Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/ldC1GScGZBq7WBYZU4yfI5lnDRM.roa
File: ldC1GScGZBq7WBYZU4yfI5lnDRM.roa (raw, json)
Hash identifier: AK8C7mM3l1oRj0RJ9PEgWj03kVR2PDrOYakolrrKX58=
Subject key identifier: 95:D0:B5:19:27:06:64:1A:BB:58:16:19:53:8C:9F:23:99:67:0D:13
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 0188B3BDBC38A52FD07155F29930260C929E
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/ldC1GScGZBq7WBYZU4yfI5lnDRM.roa
Signing time: Tue 13 Jun 2023 07:52:16 +0000
ROA not before: Tue 13 Jun 2023 07:52:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59650
IP address blocks: 92.240.152.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b3:bd:bc:38:a5:2f:d0:71:55:f2:99:30:26:0c:92:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Jun 13 07:52:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95d0b5192706641abb581619538c9f2399670d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:86:aa:5b:46:46:83:52:9c:db:d8:25:61:f8:
89:b3:bc:de:12:31:2c:71:ad:5b:3f:a8:78:b4:65:
cb:19:c7:e4:a0:a4:f0:48:79:0c:b7:f4:c5:20:57:
50:e6:05:7d:8b:66:eb:bb:29:9c:99:97:4c:54:64:
75:38:67:98:a0:b1:06:37:bd:58:72:49:e2:a3:43:
5e:66:5c:b1:d3:47:ae:eb:fd:b5:06:0b:64:7c:2e:
ec:41:96:df:33:54:64:5a:8e:81:df:e2:5a:5e:56:
95:ed:40:19:91:43:88:28:9f:13:1d:65:d6:d1:d8:
89:ca:c7:9c:c5:8d:f3:36:38:1b:0b:b1:1e:8e:62:
3d:15:b7:a9:7e:b4:4e:ac:19:29:af:2d:43:e3:d0:
ee:d5:3e:b6:7a:a0:3f:b5:80:37:eb:6a:a5:d1:b0:
75:88:83:26:65:93:63:c6:be:20:96:1c:ed:54:51:
c3:7d:07:8d:ff:e6:4c:80:5e:f0:25:59:7f:00:b7:
ca:4d:34:23:0c:f7:b1:63:87:aa:99:b5:64:01:d5:
5e:32:a4:a9:5c:37:0e:33:0c:86:3c:ff:98:b8:76:
f4:6f:f4:49:2e:11:6e:47:2c:9a:1b:86:15:57:6a:
7d:57:32:25:7a:97:80:7f:87:44:da:2f:2b:8b:56:
ca:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D0:B5:19:27:06:64:1A:BB:58:16:19:53:8C:9F:23:99:67:0D:13
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/ldC1GScGZBq7WBYZU4yfI5lnDRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.240.152.0/21
Signature Algorithm: sha256WithRSAEncryption
94:fd:16:22:70:74:0b:41:f9:d0:4f:39:2d:8b:31:a3:1f:cf:
03:71:1e:29:be:33:2f:14:8e:02:44:ed:7d:f2:9e:68:5c:c8:
b6:65:f0:24:ed:e8:21:08:98:1a:e9:bf:f5:26:52:77:02:24:
44:14:7d:e4:60:95:41:6e:62:72:a4:5a:8f:ac:b0:c2:e4:46:
5e:82:8f:fb:2b:ce:9e:f5:55:88:a0:8c:ca:f9:93:e3:6f:0f:
9a:f0:51:2b:75:51:2c:a2:0e:c0:8f:e2:ae:2c:54:47:f7:3e:
ef:0a:f7:88:67:6d:0b:5f:29:66:7d:14:72:c0:b4:22:ab:d9:
a4:ee:53:43:47:7c:1e:0e:c9:3b:1d:38:ee:bc:8b:e9:73:03:
89:6d:bf:c1:59:81:d2:a6:06:af:93:90:f3:9b:e2:b4:2e:c5:
43:f6:9b:84:d6:bd:ad:2b:7c:2d:b8:48:ff:07:01:0b:21:5a:
79:29:92:c5:b8:8a:c2:f0:e1:85:91:99:d1:7d:65:46:51:85:
73:84:2a:ed:ee:05:ff:fd:af:c9:36:b3:49:95:5d:40:fa:6a:
29:63:48:00:45:40:37:c4:19:ce:e4:8b:59:ca:f6:b3:7a:54:
c1:38:46:ae:e2:62:99:dc:b2:65:35:f4:aa:76:ba:c4:0a:1c:
20:db:07:72
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYizvbw4pS/QcVXymTAmDJKeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MmNiMjg4MjA5OTAwZDFhZjFhOTk4YmIwMzllYzc1N2U0
OTNkZDUwHhcNMjMwNjEzMDc1MjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWQwYjUxOTI3MDY2NDFhYmI1ODE2MTk1MzhjOWYyMzk5NjcwZDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoaqW0ZGg1Kc29glYfiJs7zeEjEs
ca1bP6h4tGXLGcfkoKTwSHkMt/TFIFdQ5gV9i2bruymcmZdMVGR1OGeYoLEGN71Y
cknio0NeZlyx00eu6/21BgtkfC7sQZbfM1RkWo6B3+JaXlaV7UAZkUOIKJ8THWXW
0diJysecxY3zNjgbC7EejmI9FbepfrROrBkpry1D49Du1T62eqA/tYA362ql0bB1
iIMmZZNjxr4glhztVFHDfQeN/+ZMgF7wJVl/ALfKTTQjDPexY4eqmbVkAdVeMqSp
XDcOMwyGPP+YuHb0b/RJLhFuRyyaG4YVV2p9VzIlepeAf4dE2i8ri1bKcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJXQtRknBmQau1gWGVOMnyOZZw0TMB8GA1UdIwQY
MBaAFEcssoggmQDRrxqZi7A57HV+ST3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYt
YWE5MDJkYmFlOTI4LzEvbGRDMUdTY0daQnE3V0JZWlU0eWZJNWxuRFJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9mOWI2YjktYjc4Ny00ZTI4LWIwYmYtYWE5MDJkYmFlOTI4
LzEvUnl5eWlDQ1pBTkd2R3BtTHNEbnNkWDVKUGRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXPCYMA0G
CSqGSIb3DQEBCwUAA4IBAQCU/RYicHQLQfnQTzktizGjH88DcR4pvjMvFI4CRO19
8p5oXMi2ZfAk7eghCJga6b/1JlJ3AiREFH3kYJVBbmJypFqPrLDC5EZego/7K86e
9VWIoIzK+ZPjbw+a8FErdVEsog7Aj+KuLFRH9z7vCveIZ20LXylmfRRywLQiq9mk
7lNDR3weDsk7HTjuvIvpcwOJbb/BWYHSpgavk5Dzm+K0LsVD9puE1r2tK3wtuEj/
BwELIVp5KZLFuIrC8OGFkZnRfWVGUYVzhCrt7gX//a/JNrNJlV1A+mopY0gARUA3
xBnO5ItZyvazelTBOEau4mKZ3LJlNfSqdrrEChwg2wdy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:53 2024 by rpki-client on console-fra.rpki-client.org