Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/a8a9FvPa1VPOZABexN44FBpWmK4.roa
File: a8a9FvPa1VPOZABexN44FBpWmK4.roa (raw, json)
Hash identifier: lEUm5wetAaZxpqz5TsHYIXTTX26nx0kKakdUXml/yUY=
Subject key identifier: 6B:C6:BD:16:F3:DA:D5:53:CE:64:00:5E:C4:DE:38:14:1A:56:98:AE
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF975DA2A5498D8EC5B462F5AAB4E08
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/a8a9FvPa1VPOZABexN44FBpWmK4.roa
Signing time: Mon 02 Jan 2023 00:54:57 +0000
ROA not before: Mon 02 Jan 2023 00:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49421
IP address blocks: 78.83.238.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:75:da:2a:54:98:d8:ec:5b:46:2f:5a:ab:4e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6bc6bd16f3dad553ce64005ec4de38141a5698ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:01:dd:b0:b2:0b:86:1f:02:e8:3d:73:2b:2e:
4b:45:d0:e5:32:34:ee:6f:c9:49:0e:29:e0:07:52:
fa:b2:f4:23:ea:b8:a0:1a:02:4b:c4:39:70:4b:c7:
ee:06:d0:cd:5b:3a:72:02:1c:09:3f:f6:e6:4a:e4:
95:9d:2f:50:f3:2a:99:0a:df:35:94:62:08:68:ff:
a0:24:02:a1:5d:4d:3e:fd:fd:9d:cf:7b:f3:9a:9d:
d6:a5:0a:05:d5:92:2e:5d:7c:f3:e3:3b:fa:ed:0c:
cd:a3:00:1a:80:49:64:b4:e2:8e:44:3d:cc:f7:24:
57:7d:9e:24:e3:9b:8c:37:35:0e:38:81:33:73:ea:
0d:6c:8d:a1:7f:b5:d7:14:85:3d:17:cb:07:ca:47:
f8:36:a5:37:40:d1:f7:fb:8a:2a:f7:f9:1f:7b:aa:
8e:03:1c:43:ad:e8:77:51:b0:39:60:0a:a7:12:f6:
a7:e0:2b:20:20:8f:ee:fb:70:a3:32:22:63:7f:07:
72:96:8a:10:48:77:a6:e2:71:5e:63:de:50:14:29:
aa:c8:30:3e:7f:24:02:c1:66:30:8f:b9:fc:18:74:
44:4f:b2:2d:51:ce:cc:51:5d:6b:e0:64:75:b3:c0:
5c:a2:33:cd:33:30:65:32:8a:c0:4c:e4:b0:02:ed:
fe:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C6:BD:16:F3:DA:D5:53:CE:64:00:5E:C4:DE:38:14:1A:56:98:AE
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/a8a9FvPa1VPOZABexN44FBpWmK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.83.238.0/23
Signature Algorithm: sha256WithRSAEncryption
86:ea:cf:69:45:3b:6c:24:ff:fa:7d:f6:94:fc:5f:6d:cf:5c:
e0:2d:4d:89:cb:97:56:ca:54:7f:af:d2:9c:d8:e5:91:42:dc:
af:a8:ad:9e:40:64:01:b3:72:5c:90:9f:eb:b2:43:01:24:09:
2f:d2:7b:b1:41:dc:eb:11:aa:ee:26:d0:71:d6:ef:4c:13:51:
aa:4a:ce:d5:3a:50:ac:3c:d0:9a:b6:b1:70:76:d4:d3:76:d4:
3f:13:78:fe:b2:7d:a4:f2:0e:b9:d9:8f:62:f0:95:cc:48:2a:
95:aa:39:ec:86:e5:43:f8:81:f6:0f:ef:94:55:53:44:db:5c:
9a:43:79:ec:86:c9:d5:22:43:64:15:56:7c:ee:57:7a:79:75:
ba:39:7e:61:58:f0:b3:6b:92:85:c6:a3:82:1e:76:dd:76:51:
1d:48:e1:bb:01:94:a0:70:68:3c:55:66:50:13:1f:a1:5b:30:
bf:f2:cd:a7:22:1b:42:6a:3d:43:9e:1a:da:42:00:8c:d0:be:
2a:65:99:c6:c8:dc:fa:86:e1:fb:67:58:24:ab:aa:a7:3d:29:
36:c4:f0:35:50:25:7f:07:2e:01:1f:d6:5b:a7:30:13:ac:07:
57:b1:64:bd:fa:d4:9a:74:70:0a:dd:c5:0d:f7:60:f1:da:40:
3a:8a:10:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+XXaKlSY2OxbRi9aq04IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwMTAyMDA1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmM2YmQxNmYzZGFkNTUzY2U2NDAwNWVjNGRlMzgxNDFhNTY5OGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgHdsLILhh8C6D1zKy5LRdDlMjTu
b8lJDingB1L6svQj6rigGgJLxDlwS8fuBtDNWzpyAhwJP/bmSuSVnS9Q8yqZCt81
lGIIaP+gJAKhXU0+/f2dz3vzmp3WpQoF1ZIuXXzz4zv67QzNowAagElktOKORD3M
9yRXfZ4k45uMNzUOOIEzc+oNbI2hf7XXFIU9F8sHykf4NqU3QNH3+4oq9/kfe6qO
AxxDreh3UbA5YAqnEvan4CsgII/u+3CjMiJjfwdylooQSHem4nFeY95QFCmqyDA+
fyQCwWYwj7n8GHRET7ItUc7MUV1r4GR1s8BcojPNMzBlMorATOSwAu3+cQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGvGvRbz2tVTzmQAXsTeOBQaVpiuMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvYThhOUZ2UGExVlBPWkFCZXhONDRGQnBXbUs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTlPuMA0G
CSqGSIb3DQEBCwUAA4IBAQCG6s9pRTtsJP/6ffaU/F9tz1zgLU2Jy5dWylR/r9Kc
2OWRQtyvqK2eQGQBs3JckJ/rskMBJAkv0nuxQdzrEaruJtBx1u9ME1GqSs7VOlCs
PNCatrFwdtTTdtQ/E3j+sn2k8g652Y9i8JXMSCqVqjnshuVD+IH2D++UVVNE21ya
Q3nshsnVIkNkFVZ87ld6eXW6OX5hWPCza5KFxqOCHnbddlEdSOG7AZSgcGg8VWZQ
Ex+hWzC/8s2nIhtCaj1DnhraQgCM0L4qZZnGyNz6huH7Z1gkq6qnPSk2xPA1UCV/
By4BH9ZbpzATrAdXsWS9+tSadHAK3cUN92Dx2kA6ihA/
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org