Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/3w7OtU6HYrSH6lCAMiOk7U4b1yc.roa
File: 3w7OtU6HYrSH6lCAMiOk7U4b1yc.roa (raw, json)
Hash identifier: g9mzG8wVxOqLRr/fruAnFjBoFh/XBmYIYI5abEV3RLo=
Subject key identifier: DF:0E:CE:B5:4E:87:62:B4:87:EA:50:80:32:23:A4:ED:4E:1B:D7:27
Certificate issuer: /CN=63d92b8256159894d2b9b25f4d85986c172723c3
Certificate serial: 018570673B7A341155A902F69A93EB6DC48A
Authority key identifier: 63:D9:2B:82:56:15:98:94:D2:B9:B2:5F:4D:85:98:6C:17:27:23:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y9krglYVmJTSubJfTYWYbBcnI8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/3w7OtU6HYrSH6lCAMiOk7U4b1yc.roa
Signing time: Mon 02 Jan 2023 02:54:51 +0000
ROA not before: Mon 02 Jan 2023 02:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 81.20.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 10:45:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:3b:7a:34:11:55:a9:02:f6:9a:93:eb:6d:c4:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63d92b8256159894d2b9b25f4d85986c172723c3
Validity
Not Before: Jan 2 02:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df0eceb54e8762b487ea50803223a4ed4e1bd727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bf:0d:0a:31:48:7b:33:f6:4b:07:4c:8d:14:
2e:00:a2:72:ec:b6:19:a0:8a:74:0f:ec:07:be:1b:
bf:83:0a:05:73:bb:52:20:b5:12:34:cd:68:b1:49:
cb:25:db:4a:79:ac:07:a5:bb:04:fc:22:29:37:9f:
ed:68:84:fc:87:b7:db:03:ed:e0:79:db:a9:b0:bc:
c9:c3:a8:eb:d3:7d:ac:f0:0f:54:fc:20:c0:1e:ad:
6e:d1:eb:68:da:57:13:c9:6d:8f:46:1a:f0:46:a7:
1a:f6:eb:88:c4:42:1c:28:3b:b3:32:03:52:53:1f:
d1:91:ab:f3:62:8b:10:df:d7:c4:50:4e:b0:28:c5:
24:0d:66:b9:32:69:c4:b6:de:85:2c:f9:49:9b:f9:
84:d4:11:7d:66:5c:08:47:b7:d8:3d:3c:55:56:5c:
06:03:a1:c5:1a:85:4f:0c:5d:88:6e:62:67:06:cb:
27:e2:54:05:15:5b:48:b5:08:bf:21:7c:8d:91:99:
23:b7:8b:a8:e9:d9:36:91:db:90:60:c5:dc:33:fb:
54:f9:e1:cd:a9:f1:a5:7b:28:3b:94:8d:2c:a4:cc:
f0:77:df:01:9c:dc:9d:1c:22:87:28:93:98:5d:26:
8c:55:56:00:8b:c3:a5:46:bb:a5:a2:64:45:68:9f:
db:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:0E:CE:B5:4E:87:62:B4:87:EA:50:80:32:23:A4:ED:4E:1B:D7:27
X509v3 Authority Key Identifier:
keyid:63:D9:2B:82:56:15:98:94:D2:B9:B2:5F:4D:85:98:6C:17:27:23:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y9krglYVmJTSubJfTYWYbBcnI8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/3w7OtU6HYrSH6lCAMiOk7U4b1yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/26d917-8c91-45ab-8442-e4e52ac0fefe/1/Y9krglYVmJTSubJfTYWYbBcnI8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.20.41.0/24
Signature Algorithm: sha256WithRSAEncryption
18:e6:68:ef:a7:4e:3e:e2:52:65:e0:81:3c:ad:79:2e:c6:e8:
a5:07:fe:65:c3:7b:51:5e:ca:15:f5:15:18:8b:29:a8:1e:80:
34:52:79:a3:b0:e4:06:44:15:78:8d:ce:65:c5:f7:0f:b2:a2:
16:61:3a:9e:5a:93:ae:86:3d:19:67:ef:89:98:17:14:1c:4b:
69:66:1a:df:7a:a0:d0:a4:bf:fa:10:91:6c:fe:26:98:43:8a:
7b:6b:ff:86:f2:63:e9:6c:7d:19:21:09:c6:56:cb:9b:c3:39:
1c:c8:8d:f2:be:45:ab:48:90:26:19:53:20:d0:53:75:f8:08:
b0:af:06:d4:78:ed:d7:33:86:06:8b:96:04:6f:03:5f:e5:2c:
0d:6f:4f:a0:3a:b3:f5:4d:9f:3a:2f:32:c4:09:46:65:cb:28:
4f:99:20:fd:77:38:ca:0b:48:d3:1f:45:e9:fd:99:f8:42:00:
6a:c4:55:1d:8a:a7:d3:67:f3:c9:e5:0e:f9:e9:9f:b2:11:64:
79:99:48:bc:02:06:70:0c:04:ad:8c:c0:86:a5:a0:56:64:a9:
0b:38:85:3a:d4:73:9e:d3:bd:6d:7f:4f:76:50:59:73:9a:72:
0e:15:91:83:9d:af:cd:7a:15:5e:d4:28:1d:a1:14:9d:11:f0:
83:76:b8:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZzt6NBFVqQL2mpPrbcSKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZDkyYjgyNTYxNTk4OTRkMmI5YjI1ZjRkODU5ODZjMTcy
NzIzYzMwHhcNMjMwMTAyMDI1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjBlY2ViNTRlODc2MmI0ODdlYTUwODAzMjIzYTRlZDRlMWJkNzI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnL8NCjFIezP2SwdMjRQuAKJy7LYZ
oIp0D+wHvhu/gwoFc7tSILUSNM1osUnLJdtKeawHpbsE/CIpN5/taIT8h7fbA+3g
edupsLzJw6jr032s8A9U/CDAHq1u0eto2lcTyW2PRhrwRqca9uuIxEIcKDuzMgNS
Ux/RkavzYosQ39fEUE6wKMUkDWa5MmnEtt6FLPlJm/mE1BF9ZlwIR7fYPTxVVlwG
A6HFGoVPDF2IbmJnBssn4lQFFVtItQi/IXyNkZkjt4uo6dk2kduQYMXcM/tU+eHN
qfGleyg7lI0spMzwd98BnNydHCKHKJOYXSaMVVYAi8OlRrulomRFaJ/b0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN8OzrVOh2K0h+pQgDIjpO1OG9cnMB8GA1UdIwQY
MBaAFGPZK4JWFZiU0rmyX02FmGwXJyPDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTlrcmdsWVZtSlRTdWJKZlRZV1liQmNuSThNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yNmQ5MTctOGM5MS00NWFiLTg0NDIt
ZTRlNTJhYzBmZWZlLzEvM3c3T3RVNkhZclNINmxDQU1pT2s3VTRiMXljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8yNmQ5MTctOGM5MS00NWFiLTg0NDItZTRlNTJhYzBmZWZl
LzEvWTlrcmdsWVZtSlRTdWJKZlRZV1liQmNuSThNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURQpMA0G
CSqGSIb3DQEBCwUAA4IBAQAY5mjvp04+4lJl4IE8rXkuxuilB/5lw3tRXsoV9RUY
iymoHoA0UnmjsOQGRBV4jc5lxfcPsqIWYTqeWpOuhj0ZZ++JmBcUHEtpZhrfeqDQ
pL/6EJFs/iaYQ4p7a/+G8mPpbH0ZIQnGVsubwzkcyI3yvkWrSJAmGVMg0FN1+Aiw
rwbUeO3XM4YGi5YEbwNf5SwNb0+gOrP1TZ86LzLECUZlyyhPmSD9dzjKC0jTH0Xp
/Zn4QgBqxFUdiqfTZ/PJ5Q756Z+yEWR5mUi8AgZwDAStjMCGpaBWZKkLOIU61HOe
071tf092UFlzmnIOFZGDna/NehVe1CgdoRSdEfCDdrjM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:26 2024 by rpki-client on console-fra.rpki-client.org