Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/LLfntkm3JuObuX0WYMo2Jrq4PyM.roa
File: LLfntkm3JuObuX0WYMo2Jrq4PyM.roa (raw, json)
Hash identifier: hb/XsfHRGLtQD1exZ+Ot8ZanB9XixGYCNwC6UBXsPsc=
Subject key identifier: 2C:B7:E7:B6:49:B7:26:E3:9B:B9:7D:16:60:CA:36:26:BA:B8:3F:23
Certificate issuer: /CN=0807601bc44422c8d23a3cd72bfea1bbf2a0563a
Certificate serial: 01856C9CDE2C0CF852ED36B37A415E344AC0
Authority key identifier: 08:07:60:1B:C4:44:22:C8:D2:3A:3C:D7:2B:FE:A1:BB:F2:A0:56:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAdgG8REIsjSOjzXK_6hu_KgVjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/LLfntkm3JuObuX0WYMo2Jrq4PyM.roa
Signing time: Sun 01 Jan 2023 09:14:57 +0000
ROA not before: Sun 01 Jan 2023 09:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8823
IP address blocks: 194.180.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:de:2c:0c:f8:52:ed:36:b3:7a:41:5e:34:4a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0807601bc44422c8d23a3cd72bfea1bbf2a0563a
Validity
Not Before: Jan 1 09:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cb7e7b649b726e39bb97d1660ca3626bab83f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:54:70:aa:fa:5f:dd:4c:08:70:0f:77:fe:3c:
28:17:a1:9c:8b:ed:36:d5:22:a8:d8:ae:3d:b1:5c:
34:75:6f:36:2e:7b:aa:c9:f8:08:2f:31:40:f9:c5:
22:6e:c0:ce:b4:4f:25:dd:28:0a:9d:28:5b:9a:15:
d9:3c:a0:a5:2b:fb:1d:0f:3d:1f:3d:2e:c6:63:3a:
23:59:46:41:04:48:a1:a3:63:fa:9d:4f:2f:e7:42:
b4:89:dd:bc:43:a8:ed:b6:3f:ef:5f:a4:e4:79:e8:
59:ac:12:22:9d:3d:0c:f1:7d:ec:f0:2f:ea:6e:10:
42:7b:09:c1:ef:67:c3:f3:2a:6c:e1:f0:10:56:39:
ce:ed:7b:6e:d3:d2:a3:c7:45:5e:cd:f2:05:f1:6a:
10:65:1b:bd:12:96:0c:99:b8:42:bd:b7:b1:dc:aa:
c2:ba:93:d7:3f:63:89:93:f3:8d:40:89:1f:95:7a:
d7:e5:55:0a:fc:b7:97:cd:47:c0:1c:dc:51:d2:6e:
1a:37:87:cc:f9:54:80:e3:fc:8e:55:7f:4c:e0:dd:
1a:d8:5d:18:6e:61:32:62:0f:1b:71:b3:2c:a5:db:
5a:74:fa:c9:ab:40:ff:76:f1:7f:29:7f:6f:4a:24:
e0:5f:17:11:48:7a:ee:e1:39:21:39:2f:b0:fd:7e:
25:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:B7:E7:B6:49:B7:26:E3:9B:B9:7D:16:60:CA:36:26:BA:B8:3F:23
X509v3 Authority Key Identifier:
keyid:08:07:60:1B:C4:44:22:C8:D2:3A:3C:D7:2B:FE:A1:BB:F2:A0:56:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAdgG8REIsjSOjzXK_6hu_KgVjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/LLfntkm3JuObuX0WYMo2Jrq4PyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/CAdgG8REIsjSOjzXK_6hu_KgVjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.199.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e7:15:5f:57:3f:85:70:a8:bb:a8:68:0a:c2:78:27:ae:61:
d9:10:d7:aa:30:b1:44:a9:4a:ca:b3:31:bd:c4:ed:fc:5b:b9:
64:af:84:d7:bd:92:06:ad:d7:11:7c:c6:4b:6c:63:a7:b3:4a:
12:b4:ef:87:c2:52:83:61:a8:9c:25:fd:ba:35:73:f4:e7:75:
28:3b:a0:23:bf:7e:4a:22:08:b7:ab:7e:5d:6a:52:d1:43:d0:
09:99:49:6f:be:00:8c:bb:3c:23:31:70:09:37:9e:5d:23:6c:
19:15:9d:0a:65:f7:0e:dd:47:58:03:e7:d4:73:e2:b1:a5:e6:
8c:f1:90:b5:93:b0:78:3b:b0:14:1f:d8:eb:93:b8:79:12:e3:
fa:f1:44:30:a4:7d:4e:78:ad:d0:99:40:4f:53:d5:b0:e8:6e:
4d:81:88:dc:96:fd:e1:84:18:5d:63:d3:9d:f2:ad:f3:f1:f8:
54:13:67:03:ad:1e:e9:bb:31:bc:2d:53:b5:5e:4d:4f:da:71:
0a:b6:c4:cc:a7:c3:db:cd:66:c9:1e:50:01:da:d3:b2:9b:0d:
61:6f:33:a7:58:3a:82:3c:6e:e9:e6:02:f5:aa:95:5a:b6:d4:
80:cb:a4:19:c1:c4:3e:4f:0f:51:45:90:46:ff:22:69:a6:e7:
8c:fe:80:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsnN4sDPhS7TazekFeNErAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4MDc2MDFiYzQ0NDIyYzhkMjNhM2NkNzJiZmVhMWJiZjJh
MDU2M2EwHhcNMjMwMTAxMDkxNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2I3ZTdiNjQ5YjcyNmUzOWJiOTdkMTY2MGNhMzYyNmJhYjgzZjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlRwqvpf3UwIcA93/jwoF6Gci+02
1SKo2K49sVw0dW82LnuqyfgILzFA+cUibsDOtE8l3SgKnShbmhXZPKClK/sdDz0f
PS7GYzojWUZBBEiho2P6nU8v50K0id28Q6jttj/vX6TkeehZrBIinT0M8X3s8C/q
bhBCewnB72fD8yps4fAQVjnO7Xtu09Kjx0VezfIF8WoQZRu9EpYMmbhCvbex3KrC
upPXP2OJk/ONQIkflXrX5VUK/LeXzUfAHNxR0m4aN4fM+VSA4/yOVX9M4N0a2F0Y
bmEyYg8bcbMspdtadPrJq0D/dvF/KX9vSiTgXxcRSHru4TkhOS+w/X4lIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCy357ZJtybjm7l9FmDKNia6uD8jMB8GA1UdIwQY
MBaAFAgHYBvERCLI0jo81yv+obvyoFY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0FkZ0c4UkVJc2pTT2p6WEtfNmh1X0tnVmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8xODI2MjEtY2M5OS00Mzg1LTkzNjgt
NWQ2MWZlMjYzMWQwLzEvTExmbnRrbTNKdU9idVgwV1lNbzJKcnE0UHlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS8xODI2MjEtY2M5OS00Mzg1LTkzNjgtNWQ2MWZlMjYzMWQw
LzEvQ0FkZ0c4UkVJc2pTT2p6WEtfNmh1X0tnVmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwrTHMA0G
CSqGSIb3DQEBCwUAA4IBAQBK5xVfVz+FcKi7qGgKwngnrmHZENeqMLFEqUrKszG9
xO38W7lkr4TXvZIGrdcRfMZLbGOns0oStO+HwlKDYaicJf26NXP053UoO6Ajv35K
Igi3q35dalLRQ9AJmUlvvgCMuzwjMXAJN55dI2wZFZ0KZfcO3UdYA+fUc+KxpeaM
8ZC1k7B4O7AUH9jrk7h5EuP68UQwpH1OeK3QmUBPU9Ww6G5NgYjclv3hhBhdY9Od
8q3z8fhUE2cDrR7puzG8LVO1Xk1P2nEKtsTMp8PbzWbJHlAB2tOymw1hbzOnWDqC
PG7p5gL1qpVattSAy6QZwcQ+Tw9RRZBG/yJppueM/oBc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org