780e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e6:4d:c6:a0:df:c0:d4:26:ef:44:ac:24:99:
cc:1c:c9:03:75:1d:1e:89:ca:d6:c0:e8:85:cd:c4:
c6:bc:f0:3c:00:10:51:91:37:a7:c5:f2:0e:eb:98:
9b:27:8b:ed:6d:cc:c1:89:b4:25:af:04:71:f2:dd:
42:09:df:15:6d:89:9e:5d:9f:8d:d2:08:1a:b4:38:
d6:c0:c2:43:5f:d9:29:5a:b3:15:9d:56:fd:ac:59:
2f:a3:dd:0e:4d:85:3f:7e:f8:e3:26:e3:33:ae:ae:
96:5f:10:fa:86:a9:61:27:0e:08:9e:2f:3d:ae:dc:
62:32:f8:e3:b0:e6:bb:fb:ed:11:a6:d0:31:21:17:
e8:bd:c2:42:10:0b:4a:03:54:d1:31:d7:02:89:75:
1c:10:50:a7:a1:3c:65:a0:ab:77:f5:d5:80:34:fe:
0b:29:fa:cb:6c:7f:06:1e:8b:12:92:cf:82:8a:df:
8f:43:99:46:eb:70:71:9b:77:e2:1d:6e:43:cb:a1:
7a:e6:d6:ca:81:bf:ea:fa:d7:0c:40:72:aa:87:c4:
15:96:88:69:44:9a:b9:34:a4:27:87:86:a8:c9:04:
b2:a7:23:29:6c:8c:59:7a:9e:66:1b:32:ad:17:d6:
7c:36:33:4f:95:e2:12:b0:f8:fe:b3:0b:37:c5:0d:
c4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7B:E7:9A:68:58:09:CD:3D:9E:25:DB:5C:62:28:16:15:D7:80:E1
X509v3 Authority Key Identifier:
keyid:7E:2E:DA:69:52:B0:3E:8B:A4:59:97:BE:61:5D:7A:BE:E1:78:4F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi7aaVKwPoukWZe-YV16vuF4T4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/380400-dc2e-494a-891a-2f2300b6e3d9/1/DnvnmmhYCc09niXbXGIoFhXXgOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/380400-dc2e-494a-891a-2f2300b6e3d9/1/fi7aaVKwPoukWZe-YV16vuF4T4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.100.0/22
Signature Algorithm: sha256WithRSAEncryption
67:07:4a:a0:49:12:32:8e:6a:d1:d7:99:12:4b:eb:23:14:e3:
77:57:9f:2f:cc:5d:93:55:e4:81:9c:4c:66:ee:89:05:e0:5b:
a0:c4:38:32:cb:84:93:2c:69:33:35:4f:53:46:ec:94:2b:d6:
ba:4d:31:4f:42:f4:85:5c:23:4c:e6:38:09:9d:64:32:d5:86:
15:9e:1c:3f:d8:d4:8a:21:f3:27:ef:9a:b8:df:da:01:88:98:
4a:17:52:e7:bb:76:91:ff:32:1c:55:ba:1a:9f:b7:c1:af:8b:
fc:9f:38:22:36:24:87:68:c2:ff:31:e4:26:37:52:a0:c2:ae:
10:f8:2d:22:c6:3c:9b:48:21:7d:26:ca:74:3a:f7:a0:9a:58:
89:dd:fa:c8:c8:73:6c:09:6e:cc:a2:84:ff:f8:4d:2c:a8:93:
8a:2f:3e:9b:7c:f3:28:db:54:f2:20:18:ac:a0:0e:0a:2a:0e:
a1:6a:fe:40:ac:20:1c:07:19:b6:10:66:2c:2c:c0:56:47:f9:
38:c6:7a:2f:c2:23:55:24:06:2a:03:cb:c0:32:66:5a:c1:26:
9d:bc:e6:02:82:f5:14:5d:ef:01:b5:71:e0:45:5c:28:8f:8f:
71:0e:93:83:31:c7:7d:9a:3c:c9:cf:4d:6f:21:80:f1:ba:5e:
63:81:98:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwy9+Hma85s5aA+zKzEJevMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdlMmVkYTY5NTJiMDNlOGJhNDU5OTdiZTYxNWQ3YWJlZTE3
ODRmODMwHhcNMjMwMTAyMDQ0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTdiZTc5YTY4NTgwOWNkM2Q5ZTI1ZGI1YzYyMjgxNjE1ZDc4MGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+ZNxqDfwNQm70SsJJnMHMkDdR0e
icrWwOiFzcTGvPA8ABBRkTenxfIO65ibJ4vtbczBibQlrwRx8t1CCd8VbYmeXZ+N
0ggatDjWwMJDX9kpWrMVnVb9rFkvo90OTYU/fvjjJuMzrq6WXxD6hqlhJw4Ini89
rtxiMvjjsOa7++0RptAxIRfovcJCEAtKA1TRMdcCiXUcEFCnoTxloKt39dWANP4L
KfrLbH8GHosSks+Cit+PQ5lG63Bxm3fiHW5Dy6F65tbKgb/q+tcMQHKqh8QVlohp
RJq5NKQnh4aoyQSypyMpbIxZep5mGzKtF9Z8NjNPleISsPj+sws3xQ3EcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA5755poWAnNPZ4l21xiKBYV14DhMB8GA1UdIwQY
MBaAFH4u2mlSsD6LpFmXvmFder7heE+DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmk3YWFWS3dQb3VrV1plLVlWMTZ2dUY0VDRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zODA0MDAtZGMyZS00OTRhLTg5MWEt
MmYyMzAwYjZlM2Q5LzEvRG52bm1taFlDYzA5bmlYYlhHSW9GaFhYZ09FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8zODA0MDAtZGMyZS00OTRhLTg5MWEtMmYyMzAwYjZlM2Q5
LzEvZmk3YWFWS3dQb3VrV1plLVlWMTZ2dUY0VDRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCV+9kMA0G
CSqGSIb3DQEBCwUAA4IBAQBnB0qgSRIyjmrR15kSS+sjFON3V58vzF2TVeSBnExm
7okF4FugxDgyy4STLGkzNU9TRuyUK9a6TTFPQvSFXCNM5jgJnWQy1YYVnhw/2NSK
IfMn75q439oBiJhKF1Lnu3aR/zIcVboan7fBr4v8nzgiNiSHaML/MeQmN1Kgwq4Q
+C0ixjybSCF9Jsp0OvegmliJ3frIyHNsCW7MooT/+E0sqJOKLz6bfPMo21TyIBis
oA4KKg6hav5ArCAcBxm2EGYsLMBWR/k4xnovwiNVJAYqA8vAMmZawSadvOYCgvUU
Xe8BtXHgRVwoj49xDpODMcd9mjzJz01vIYDxul5jgZj1
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:18 2024 by rpki-client on console-ams.rpki-client.org