Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/cI8aULX_5MgtavIeoMgwcA3n5GE.roa
File: cI8aULX_5MgtavIeoMgwcA3n5GE.roa (raw, json)
Hash identifier: O9Wr6bWV/zXFj2H8+JD+Ouj/fjmIKGsqSuFHxQbyq5c=
Subject key identifier: 70:8F:1A:50:B5:FF:E4:C8:2D:6A:F2:1E:A0:C8:30:70:0D:E7:E4:61
Certificate issuer: /CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Certificate serial: 018963C685246D49BA89AAF389C9E095BAE9
Authority key identifier: 5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/cI8aULX_5MgtavIeoMgwcA3n5GE.roa
Signing time: Mon 17 Jul 2023 12:15:01 +0000
ROA not before: Mon 17 Jul 2023 12:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57344
IP address blocks: 147.78.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:c6:85:24:6d:49:ba:89:aa:f3:89:c9:e0:95:ba:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Validity
Not Before: Jul 17 12:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=708f1a50b5ffe4c82d6af21ea0c830700de7e461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9d:ab:84:60:24:63:e8:02:97:75:0c:5b:ce:
db:99:6c:cc:42:93:83:2d:e7:e7:37:61:3b:74:12:
a4:3f:eb:2e:79:0b:f6:61:d3:09:08:54:72:ca:71:
9d:88:f6:45:b4:83:71:19:50:34:ad:f2:39:63:8e:
c4:5f:21:e3:68:f7:3f:c7:ee:c0:a0:1c:20:21:e4:
13:11:24:46:bd:25:d0:da:47:e8:48:97:1d:a9:9e:
0e:13:0b:04:b0:2a:f9:31:b0:18:2c:c8:d3:73:88:
12:d3:d2:c4:10:f3:46:b2:c9:23:75:60:e6:e7:79:
32:64:7a:db:06:c8:6f:ea:95:52:ee:f0:6b:d5:43:
1c:8e:ea:d4:71:7d:26:2b:7b:e8:6b:46:f5:2c:a6:
17:87:d1:fe:1e:48:e7:55:b0:23:18:18:31:28:eb:
47:f1:cf:66:db:dd:e7:9b:fa:d7:8f:75:52:e5:8a:
d5:36:7c:69:33:fd:4d:b7:1e:f2:39:1b:15:7a:ec:
95:6f:53:66:01:cc:dc:97:7f:df:62:c0:b3:ee:70:
64:e2:cd:bf:53:c9:d3:2c:af:f0:34:b0:4b:13:e5:
34:e6:e2:56:4e:13:19:64:50:3e:68:62:b7:8c:3c:
60:df:68:5e:4e:4b:d7:a9:26:ec:c2:46:4b:7e:95:
89:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8F:1A:50:B5:FF:E4:C8:2D:6A:F2:1E:A0:C8:30:70:0D:E7:E4:61
X509v3 Authority Key Identifier:
keyid:5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/cI8aULX_5MgtavIeoMgwcA3n5GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/Xdadn3SWMPAlbPDOq1iDa0kaWPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.141.0/24
Signature Algorithm: sha256WithRSAEncryption
48:62:e4:b0:7f:00:e2:b5:42:83:a6:70:80:54:ec:81:7a:a4:
1c:21:00:9e:e7:c6:9a:54:bc:f9:86:3c:1f:e7:0e:52:f8:15:
17:5f:e1:ed:cb:fe:50:f6:34:98:bf:26:18:60:68:e9:c6:b0:
0c:9c:9a:c6:fc:76:f3:47:68:f3:95:48:92:6b:18:d7:e5:d2:
82:6b:0d:cc:68:65:f4:6f:7f:ae:47:8f:14:43:e3:fa:18:0e:
16:e1:3b:2c:8f:ec:91:6e:d3:06:02:f8:30:29:2d:48:67:c8:
18:c6:6c:32:4e:69:e7:73:df:e4:ca:93:b7:ee:29:7d:3d:87:
50:be:e5:ac:1e:15:4e:ea:fd:ce:c2:65:cc:77:5d:d5:4b:0c:
41:b6:73:21:f2:f7:bd:88:a2:a3:92:40:45:f1:0c:3c:1b:93:
b5:1b:6a:0f:8e:5e:c5:5d:53:f8:06:36:85:e4:0a:ed:ad:50:
cc:be:fb:d7:9b:a9:60:81:89:97:fc:ad:47:6f:2f:f3:a2:79:
75:01:5e:03:2f:c2:af:24:08:ff:3a:cd:fc:99:6a:f6:a9:c7:
69:4d:0a:b0:18:38:09:dd:c8:c3:ec:2a:42:66:b8:87:64:2b:
3a:6b:bb:57:8e:54:d6:9d:7c:00:28:02:9e:77:cf:4b:a8:8f:
75:af:46:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYljxoUkbUm6iarzicnglbrpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZDY5ZDlmNzQ5NjMwZjAyNTZjZjBjZWFiNTg4MzZiNDkx
YTU4ZjYwHhcNMjMwNzE3MTIxNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDhmMWE1MGI1ZmZlNGM4MmQ2YWYyMWVhMGM4MzA3MDBkZTdlNDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlp2rhGAkY+gCl3UMW87bmWzMQpOD
LefnN2E7dBKkP+sueQv2YdMJCFRyynGdiPZFtINxGVA0rfI5Y47EXyHjaPc/x+7A
oBwgIeQTESRGvSXQ2kfoSJcdqZ4OEwsEsCr5MbAYLMjTc4gS09LEEPNGsskjdWDm
53kyZHrbBshv6pVS7vBr1UMcjurUcX0mK3voa0b1LKYXh9H+HkjnVbAjGBgxKOtH
8c9m293nm/rXj3VS5YrVNnxpM/1Ntx7yORsVeuyVb1NmAczcl3/fYsCz7nBk4s2/
U8nTLK/wNLBLE+U05uJWThMZZFA+aGK3jDxg32heTkvXqSbswkZLfpWJewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHCPGlC1/+TILWryHqDIMHAN5+RhMB8GA1UdIwQY
MBaAFF3WnZ90ljDwJWzwzqtYg2tJGlj2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGRhZG4zU1dNUEFsYlBET3ExaURhMGthV1BZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82MTY5MjQtOTNiMi00ZGNiLWFlZWIt
ZjNmZDY0MzMxNzA5LzEvY0k4YVVMWF81TWd0YXZJZW9NZ3djQTNuNUdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC82MTY5MjQtOTNiMi00ZGNiLWFlZWItZjNmZDY0MzMxNzA5
LzEvWGRhZG4zU1dNUEFsYlBET3ExaURhMGthV1BZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk06NMA0G
CSqGSIb3DQEBCwUAA4IBAQBIYuSwfwDitUKDpnCAVOyBeqQcIQCe58aaVLz5hjwf
5w5S+BUXX+Hty/5Q9jSYvyYYYGjpxrAMnJrG/HbzR2jzlUiSaxjX5dKCaw3MaGX0
b3+uR48UQ+P6GA4W4Tssj+yRbtMGAvgwKS1IZ8gYxmwyTmnnc9/kypO37il9PYdQ
vuWsHhVO6v3OwmXMd13VSwxBtnMh8ve9iKKjkkBF8Qw8G5O1G2oPjl7FXVP4BjaF
5ArtrVDMvvvXm6lggYmX/K1Hby/zonl1AV4DL8KvJAj/Os38mWr2qcdpTQqwGDgJ
3cjD7CpCZriHZCs6a7tXjlTWnXwAKAKed89LqI91r0ZO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:45 2024 by rpki-client on console-fra.rpki-client.org