Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/lPvmd1oIpiyQLvgQpZcZb1Lyoto.roa
File: lPvmd1oIpiyQLvgQpZcZb1Lyoto.roa (raw, json)
Hash identifier: kwUdynIEXpTOYdwsru76eYUU0c0xucUUSSrWeBEJ414=
Subject key identifier: 94:FB:E6:77:5A:08:A6:2C:90:2E:F8:10:A5:97:19:6F:52:F2:A2:DA
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018570028585797936C79F229C26FE8B09E6
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/lPvmd1oIpiyQLvgQpZcZb1Lyoto.roa
Signing time: Mon 02 Jan 2023 01:04:51 +0000
ROA not before: Mon 02 Jan 2023 01:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49887
IP address blocks: 84.44.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:85:85:79:79:36:c7:9f:22:9c:26:fe:8b:09:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94fbe6775a08a62c902ef810a597196f52f2a2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5c:07:f5:bb:c5:42:b6:dc:c8:fb:16:f7:bf:
2b:10:cd:e2:be:79:c8:41:a6:5e:ba:c1:bd:50:83:
10:b2:77:3f:48:45:b1:01:46:a0:64:d8:97:92:5b:
d6:1d:41:f4:e9:3e:25:fc:a9:89:35:58:1a:ac:e6:
7b:18:32:72:43:fb:ad:d8:e3:95:5a:eb:5a:0e:1c:
39:44:f6:de:01:16:6a:65:86:79:c0:99:e3:5d:d9:
a0:44:5f:0b:b8:06:4d:3b:c3:a0:39:fa:51:b3:40:
cf:4f:58:7d:cf:94:d6:a4:b1:96:be:1d:a4:d4:2a:
d9:9d:86:15:5f:71:cb:04:28:76:c4:59:bf:ce:17:
55:49:71:77:91:f5:cc:ef:54:92:b3:99:1d:f7:5d:
de:14:d7:7c:84:86:44:a5:0e:7f:4b:bf:02:b7:2a:
44:9c:91:50:08:a7:ef:09:22:f6:dc:8e:4d:2c:73:
96:54:e7:f5:a8:92:52:ee:ca:0b:27:9d:54:fa:4f:
a6:05:4e:49:2b:90:11:2d:07:e7:66:ac:fa:3d:e0:
e6:b9:0a:d8:14:7d:7a:92:b0:5d:e7:25:ba:36:fe:
bd:46:e9:eb:90:9c:fc:5d:b3:bb:42:71:2a:d6:d2:
dd:c6:6c:cd:0a:df:7b:14:a5:3b:dd:b2:5b:75:da:
02:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FB:E6:77:5A:08:A6:2C:90:2E:F8:10:A5:97:19:6F:52:F2:A2:DA
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/lPvmd1oIpiyQLvgQpZcZb1Lyoto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.44.16.0/24
Signature Algorithm: sha256WithRSAEncryption
70:bd:6e:cc:d7:73:f3:81:e6:06:0b:15:b2:d7:29:cc:e5:8f:
fb:2b:2e:4e:97:91:d0:73:16:b7:16:ce:b5:24:5d:ba:c9:54:
7e:9e:94:ec:8f:76:a3:6b:b4:8b:a7:f0:15:e9:38:25:94:ee:
9d:4e:21:50:ed:b4:30:6d:f7:ce:a9:20:f4:2a:1f:22:28:55:
d8:17:86:a8:72:e8:16:84:f2:3c:b8:ff:f4:9d:4d:c2:2a:0d:
ca:72:5c:fe:39:2c:63:27:4c:00:37:a4:19:be:dd:06:4b:fa:
7a:ac:1b:10:bb:43:98:2f:a1:77:f8:54:39:9f:32:a8:ec:67:
1c:57:a8:72:37:40:73:46:a5:05:48:34:67:d1:a6:2f:24:a0:
aa:01:d7:86:13:c4:cf:bb:1b:1e:0a:f7:b8:fc:a0:e3:76:87:
c4:ec:e9:fa:53:a3:2d:2e:25:6e:e1:89:84:62:0c:82:15:9e:
e8:71:a3:3c:3b:be:ad:44:1b:2e:d3:c0:79:4a:68:11:a5:e3:
f2:c4:b4:89:88:e5:a5:c3:16:60:88:ba:3a:c0:0a:23:93:65:
ca:0d:d4:2a:be:5c:c2:b3:ae:9f:8c:79:f3:07:01:b8:42:90:
48:4f:42:2a:c7:b3:ae:87:fa:31:79:cb:5c:74:49:87:7c:a6:
b9:33:f8:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwAoWFeXk2x58inCb+iwnmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2OGZlMzVjYzk2MjYzM2EyNzU3YWYxMGEwZTZlOGFiNmQw
MWY0YzkwHhcNMjMwMTAyMDEwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGZiZTY3NzVhMDhhNjJjOTAyZWY4MTBhNTk3MTk2ZjUyZjJhMmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVwH9bvFQrbcyPsW978rEM3ivnnI
QaZeusG9UIMQsnc/SEWxAUagZNiXklvWHUH06T4l/KmJNVgarOZ7GDJyQ/ut2OOV
WutaDhw5RPbeARZqZYZ5wJnjXdmgRF8LuAZNO8OgOfpRs0DPT1h9z5TWpLGWvh2k
1CrZnYYVX3HLBCh2xFm/zhdVSXF3kfXM71SSs5kd913eFNd8hIZEpQ5/S78CtypE
nJFQCKfvCSL23I5NLHOWVOf1qJJS7soLJ51U+k+mBU5JK5ARLQfnZqz6PeDmuQrY
FH16krBd5yW6Nv69RunrkJz8XbO7QnEq1tLdxmzNCt97FKU73bJbddoC0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJT75ndaCKYskC74EKWXGW9S8qLaMB8GA1UdIwQY
MBaAFFaP41zJYmM6J1evEKDm6KttAfTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMt
ODNkNjQ4Zjc5NzQ2LzEvbFB2bWQxb0lwaXlRTHZnUXBaY1piMUx5b3RvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8zN2ViZTYtOGJmZS00YzFmLWExODMtODNkNjQ4Zjc5NzQ2
LzEvVm9falhNbGlZem9uVjY4UW9PYm9xMjBCOU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCwQMA0G
CSqGSIb3DQEBCwUAA4IBAQBwvW7M13PzgeYGCxWy1ynM5Y/7Ky5Ol5HQcxa3Fs61
JF26yVR+npTsj3aja7SLp/AV6TgllO6dTiFQ7bQwbffOqSD0Kh8iKFXYF4aocugW
hPI8uP/0nU3CKg3Kclz+OSxjJ0wAN6QZvt0GS/p6rBsQu0OYL6F3+FQ5nzKo7Gcc
V6hyN0BzRqUFSDRn0aYvJKCqAdeGE8TPuxseCve4/KDjdofE7On6U6MtLiVu4YmE
YgyCFZ7ocaM8O76tRBsu08B5SmgRpePyxLSJiOWlwxZgiLo6wAojk2XKDdQqvlzC
s66fjHnzBwG4QpBIT0Iqx7Ouh/oxectcdEmHfKa5M/hZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org