Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/g6glMeHdpNVU8hrQgWPRItT-2-g.roa
File: g6glMeHdpNVU8hrQgWPRItT-2-g.roa (raw, json)
Hash identifier: sg6EjFMxNv1G9iQYt1DYuumJRC6/BVoKqiNpVkQ7yfg=
Subject key identifier: 83:A8:25:31:E1:DD:A4:D5:54:F2:1A:D0:81:63:D1:22:D4:FE:DB:E8
Certificate issuer: /CN=93c244be6b3affb6d4e547f2e1e3c5eac1b26ab2
Certificate serial: 018572835B1AD1DF958EE1D9D83496531961
Authority key identifier: 93:C2:44:BE:6B:3A:FF:B6:D4:E5:47:F2:E1:E3:C5:EA:C1:B2:6A:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8JEvms6_7bU5Ufy4ePF6sGyarI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/g6glMeHdpNVU8hrQgWPRItT-2-g.roa
Signing time: Mon 02 Jan 2023 12:44:49 +0000
ROA not before: Mon 02 Jan 2023 12:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24585
IP address blocks: 80.255.96.0/20 maxlen: 20
80.255.96.0/22 maxlen: 22
2a0a:d000::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 Nov 2023 08:47:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:5b:1a:d1:df:95:8e:e1:d9:d8:34:96:53:19:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93c244be6b3affb6d4e547f2e1e3c5eac1b26ab2
Validity
Not Before: Jan 2 12:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83a82531e1dda4d554f21ad08163d122d4fedbe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:22:57:8c:77:b9:f5:bf:7f:9c:bb:38:73:8f:
0d:b8:1f:11:c9:53:ab:fd:77:2f:3e:1e:c8:40:ac:
30:58:e6:e1:ed:4c:46:0d:87:b7:b9:ef:f4:60:82:
d0:f3:b7:47:a5:6c:4e:6f:31:21:29:83:63:8c:80:
a3:c9:b3:3e:95:5a:60:d5:98:ab:ee:77:0a:fc:42:
b6:ce:a8:5e:97:e2:59:58:fc:05:a7:95:35:5c:5c:
c0:61:99:29:36:e9:79:19:77:95:0b:e8:d5:95:e8:
00:ea:09:a1:2d:f4:13:0e:cd:00:71:bd:d2:24:c4:
8c:17:fd:a9:2f:e7:92:d5:e6:d5:d6:bf:ee:b0:df:
b5:c1:6f:59:d8:71:29:51:0e:0f:d6:38:b7:4b:7c:
73:53:fa:53:5b:c7:cc:89:76:35:52:5a:b8:ee:7f:
a1:60:0e:2e:dc:13:07:9d:90:3a:54:b4:9f:8f:f2:
b8:70:76:84:3d:25:32:4e:fb:5d:05:3f:97:b1:88:
3f:0d:d9:13:dc:34:09:df:1b:eb:36:82:69:09:21:
9a:a9:9c:77:94:c9:bd:d7:f3:35:91:d0:79:82:bd:
70:d1:b4:be:ca:9a:70:8f:08:d5:d3:cf:e9:98:34:
35:1b:57:f3:91:20:8e:50:f7:d5:b8:a2:e4:a8:63:
b6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A8:25:31:E1:DD:A4:D5:54:F2:1A:D0:81:63:D1:22:D4:FE:DB:E8
X509v3 Authority Key Identifier:
keyid:93:C2:44:BE:6B:3A:FF:B6:D4:E5:47:F2:E1:E3:C5:EA:C1:B2:6A:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8JEvms6_7bU5Ufy4ePF6sGyarI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/g6glMeHdpNVU8hrQgWPRItT-2-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/k8JEvms6_7bU5Ufy4ePF6sGyarI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.255.96.0/20
IPv6:
2a0a:d000::/29
Signature Algorithm: sha256WithRSAEncryption
52:4c:4c:e1:ee:5f:66:f5:ff:01:90:44:67:bf:9b:50:3b:54:
ad:a2:0a:10:39:4f:ec:b2:dd:b0:57:fd:ab:e5:e1:e8:e4:38:
a5:44:91:66:a3:20:4d:de:22:73:57:0d:32:6c:f9:80:48:5d:
7a:f6:a0:07:c9:11:a1:f5:f8:8e:e5:a7:dc:00:42:b7:24:99:
57:c2:78:e4:9f:de:58:f2:50:7a:b5:6d:58:46:bb:c1:0e:f5:
b0:91:1d:0d:77:84:8c:61:9a:34:d3:56:9e:d3:f0:04:11:6d:
39:48:16:66:10:bc:22:5d:17:ad:75:30:ef:a5:58:24:d8:12:
2b:bf:9a:f0:72:d4:ae:d4:06:70:ac:b9:50:08:30:34:6e:c7:
c4:75:49:aa:59:61:1d:36:eb:30:90:ef:3e:70:e7:cb:c3:54:
c2:f1:02:a6:aa:22:65:4e:6f:db:57:b6:ab:93:05:d9:2c:67:
95:81:11:36:ed:61:61:8a:a0:46:75:c8:51:ea:12:7b:7f:93:
4b:8c:b0:b3:5e:05:b5:b3:0f:ce:06:4a:fb:ff:d9:7e:0c:c7:
e8:bb:df:6c:b3:7f:bc:dc:65:f2:ba:2f:f0:b3:94:4a:d1:c9:
d8:1d:e5:8b:ab:09:5b:4e:ba:2e:00:ac:08:b8:d3:23:65:6f:
14:0e:b0:d0
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVyg1sa0d+VjuHZ2DSWUxlhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzYzI0NGJlNmIzYWZmYjZkNGU1NDdmMmUxZTNjNWVhYzFi
MjZhYjIwHhcNMjMwMTAyMTI0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4M2E4MjUzMWUxZGRhNGQ1NTRmMjFhZDA4MTYzZDEyMmQ0ZmVkYmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCJXjHe59b9/nLs4c48NuB8RyVOr
/XcvPh7IQKwwWObh7UxGDYe3ue/0YILQ87dHpWxObzEhKYNjjICjybM+lVpg1Zir
7ncK/EK2zqhel+JZWPwFp5U1XFzAYZkpNul5GXeVC+jVlegA6gmhLfQTDs0Acb3S
JMSMF/2pL+eS1ebV1r/usN+1wW9Z2HEpUQ4P1ji3S3xzU/pTW8fMiXY1Ulq47n+h
YA4u3BMHnZA6VLSfj/K4cHaEPSUyTvtdBT+XsYg/DdkT3DQJ3xvrNoJpCSGaqZx3
lMm91/M1kdB5gr1w0bS+yppwjwjV08/pmDQ1G1fzkSCOUPfVuKLkqGO2VQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIOoJTHh3aTVVPIa0IFj0SLU/tvoMB8GA1UdIwQY
MBaAFJPCRL5rOv+21OVH8uHjxerBsmqyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazhKRXZtczZfN2JVNVVmeTRlUEY2c0d5YXJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS81MDFlOGYtYzdlMS00YWE0LTg1ODMt
NjZkNzRlNzNmMjU0LzEvZzZnbE1lSGRwTlZVOGhyUWdXUFJJdFQtMi1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS81MDFlOGYtYzdlMS00YWE0LTg1ODMtNjZkNzRlNzNmMjU0
LzEvazhKRXZtczZfN2JVNVVmeTRlUEY2c0d5YXJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEUP9gMA0E
AgACMAcDBQMqCtAAMA0GCSqGSIb3DQEBCwUAA4IBAQBSTEzh7l9m9f8BkERnv5tQ
O1StogoQOU/sst2wV/2r5eHo5DilRJFmoyBN3iJzVw0ybPmASF169qAHyRGh9fiO
5afcAEK3JJlXwnjkn95Y8lB6tW1YRrvBDvWwkR0Nd4SMYZo001ae0/AEEW05SBZm
ELwiXRetdTDvpVgk2BIrv5rwctSu1AZwrLlQCDA0bsfEdUmqWWEdNuswkO8+cOfL
w1TC8QKmqiJlTm/bV7arkwXZLGeVgRE27WFhiqBGdchR6hJ7f5NLjLCzXgW1sw/O
Bkr7/9l+DMfou99ss3+83GXyui/ws5RK0cnYHeWLqwlbTrouAKwIuNMjZW8UDrDQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:20 2024 by rpki-client on console-fra.rpki-client.org