Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/RxRiRmp4IoJ3Up8fP0AKPUYfVEY.roa
File: RxRiRmp4IoJ3Up8fP0AKPUYfVEY.roa (raw, json)
Hash identifier: Iyk1nG/EcSsShinu5mtiJyiJxCTnWzLi39s8DphrDHU=
Subject key identifier: 47:14:62:46:6A:78:22:82:77:52:9F:1F:3F:40:0A:3D:46:1F:54:46
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF96351CB2F660E5F4D8D266EC3C799
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/RxRiRmp4IoJ3Up8fP0AKPUYfVEY.roa
Signing time: Mon 02 Jan 2023 00:54:52 +0000
ROA not before: Mon 02 Jan 2023 00:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8672
IP address blocks: 151.251.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:63:51:cb:2f:66:0e:5f:4d:8d:26:6e:c3:c7:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=471462466a78228277529f1f3f400a3d461f5446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:19:a0:85:ae:8a:bc:c4:c7:43:dd:88:d0:4d:
f6:c8:0e:21:29:5f:35:27:e6:e2:74:6a:01:be:14:
c9:62:87:2b:32:42:0d:c6:e4:b5:9d:81:ec:b8:90:
5d:ae:64:3c:e6:e2:2c:67:46:11:26:f5:5e:43:ba:
8a:3a:c2:c1:66:f2:77:90:55:1b:bc:4f:86:fd:6c:
96:09:9f:73:9a:56:93:83:ed:2f:53:28:f9:88:18:
22:92:3d:51:96:7d:52:70:b1:2d:38:da:7c:da:b2:
83:bd:e7:00:df:4f:8a:44:c5:ca:47:e4:b7:db:d5:
1c:39:05:59:31:59:b7:8c:96:5a:fc:bb:a7:8b:c9:
ac:9b:e9:ae:21:82:c2:75:c1:b2:bf:0d:b3:ba:4d:
ec:e7:65:b9:9d:60:53:b1:a4:dd:6f:88:60:21:84:
ff:9a:2c:3e:70:e1:92:2c:b8:16:6f:47:fa:89:69:
89:c2:db:77:b9:ab:26:0b:6e:c7:1e:2a:8b:17:f1:
d6:59:a1:6a:90:14:3e:15:46:0a:45:bb:a2:11:98:
9f:99:b2:30:d2:e2:b5:55:d7:fd:96:47:a8:bb:77:
a1:3d:0e:db:dc:c8:4f:c9:c8:9a:ca:e2:7a:27:9c:
fe:c5:b5:94:54:d8:08:17:27:da:9f:b6:a4:84:af:
0f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:14:62:46:6A:78:22:82:77:52:9F:1F:3F:40:0A:3D:46:1F:54:46
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/RxRiRmp4IoJ3Up8fP0AKPUYfVEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.251.39.0/24
Signature Algorithm: sha256WithRSAEncryption
48:6e:5d:97:6f:5d:0f:99:ab:a9:c0:e6:2c:9f:c7:b2:b7:4d:
ae:11:0a:3b:8a:10:44:a8:c4:55:12:56:d1:9b:fe:15:b1:57:
b3:2f:ec:ad:2b:e8:57:31:12:1b:21:2d:df:0e:4a:b4:39:f6:
11:6d:5c:4c:f2:31:f3:b0:40:8d:4b:58:24:ff:32:6b:8e:08:
3f:12:a6:39:a9:16:3c:d6:01:5c:57:61:80:8c:a8:4c:77:55:
1b:35:dd:b9:57:43:07:89:f5:99:dd:92:61:0a:95:38:af:2a:
7c:c2:54:a1:a4:f2:fb:0e:47:e7:af:69:25:43:ea:be:94:f8:
a1:2d:04:82:0e:79:0a:cf:e6:6a:28:29:1e:a8:33:87:ee:74:
ab:55:b4:5a:01:d9:24:12:34:9d:ab:0a:d3:36:56:92:3a:d9:
05:03:0e:a4:4a:0b:74:12:4d:d6:1c:f8:ca:c8:1e:6e:ba:c3:
33:2b:0e:94:a3:f1:51:42:4f:75:43:40:7b:cf:31:33:30:19:
a6:00:37:d2:b2:0b:23:28:b9:3f:ba:dd:68:9b:c5:ff:22:e2:
0d:79:c2:27:8e:20:27:56:ed:3b:15:5b:ee:41:e9:a6:2a:66:
8a:c9:c7:06:4e:27:90:9f:59:51:fc:e4:ee:49:8c:97:b2:82:
a1:4d:b6:f0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+WNRyy9mDl9NjSZuw8eZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwMTAyMDA1NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzE0NjI0NjZhNzgyMjgyNzc1MjlmMWYzZjQwMGEzZDQ2MWY1NDQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBmgha6KvMTHQ92I0E32yA4hKV81
J+bidGoBvhTJYocrMkINxuS1nYHsuJBdrmQ85uIsZ0YRJvVeQ7qKOsLBZvJ3kFUb
vE+G/WyWCZ9zmlaTg+0vUyj5iBgikj1Rln1ScLEtONp82rKDvecA30+KRMXKR+S3
29UcOQVZMVm3jJZa/Luni8msm+muIYLCdcGyvw2zuk3s52W5nWBTsaTdb4hgIYT/
miw+cOGSLLgWb0f6iWmJwtt3uasmC27HHiqLF/HWWaFqkBQ+FUYKRbuiEZifmbIw
0uK1Vdf9lkeou3ehPQ7b3MhPyciayuJ6J5z+xbWUVNgIFyfan7akhK8POwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEcUYkZqeCKCd1KfHz9ACj1GH1RGMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvUnhSaVJtcDRJb0ozVXA4ZlAwQUtQVVlmVkVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/snMA0G
CSqGSIb3DQEBCwUAA4IBAQBIbl2Xb10PmaupwOYsn8eyt02uEQo7ihBEqMRVElbR
m/4VsVezL+ytK+hXMRIbIS3fDkq0OfYRbVxM8jHzsECNS1gk/zJrjgg/EqY5qRY8
1gFcV2GAjKhMd1UbNd25V0MHifWZ3ZJhCpU4ryp8wlShpPL7Dkfnr2klQ+q+lPih
LQSCDnkKz+ZqKCkeqDOH7nSrVbRaAdkkEjSdqwrTNlaSOtkFAw6kSgt0Ek3WHPjK
yB5uusMzKw6Uo/FRQk91Q0B7zzEzMBmmADfSsgsjKLk/ut1om8X/IuINecInjiAn
Vu07FVvuQemmKmaKyccGTieQn1lR/OTuSYyXsoKhTbbw
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:00 2024 by rpki-client on console-fra.rpki-client.org