Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/m829z-bFidzKrKqcT96nLQfjk08.roa
File: m829z-bFidzKrKqcT96nLQfjk08.roa (raw, json)
Hash identifier: X2WW/WsCyPmkL6k4HfhDK5+DyF5M4xb3xkdMs48M3Bg=
Subject key identifier: 9B:CD:BD:CF:E6:C5:89:DC:CA:AC:AA:9C:4F:DE:A7:2D:07:E3:93:4F
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018D4A907EBA4D7BCBA95765CBE57E8CA1C1
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/m829z-bFidzKrKqcT96nLQfjk08.roa
Signing time: Sat 27 Jan 2024 10:56:40 +0000
ROA not before: Sat 27 Jan 2024 10:56:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62904
IP address blocks: 147.45.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 13:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4a:90:7e:ba:4d:7b:cb:a9:57:65:cb:e5:7e:8c:a1:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 27 10:56:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bcdbdcfe6c589dccaacaa9c4fdea72d07e3934f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5f:ed:09:fc:40:7d:8a:79:89:a7:9d:a5:68:
a2:a4:93:fa:62:e9:da:05:8f:cd:b4:a6:c5:67:bb:
c3:94:1c:66:96:bf:e9:72:1a:80:15:0d:67:cc:b7:
e5:d0:64:a4:b0:48:7b:0d:4e:fb:86:a6:41:31:a5:
6b:ea:6b:29:69:d1:24:75:d8:1d:ae:bc:a4:76:46:
73:23:29:8c:5d:8c:4b:bc:ac:10:08:c6:4e:9a:07:
f9:fa:79:2b:8b:44:23:93:7e:09:c9:36:e3:2c:6d:
a5:fa:ad:51:7f:18:ce:f6:d8:da:fd:e9:4f:33:82:
2c:0c:76:a3:bc:f3:24:f1:bf:69:ff:ae:48:8b:df:
f5:74:b5:cf:c2:76:b1:51:a6:19:d5:48:0a:4b:cc:
19:03:37:80:0d:01:89:29:37:4e:c7:e2:91:8c:e1:
a3:67:e5:24:cf:f8:6b:cd:b5:4b:04:aa:80:f2:b9:
dc:3a:73:79:70:82:21:f8:d7:25:a2:51:f5:fc:35:
91:1f:24:f3:77:e9:d7:ad:f7:5c:95:a1:8e:54:a7:
c1:8c:6a:64:21:67:c4:81:dd:a6:12:98:6d:70:5a:
a7:84:b2:3a:75:ee:94:2c:b6:ca:b9:dc:f6:96:60:
c2:4f:26:ee:9f:01:96:20:59:5b:26:1c:57:47:3e:
76:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CD:BD:CF:E6:C5:89:DC:CA:AC:AA:9C:4F:DE:A7:2D:07:E3:93:4F
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/m829z-bFidzKrKqcT96nLQfjk08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.124.0/22
Signature Algorithm: sha256WithRSAEncryption
75:82:f3:f6:e6:ff:cf:b3:a3:db:fe:c7:46:e7:32:6a:8f:70:
1d:9a:f0:26:e0:e5:d6:20:93:de:83:9d:ba:19:c6:42:5c:24:
6e:b3:0b:5e:a3:3b:de:41:d5:29:3f:60:5c:00:74:55:07:a6:
07:e4:01:f0:4e:31:96:6e:f1:a6:a3:e7:8d:f4:ef:d1:b0:46:
20:82:6f:f8:f7:50:e4:c8:d9:e9:ee:7a:05:a6:e6:7a:08:8c:
aa:eb:c7:c6:2d:4e:18:1e:8a:9c:01:64:5f:5a:4b:78:fe:7e:
a5:12:ae:e8:8b:59:1a:fc:89:c0:71:e2:9e:16:1a:a7:06:e3:
2c:79:be:6b:7f:82:4a:03:e2:1a:2c:49:3e:16:92:7b:78:af:
eb:bf:81:56:35:5b:1a:cb:61:b3:c2:0f:75:5f:16:4e:5c:23:
16:d0:8b:7b:40:49:01:0d:ee:50:b9:a0:0c:57:e3:c1:76:be:
73:34:d9:66:13:cc:67:f5:41:78:8f:96:ad:9f:60:0c:b1:66:
74:c5:9c:c3:ef:69:8d:2e:d6:53:cf:b0:0a:f9:38:45:5c:cd:
87:d7:14:70:ec:34:dd:36:00:9d:e5:a5:71:28:01:77:4b:3d:
9b:79:bc:8f:b6:1c:02:24:08:74:38:2e:9b:67:7b:81:6c:3e:
3f:08:51:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1KkH66TXvLqVdly+V+jKHBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjQwMTI3MTA1NjQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmNkYmRjZmU2YzU4OWRjY2FhY2FhOWM0ZmRlYTcyZDA3ZTM5MzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV/tCfxAfYp5iaedpWiipJP6Yuna
BY/NtKbFZ7vDlBxmlr/pchqAFQ1nzLfl0GSksEh7DU77hqZBMaVr6mspadEkddgd
rrykdkZzIymMXYxLvKwQCMZOmgf5+nkri0Qjk34JyTbjLG2l+q1RfxjO9tja/elP
M4IsDHajvPMk8b9p/65Ii9/1dLXPwnaxUaYZ1UgKS8wZAzeADQGJKTdOx+KRjOGj
Z+Ukz/hrzbVLBKqA8rncOnN5cIIh+NclolH1/DWRHyTzd+nXrfdclaGOVKfBjGpk
IWfEgd2mEphtcFqnhLI6de6ULLbKudz2lmDCTybunwGWIFlbJhxXRz527wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJvNvc/mxYncyqyqnE/epy0H45NPMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvbTgyOXotYkZpZHpLcktxY1Q5Nm5MUWZqazA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCky18MA0G
CSqGSIb3DQEBCwUAA4IBAQB1gvP25v/Ps6Pb/sdG5zJqj3AdmvAm4OXWIJPeg526
GcZCXCRuswteozveQdUpP2BcAHRVB6YH5AHwTjGWbvGmo+eN9O/RsEYggm/491Dk
yNnp7noFpuZ6CIyq68fGLU4YHoqcAWRfWkt4/n6lEq7oi1ka/InAceKeFhqnBuMs
eb5rf4JKA+IaLEk+FpJ7eK/rv4FWNVsay2Gzwg91XxZOXCMW0It7QEkBDe5QuaAM
V+PBdr5zNNlmE8xn9UF4j5atn2AMsWZ0xZzD72mNLtZTz7AK+ThFXM2H1xRw7DTd
NgCd5aVxKAF3Sz2bebyPthwCJAh0OC6bZ3uBbD4/CFEz
-----END CERTIFICATE-----
Generated at Fri Mar 15 18:58:36 2024 by rpki-client on console-fra.rpki-client.org