Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/t95vVu4sihClqVDDH51eMmVQu08.roa
File: t95vVu4sihClqVDDH51eMmVQu08.roa (raw, json)
Hash identifier: 81CUIDcIanb5kqls32UAhYNgA63cUEc9zTAgvdms1Js=
Subject key identifier: B7:DE:6F:56:EE:2C:8A:10:A5:A9:50:C3:1F:9D:5E:32:65:50:BB:4F
Certificate issuer: /CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Certificate serial: 01856F14CE9415BC4EE8C317CCC191354377
Authority key identifier: 24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/t95vVu4sihClqVDDH51eMmVQu08.roa
Signing time: Sun 01 Jan 2023 20:45:12 +0000
ROA not before: Sun 01 Jan 2023 20:45:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48847
IP address blocks: 147.78.44.0/24 maxlen: 24
147.78.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:ce:94:15:bc:4e:e8:c3:17:cc:c1:91:35:43:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2455d7fee4a499ecaf11d2d3da8e389de323412f
Validity
Not Before: Jan 1 20:45:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7de6f56ee2c8a10a5a950c31f9d5e326550bb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:83:06:ac:1b:32:87:01:e5:ad:7a:18:f0:25:
4d:0e:70:66:18:ff:bf:58:bb:76:27:0f:57:38:52:
bc:5c:09:73:85:1c:c7:7e:57:97:04:76:58:5a:de:
43:45:7b:e0:81:6c:7c:06:c0:e9:62:f0:56:34:5b:
20:67:11:54:5d:3d:fe:d7:90:01:24:6c:df:dc:6d:
44:80:7a:04:8d:11:b6:83:ca:bb:87:14:77:d9:b5:
b2:3f:9b:a1:c0:89:f8:82:9e:2c:42:b3:43:d9:ac:
f2:16:6e:60:71:1e:7d:06:cd:5a:69:98:d0:07:ba:
26:db:f0:59:25:e3:91:ac:5d:46:56:42:66:71:05:
c1:f5:67:58:2e:bb:7e:9c:f8:13:68:3e:dd:d6:08:
1b:5e:d5:94:d3:ad:24:af:15:bf:18:7a:ca:eb:82:
63:2b:29:37:39:eb:59:79:17:06:dc:c8:83:2e:c9:
f7:ef:b6:61:b7:17:81:3a:32:10:76:42:d6:6b:f4:
fb:c3:ad:be:ac:79:88:d3:9c:c0:23:da:c4:76:24:
10:a0:3a:15:9f:c0:7e:bb:3f:02:41:0b:8e:89:5e:
ff:01:d2:4c:df:4f:76:12:d7:87:18:4f:4f:a0:26:
60:6b:9c:a3:b2:7b:f8:d5:5d:8b:d0:1c:e7:cc:d5:
94:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DE:6F:56:EE:2C:8A:10:A5:A9:50:C3:1F:9D:5E:32:65:50:BB:4F
X509v3 Authority Key Identifier:
keyid:24:55:D7:FE:E4:A4:99:EC:AF:11:D2:D3:DA:8E:38:9D:E3:23:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFXX_uSkmeyvEdLT2o44neMjQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/t95vVu4sihClqVDDH51eMmVQu08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3ffb76-9931-4942-9da1-1e0465513b63/1/JFXX_uSkmeyvEdLT2o44neMjQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.44.0/23
Signature Algorithm: sha256WithRSAEncryption
21:66:08:08:f8:af:90:6d:12:c2:c0:25:a6:a3:05:80:38:cf:
ca:db:05:00:ed:fc:43:d6:5a:92:5b:0b:4d:9e:58:a2:76:e0:
38:60:5a:d6:c3:c8:f0:c1:2c:a0:23:78:33:0f:e4:4f:06:ed:
07:d2:23:46:32:c0:85:d4:fb:48:cf:2d:2d:f1:63:c5:09:36:
0f:a5:42:a5:c3:17:c4:6f:f1:7a:de:73:72:34:90:77:2d:36:
5f:d9:31:0b:f6:b7:17:cd:f3:dd:22:09:e5:10:a7:de:3d:d8:
b1:f7:5b:49:51:80:2c:de:e1:8c:df:9e:76:ce:18:9f:5b:b3:
f2:63:1a:c6:7f:3e:b0:d5:61:cb:7f:13:2a:81:99:a1:d6:d6:
5a:ae:ac:62:0b:ec:a5:d8:cf:bf:8d:e3:c6:c1:98:13:df:d8:
01:46:94:62:d5:4a:5b:7a:14:d4:bc:1e:f6:09:6f:dc:d5:0e:
fe:f1:27:44:50:7f:c4:68:3e:90:cf:4f:d7:d0:91:72:33:17:
ae:23:57:c8:a1:8b:e2:9c:0c:54:45:1e:8a:b9:ad:f2:a0:34:
08:f2:4e:d1:e8:36:be:9b:91:b9:39:13:90:31:92:a2:ee:86:
4f:fb:95:a4:0f:1b:e7:c5:0f:9b:8d:07:ba:97:e0:8b:86:7c:
52:2d:0e:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFM6UFbxO6MMXzMGRNUN3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0NTVkN2ZlZTRhNDk5ZWNhZjExZDJkM2RhOGUzODlkZTMy
MzQxMmYwHhcNMjMwMTAxMjA0NTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2RlNmY1NmVlMmM4YTEwYTVhOTUwYzMxZjlkNWUzMjY1NTBiYjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoMGrBsyhwHlrXoY8CVNDnBmGP+/
WLt2Jw9XOFK8XAlzhRzHfleXBHZYWt5DRXvggWx8BsDpYvBWNFsgZxFUXT3+15AB
JGzf3G1EgHoEjRG2g8q7hxR32bWyP5uhwIn4gp4sQrND2azyFm5gcR59Bs1aaZjQ
B7om2/BZJeORrF1GVkJmcQXB9WdYLrt+nPgTaD7d1ggbXtWU060krxW/GHrK64Jj
Kyk3OetZeRcG3MiDLsn377ZhtxeBOjIQdkLWa/T7w62+rHmI05zAI9rEdiQQoDoV
n8B+uz8CQQuOiV7/AdJM3092EteHGE9PoCZga5yjsnv41V2L0BznzNWUKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLfeb1buLIoQpalQwx+dXjJlULtPMB8GA1UdIwQY
MBaAFCRV1/7kpJnsrxHS09qOOJ3jI0EvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkZYWF91U2ttZXl2RWRMVDJvNDRuZU1qUVM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8zZmZiNzYtOTkzMS00OTQyLTlkYTEt
MWUwNDY1NTEzYjYzLzEvdDk1dlZ1NHNpaENscVZEREg1MWVNbVZRdTA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8zZmZiNzYtOTkzMS00OTQyLTlkYTEtMWUwNDY1NTEzYjYz
LzEvSkZYWF91U2ttZXl2RWRMVDJvNDRuZU1qUVM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBk04sMA0G
CSqGSIb3DQEBCwUAA4IBAQAhZggI+K+QbRLCwCWmowWAOM/K2wUA7fxD1lqSWwtN
nliiduA4YFrWw8jwwSygI3gzD+RPBu0H0iNGMsCF1PtIzy0t8WPFCTYPpUKlwxfE
b/F63nNyNJB3LTZf2TEL9rcXzfPdIgnlEKfePdix91tJUYAs3uGM3552zhifW7Py
YxrGfz6w1WHLfxMqgZmh1tZarqxiC+yl2M+/jePGwZgT39gBRpRi1UpbehTUvB72
CW/c1Q7+8SdEUH/EaD6Qz0/X0JFyMxeuI1fIoYvinAxURR6Kua3yoDQI8k7R6Da+
m5G5OROQMZKi7oZP+5WkDxvnxQ+bjQe6l+CLhnxSLQ7L
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:32 2024 by rpki-client on console-ams.rpki-client.org