Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/7B0n_g2kSnBrKB3Tth_4kG6qfuM.roa
File: 7B0n_g2kSnBrKB3Tth_4kG6qfuM.roa (raw, json)
Hash identifier: XF17Xy/3iN7jbIknYFZ87wtZ3y8ek1tKlGGLnEzIkEw=
Subject key identifier: EC:1D:27:FE:0D:A4:4A:70:6B:28:1D:D3:B6:1F:F8:90:6E:AA:7E:E3
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018C3EAF266DD6F1D85ABA7498184F114248
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/7B0n_g2kSnBrKB3Tth_4kG6qfuM.roa
Signing time: Wed 06 Dec 2023 10:31:55 +0000
ROA not before: Wed 06 Dec 2023 10:31:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7979
IP address blocks: 147.45.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 14:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:af:26:6d:d6:f1:d8:5a:ba:74:98:18:4f:11:42:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Dec 6 10:31:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec1d27fe0da44a706b281dd3b61ff8906eaa7ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a9:cc:97:63:b0:86:e9:af:bf:3e:a5:e0:e3:
65:5e:1b:41:2f:d6:db:23:51:8f:9b:3f:0b:0c:c5:
7f:5d:85:72:18:25:b0:5f:0c:99:ed:28:be:52:f0:
70:cf:de:58:6c:b2:02:ac:d6:2b:00:8d:dd:bc:d7:
d5:b1:a9:ed:04:22:e9:45:8b:f1:69:2b:7d:91:88:
ab:97:aa:d9:49:91:d0:5b:59:12:89:a8:4f:f3:f3:
b7:e6:7a:75:60:10:a9:6f:be:bb:a4:3a:22:86:c2:
1e:f7:f8:e5:2d:31:24:1b:44:77:26:7b:c6:27:0f:
bd:e6:55:6b:55:52:55:18:03:7e:f5:c6:b2:4c:c2:
7b:18:5f:a3:87:96:0b:30:7e:da:aa:a7:e3:48:3c:
28:1d:01:f7:f2:c7:9e:9f:b8:80:d1:35:22:1e:3a:
21:d7:0e:99:fc:eb:e9:31:c0:85:f4:7e:da:dd:ae:
cc:57:a2:de:48:88:ad:5a:5e:b4:ef:e6:34:19:6b:
b4:b5:a3:7f:18:d7:36:4e:89:15:e7:62:ef:67:24:
41:93:e2:8a:ee:b7:b8:33:50:52:76:39:56:1b:0b:
b1:3a:d2:77:8f:07:89:05:3e:d7:b0:59:8a:ef:0e:
26:09:e8:4f:9d:0b:e1:9b:84:16:2a:f1:a1:b2:9d:
51:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1D:27:FE:0D:A4:4A:70:6B:28:1D:D3:B6:1F:F8:90:6E:AA:7E:E3
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/7B0n_g2kSnBrKB3Tth_4kG6qfuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.124.0/22
Signature Algorithm: sha256WithRSAEncryption
87:b0:fb:4d:5c:47:0d:98:01:83:b4:fd:c2:a6:16:bf:ed:ea:
c1:07:21:87:94:0c:d2:af:2a:db:96:b4:e2:15:e6:bb:af:54:
57:2b:b6:8a:f2:66:c8:1f:80:6e:cc:a8:e8:18:c7:f9:57:c9:
07:12:f0:23:53:6f:16:05:5f:e9:27:6d:d9:11:98:1b:df:04:
46:f5:00:02:66:f6:8f:8c:aa:9a:77:0e:03:69:df:49:09:b4:
08:f6:5d:e7:9d:d4:72:1f:67:e3:92:7a:bd:59:1e:02:90:90:
2b:c1:5d:3a:97:2d:b1:02:8a:a9:f3:0d:c6:e7:82:ca:f2:c9:
e9:ff:e9:07:e4:3b:ef:87:cd:c6:1f:1c:cf:c3:14:e2:2c:dc:
61:f9:d1:db:80:43:26:96:a9:6e:41:e4:15:c8:f8:06:79:61:
b2:2e:71:ff:f1:13:19:17:67:94:66:3d:5a:5f:48:d3:37:1c:
ab:10:1a:35:07:9f:78:5f:41:bb:a8:bc:e5:20:db:47:31:6d:
73:ec:0f:e4:c5:85:12:ef:ad:30:24:28:0c:db:60:26:61:c4:
d9:e5:fb:d0:b0:60:68:86:d1:e3:07:5a:53:01:b1:da:eb:7e:
5a:27:ca:48:7a:1a:fc:bd:51:a7:82:69:16:ac:e7:68:2b:07:
89:3a:16:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw+ryZt1vHYWrp0mBhPEUJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjMxMjA2MTAzMTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzFkMjdmZTBkYTQ0YTcwNmIyODFkZDNiNjFmZjg5MDZlYWE3ZWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKnMl2Owhumvvz6l4ONlXhtBL9bb
I1GPmz8LDMV/XYVyGCWwXwyZ7Si+UvBwz95YbLICrNYrAI3dvNfVsantBCLpRYvx
aSt9kYirl6rZSZHQW1kSiahP8/O35np1YBCpb767pDoihsIe9/jlLTEkG0R3JnvG
Jw+95lVrVVJVGAN+9cayTMJ7GF+jh5YLMH7aqqfjSDwoHQH38seen7iA0TUiHjoh
1w6Z/OvpMcCF9H7a3a7MV6LeSIitWl607+Y0GWu0taN/GNc2TokV52LvZyRBk+KK
7re4M1BSdjlWGwuxOtJ3jweJBT7XsFmK7w4mCehPnQvhm4QWKvGhsp1RVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOwdJ/4NpEpwaygd07Yf+JBuqn7jMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvN0Iwbl9nMmtTbkJyS0IzVHRoXzRrRzZxZnVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCky18MA0G
CSqGSIb3DQEBCwUAA4IBAQCHsPtNXEcNmAGDtP3Cpha/7erBByGHlAzSryrblrTi
Fea7r1RXK7aK8mbIH4BuzKjoGMf5V8kHEvAjU28WBV/pJ23ZEZgb3wRG9QACZvaP
jKqadw4Dad9JCbQI9l3nndRyH2fjknq9WR4CkJArwV06ly2xAoqp8w3G54LK8snp
/+kH5Dvvh83GHxzPwxTiLNxh+dHbgEMmlqluQeQVyPgGeWGyLnH/8RMZF2eUZj1a
X0jTNxyrEBo1B594X0G7qLzlINtHMW1z7A/kxYUS760wJCgM22AmYcTZ5fvQsGBo
htHjB1pTAbHa635aJ8pIehr8vVGngmkWrOdoKweJOhbW
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org