Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/iQbvApAGh1JOxgS8EOet0uFPi74.roa
File: iQbvApAGh1JOxgS8EOet0uFPi74.roa (raw, json)
Hash identifier: Yq4nG5nJJ9teAS72P9a03xYzOU9/APx17skfR4P3chg=
Subject key identifier: 89:06:EF:02:90:06:87:52:4E:C6:04:BC:10:E7:AD:D2:E1:4F:8B:BE
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 018570B07507F2E0C8FDD550779316328A03
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/iQbvApAGh1JOxgS8EOet0uFPi74.roa
Signing time: Mon 02 Jan 2023 04:14:50 +0000
ROA not before: Mon 02 Jan 2023 04:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 213.176.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 May 2023 11:05:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:75:07:f2:e0:c8:fd:d5:50:77:93:16:32:8a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Jan 2 04:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8906ef02900687524ec604bc10e7add2e14f8bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:bc:8e:5c:3a:97:b5:ab:b1:47:00:ff:d6:6b:
77:82:8f:99:41:08:11:48:58:b0:77:75:66:e4:77:
2e:b6:7c:66:2c:8c:29:d7:4d:f7:68:d8:59:c4:7f:
6e:4b:fc:ed:a3:ad:f4:6a:3d:6c:cc:ea:a0:4b:92:
33:b7:b5:bc:6a:9d:92:22:50:f8:41:3b:c0:82:3e:
c4:9d:0d:dd:d6:f4:42:37:81:22:c6:7f:76:ab:e9:
74:34:81:e7:56:7d:dc:ed:3b:1e:46:0c:54:a2:90:
c3:b8:f6:35:f4:98:fe:28:44:bd:6b:90:f3:b5:21:
74:6d:0c:71:93:6d:00:15:12:50:ee:0c:40:59:96:
d1:25:2c:13:d7:20:6c:d7:bf:dd:8c:ca:fb:d1:81:
aa:a5:ec:0e:f4:39:c7:77:06:08:4f:d6:3e:b8:86:
46:ab:63:08:9f:9a:b6:59:e9:36:2a:43:4e:bf:c7:
8a:d0:8c:23:3b:25:13:1d:66:4c:bc:c7:b1:56:68:
5b:49:05:aa:0d:18:f0:d9:d0:97:f5:34:6d:b5:dc:
e1:6d:35:ab:29:35:e2:db:7d:15:98:1b:f7:82:9a:
09:c7:75:9a:00:d3:66:36:32:66:5e:f6:3f:aa:eb:
2c:c4:5f:6e:d4:dd:b1:d4:7c:67:e1:b8:90:fc:e1:
0d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:06:EF:02:90:06:87:52:4E:C6:04:BC:10:E7:AD:D2:E1:4F:8B:BE
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/iQbvApAGh1JOxgS8EOet0uFPi74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.176.28.0/22
Signature Algorithm: sha256WithRSAEncryption
59:31:79:5e:0e:d8:bd:e0:d3:10:97:0d:42:7f:57:44:28:6d:
5b:4d:63:8d:75:7c:2d:63:a1:b4:13:b7:e2:f1:7b:a3:40:08:
6e:1c:20:2e:6a:ad:53:40:83:6a:17:65:af:93:ce:04:4f:8c:
a1:e5:86:bc:8c:31:2c:76:b9:3b:10:20:ab:a6:45:9c:71:f8:
ff:97:f5:d0:f0:10:10:19:d8:44:19:b6:18:08:80:47:8e:5f:
38:f1:d2:53:09:3f:c0:64:c1:1b:2e:a7:0c:51:0d:15:e4:5d:
92:a5:57:20:52:d9:ad:57:42:ab:fa:c2:9e:88:c0:f3:93:c4:
d6:0c:64:96:86:92:57:45:68:41:f9:00:8d:a8:bb:91:f1:c1:
63:98:1f:c7:5a:25:5b:f9:88:35:9c:9b:0f:51:a8:59:6c:85:
46:93:6f:f1:d0:a2:00:01:94:ba:98:3c:92:bf:b4:1a:35:9b:
be:e6:cf:bd:67:a4:3e:5f:ad:40:bd:a6:37:c6:84:61:3e:f7:
67:45:b9:76:e3:f2:b0:a4:03:68:41:ce:8c:40:b1:0d:ad:15:
6b:1e:be:1d:d9:7c:b6:76:c8:30:46:55:7f:d0:74:e9:0d:e9:
e4:4f:1d:0c:41:10:99:62:95:72:c1:48:4a:f1:45:b8:ab:ea:
78:bc:bb:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwsHUH8uDI/dVQd5MWMooDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzE4NTI3ZTNhMjA2YWYyODQyMDI4ZDk1YWVjNDEzMzhl
OGRhZjgwHhcNMjMwMTAyMDQxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTA2ZWYwMjkwMDY4NzUyNGVjNjA0YmMxMGU3YWRkMmUxNGY4YmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7yOXDqXtauxRwD/1mt3go+ZQQgR
SFiwd3Vm5HcutnxmLIwp1033aNhZxH9uS/zto630aj1szOqgS5Izt7W8ap2SIlD4
QTvAgj7EnQ3d1vRCN4Eixn92q+l0NIHnVn3c7TseRgxUopDDuPY19Jj+KES9a5Dz
tSF0bQxxk20AFRJQ7gxAWZbRJSwT1yBs17/djMr70YGqpewO9DnHdwYIT9Y+uIZG
q2MIn5q2Wek2KkNOv8eK0IwjOyUTHWZMvMexVmhbSQWqDRjw2dCX9TRttdzhbTWr
KTXi230VmBv3gpoJx3WaANNmNjJmXvY/qussxF9u1N2x1Hxn4biQ/OENiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIkG7wKQBodSTsYEvBDnrdLhT4u+MB8GA1UdIwQY
MBaAFMPBhSfjogavKEICjZWuxBM46Nr4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMt
MGNiYTMzZWZjNWJiLzEvaVFidkFwQUdoMUpPeGdTOEVPZXQwdUZQaTc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8xMzM5ZGYtOGUwNi00MWRlLTk0ZjMtMGNiYTMzZWZjNWJi
LzEvdzhHRkotT2lCcThvUWdLTmxhN0VFempvMnZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1bAcMA0G
CSqGSIb3DQEBCwUAA4IBAQBZMXleDti94NMQlw1Cf1dEKG1bTWONdXwtY6G0E7fi
8XujQAhuHCAuaq1TQINqF2Wvk84ET4yh5Ya8jDEsdrk7ECCrpkWccfj/l/XQ8BAQ
GdhEGbYYCIBHjl848dJTCT/AZMEbLqcMUQ0V5F2SpVcgUtmtV0Kr+sKeiMDzk8TW
DGSWhpJXRWhB+QCNqLuR8cFjmB/HWiVb+Yg1nJsPUahZbIVGk2/x0KIAAZS6mDyS
v7QaNZu+5s+9Z6Q+X61AvaY3xoRhPvdnRbl24/KwpANoQc6MQLENrRVrHr4d2Xy2
dsgwRlV/0HTpDenkTx0MQRCZYpVywUhK8UW4q+p4vLud
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:29 2024 by rpki-client on console-ams.rpki-client.org